Spring Sale Special - Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: sntaclus

examout.co

A company has a single Expressway-E that exhibits high resource utilization. An engineer checks the logs and finds numerous fraudulent attempts from sip:200@cisco.com. Where must the engineer go to configure a call policy rule and block the desired URI?

A.

Call History Configuration > Call Policy > Rules

B.

Configuration > Call History > Policy > Rules

C.

Configuration > Call Policy > Rules

D.

Configuration > Policy > Inbound > Rules

An engineer is deploying an Expressway solution for the SIP domain Cisco.com. Which SRV record should be configured in the public DNS to support inbound B2B calls?

A.

_collab-edge._tls.cisco.com

B.

_cisco-uds._tcp.cisco.com

C.

_sip._tcp.cisco.com

D.

_cuplogin._tcp.cisco.com

In a larger Cisco Collaboration deployment, a user requires the advanced file transfer function in Cisco Jabber while the client is using Mobile and Remote Access. The deployment has multiple Expressway clusters and internal Cisco UCM clusters. Which configuration must be applied on Cisco Expressway-C for this function to be available?

A.

The HTTP Allow List must be manual or use Automatic inbound rules updated to include all Cisco IM and Presence servers.

B.

The HTTPS Allow List must be manual or use Automatic inbound rules updated to include all Cisco IM and Presence servers.

C.

The HTTP Allow List must use Automatic update rules to include all Cisco UCM servers.

D.

The HTTP Allow List must use Automatic update rules to include all Cisco IM and Presence servers.

An administrator is enabling Mobile and Remote Access login for the Cisco UCM registration domain cisco.com. Phones are registered with a Cisco UCM phone security profile name of securephone.cisco.com. Which two subject alternative names must be configured? (Choose two.)

A.

Securephone.cisco.com on the CallManager certificate

B.

cisco.com on the Expressway-C certificate

C.

Securephone.cisco.com on the Expressway-E certificate

D.

cisco.com on the Expressway-E certificate

E.

Securephone.cisco.com on the Expressway-C certificate

An external Jabber device cannot register. While troubleshooting this issue, the engineer discovers that privately signed certificates are being used on Expressway-C and Expressway-E What action will resolve this issue?

A.

The private CA certificate must be placed in the phone trust store.

B.

The Jabber client must register to the Cisco UCM internally before it will register externally.

C.

The device running the Jabber client must use a VPN to register.

D.

The device running the Jabber client must download and trust the private CA certificate.

A network engineer is configuring Mobile and Remote Access for the environment and must add the Certificate Authority into the Expressways. How does the engineer perform this action?

A.

Go to Maintenance > Trusted CA certificate > Security and upload the trusted Certificate Authority certificates.

B.

Go to Maintenance > Security > Trusted CA certificate and upload the trusted Certificate Authority certificates.

C.

Go to Maintenance > Tools > Security > Certificates > Trusted CA certificate and upload the trusted Certificate Authority certificates.

D.

Go to Maintenance > Tools > Security > Trusted CA certificate and upload the trusted Certificate Authority certificates.

An engineer attempts to upload a server certificate to an Expressway-C server but receives an error when they click the upload button that says that the file is invalid. The engineer is advised that this happens because the certificate was signed incorrectly and is missing an attribute. What must the engineer do to upload the certificate?

A.

Create a certificate request via Certificate Services Web Page and ensure that the certificate validity period is five years because the Expressway server validates this during certificate import.

B.

Create a certificate request via the Certificate Services Web Page and ensure that the Subject Common Name field contains the server FQDN and all Cisco Unified CM phone security profile names.

C.

Create a new certificate template with "Server authentication” and "Client authentication" enabled and use this template when signing the Expressway server certificate.

D.

Create a new certificate template with the certificate attribute "Allow private key to be exported" enabled and use this template when signing the Expressway server certificate.

Which describes what could done on the Expressway-E to successfully route calls from Expressway-C on the internal network to the Internet?

A.

Application layer gateway could be enabled to bridge the media traffic.

B.

A static NAT route could be added to the firewall to bridge the two networks.

C.

The Expressway-E could be enabled for Dual-NIC capability.

D.

The Expressway-E could be enabled for interworking.

An administrator is configuring DNS to allow Mobile and Remote Access logins for the domain cisco.com. Where must the _collab-edge_tls.cisco.com DNS SRV record be configured?

A.

in the public DNS server

B.

in DNS SRV settings under Cisco Unified OS Administration in Cisco UCM

C.

in DNS settings in the Expressway-E on the interface that faces the Internet

D.

in DNS settings under Cisco Unified OS Administration in Cisco UCM

When an Expressway-E is configured for static NAT, which Session Description Protocol attribute is modified to reflect the NAT address?

A.

SDP b-line

B.

SIP record route

C.

SDP c-line

D.

SDP m-line