Which Cisco APM file rule action within the Cisco FMC must be set to resolve this issue?

Posted by: Pdfprep Category: 300-710 Tags: , ,

A network administrator discovers that a user connected to a file server and downloaded a malware file. The Cisco FMC generated an alert for the malware event, however the user still remained connected.

Which Cisco APM file rule action within the Cisco FMC must be set to resolve this issue?
A . Detect Files
B . Malware Cloud Lookup
C . Local Malware Analysis
D . Reset Connection

Answer: B

Explanation:

https://www.cisco.com/c/en/us/td/docs/security/firesight/541/firepower-module-user-guide/asafirepower-module-user-guide-v541/AMP-Config.pdf

Leave a Reply

Your email address will not be published.