• Home
  • Blogs
  • Enhance your career with 500-220 PDF Dumps - True Cisco Exam Questions [Q38-Q60]

Enhance your career with 500-220 PDF Dumps - True Cisco Exam Questions [Q38-Q60]

Share

Enhance your career with 500-220 PDF Dumps - True Cisco Exam Questions

New (2024) Download free 500-220 PDF for Cisco Practice Tests

NEW QUESTION # 38
A Cisco Meraki MV camera is monitoring an office and its field of vision currently captures work desks and employee computer screens. However, recording employee computer screens is prohibited by local regulation.
Which feature in Dashboard can be used to preserve the current position of the camera while also meeting regulation requirements?

  • A. zone exclusion
  • B. area or interest
  • C. restricted mode
  • D. sensor crop
  • E. privacy window

Answer: E

Explanation:
Explanation
https://documentation.meraki.com/MV/Initial_Configuration/Privacy_Windows


NEW QUESTION # 39
How does a Meraki device behave if cloud connectivity is temporarily lost?

  • A. The offline device continues to run with its last known configuration until cloud connectivity is restored.
  • B. The offline device tries to form a connection with a local backup sever.
  • C. The offline device reboots every 5 minutes until connection is restored.
  • D. The offline device stops passing traffic.

Answer: A

Explanation:
Explanation
What happens if a network loses connectivity to the Meraki cloud?
Because of Meraki's out of band architecture, most end users are not affected if Meraki wireless APs, switches, or security appliances cannot communicate with Meraki's cloud services (e.g., because of a temporary WAN failure):
* Users can access the local network (printers, file shares, etc.)
* If WAN connectivity is available, users can access the Internet
* Network policies (firewall rules, QoS, etc.) continue to be enforced
* Users can authenticate via 802.1X/RADIUS and can roam wirelessly between access points
* Users can initiate and renew DHCP leases
* Established VPN tunnels continue to operate
* Local configuration tools are available (e.g., device IP configuration
https://meraki.cisco.com/lib/pdf/meraki_datasheet_cloud_management.pdf


NEW QUESTION # 40
When an SSID is configured with Sign-On Splash page enabled, which two settings must be configured for unauthenticated clients to have full network access and not be allow listed? (Choose two.)

  • A. Firewall & traffic shaping
  • B. Controller disconnection behavior
  • C. RADIUS for splash page settings
  • D. Simultaneous logins
  • E. Captive Portal strength

Answer: B,E

Explanation:
Explanation
To clarify, when an SSID is configured with Sign-On Splash page enabled, the two settings that must be configured for unauthenticated clients to have full network access and not be allow listed are:
Controller disconnection behavior: This setting determines how the clients are treated when the Meraki cloud controller is unreachable. The options are Restricted or Unrestricted. The former option blocks all traffic from unauthenticated clients until the controller is reachable again. The latter option allows unauthenticated clients to access the network without signing on until the controller is reachable again1.
Captive Portal strength: This setting determines how often the clients are redirected to the splash page for authentication. The options are Block all access until sign-on is complete or Allow non-HTTP traffic prior to sign-on. The latter option allows unauthenticated clients to access other protocols such as DNS, DHCP, ICMP, etc., but blocks HTTP and HTTPS traffic until they sign on. This option is recommended for compatibility with devices that do not support web-based authentication1.


NEW QUESTION # 41
What occurs when a configuration change is made to an MX network that is bound to a configuration template?

  • A. The configuration change in the bound network overrides the template configuration.
  • B. The template configuration overrides the configuration change in the bound network.
  • C. The more restrictive configuration is preferred.
  • D. The configuration change in the bound network is combined with the template configuration inside the template.

Answer: A

Explanation:
Explanation
https://documentation.meraki.com/Architectures_and_Best_Practices/Cisco_Meraki_Best_Practice_Design/Best


NEW QUESTION # 42
Refer to the exhibit.

What does the MX Security Appliance send to determine whether VPN traffic exceeds the configured latency threshold in the VoIP custom performance class?

  • A. 1000-byte TCP probes every second, through VPN tunnels that are established over every WAN link.
  • B. 1000-byte TCP probes every second, through VPN tunnels that are established over the primary WAN link.
  • C. 100-byte UDP probes every second, through VPN tunnels that are established over the primary WAN link.
  • D. 100-byte UDP probes every second, through VPN tunnels that are established over every WAN link.

Answer: D

Explanation:
Explanation
The performance probe is a small payload (approximately 100 bytes) of UDP data sent over all established VPN tunnels every 1 second. MX appliances track the rate of successful responses and the time that elapses before receiving a response. This data allows the MX to determine the packet loss, latency, and jitter over each VPN tunnel in order to make the necessary performance-based decisions.
https://documentation.meraki.com/Architectures_and_Best_Practices/Cisco_Meraki_Best_Practice_Design/Best


NEW QUESTION # 43
When an SSID is configured with Sign-On Splash page enabled, which two settings must be configured for unauthenticated clients to have full network access and not be allow listed? (Choose two.)

  • A. Firewall & traffic shaping
  • B. Controller disconnection behavior
  • C. RADIUS for splash page settings
  • D. Simultaneous logins
  • E. Captive Portal strength

Answer: B,E


NEW QUESTION # 44
What is a feature of distributed Layer 3 roaming?

  • A. All wireless client traffic is tunneled.
  • B. An MX Security Appliance is not required as a concentrator.
  • C. An MX Security Appliance is required as a concentrator.
  • D. All wireless client traffic can be split-tunneled.

Answer: B

Explanation:
Reference:
Cisco_Meraki_Best_Practice_Design/Best_Practice_Design_-_MR_Wireless/
Wireless_Layer_3_Roaming_Best_Practices


NEW QUESTION # 45
What are two roles of the network and device tags in a Dashboard? (Choose two.)

  • A. Tags enable administrators to configure a combination of network and device specific tags to create summary reports filtered for specific devices across multiple networks.
  • B. Network tags can be used to assign networks to separate Auto VPN domains in an Organization with many networks.
  • C. Device tags can be assigned to MR APs to influence the gateway selection for repeaters in a mesh wireless network.
  • D. Network tags can be used to simplify the assignment of network-level permissions in an Organization with many networks.
  • E. Device tags can be used to simplify the assignment of device-level permissions in an Organization with many administrators.

Answer: A,C

Explanation:
Reference:
Organization_Menu/Manage_Tags


NEW QUESTION # 46
Drag and drop the settings from the left into the boxes on the right to indicate if the setting will be cloned or not cloned using the Cisco Meraki MS switch cloning feature.

Answer:

Explanation:


NEW QUESTION # 47
Refer to the exhibit.

Which IDS/IPS mode is the MX Security Appliance configured for?

  • A. quarantine
  • B. detection
  • C. prevention
  • D. blocking

Answer: C


NEW QUESTION # 48
Refer to the exhibit.

A packet arrives on the VPN concentrator with source IP 10.168.70.3 and destined for IP 10.116.32.4.
What is the next hop for the packet, based on this concentrator routing table?

  • A. The packet is stopped.
  • B. The Auto VPN peer "Store 1532 - appliance" is the next hop.
  • C. The concentrator gateway (10.128.124.62) is the next hop.
  • D. Not enough detail is available to determine the next hop.

Answer: D


NEW QUESTION # 49
Which two Systems Manager Live tools are available only for Apple Macs and Windows PCs and cannot be used on iOS or Android mobile devices? (Choose two.)

  • A. OS updates
  • B. Selective wipe
  • C. Send notification
  • D. Screenshot
  • E. Remote Desktop

Answer: D,E

Explanation:
Explanation
https://documentation.meraki.com/SM/Monitoring_and_Reporting/MDM_Commands_in_Systems_Manager - Under Live Tools Selective Wiping is only for MacOS. Here we have Windows Laptop as well


NEW QUESTION # 50
Which two Systems Manager Live tools are available only for Apple Macs and Windows PCs and cannot be used on iOS or Android mobile devices? (Choose two.)

  • A. OS updates
  • B. Selective wipe
  • C. Send notification
  • D. Screenshot
  • E. Remote Desktop

Answer: B,E


NEW QUESTION # 51
Which three verbs of request are available in the Cisco Meraki API? (Choose three.)

  • A. PUT
  • B. PATCH
  • C. GET
  • D. ADD
  • E. POST
  • F. SET

Answer: A,C,E

Explanation:
Reference:
Cisco_Meraki_Dashboard_API


NEW QUESTION # 52
What occurs when a configuration change is made to an MX network that is bound to a configuration template?

  • A. The configuration change in the bound network is combined with the template configuration inside the template.
  • B. The template configuration overrides the configuration change in the bound network.
  • C. The configuration change in the bound network overrides the template configuration.
  • D. The more restrictive configuration is preferred.

Answer: A

Explanation:
Reference:
Managing_Multiple_Networks_with_Configuration_Templates


NEW QUESTION # 53
When wireless SSIDs are configured in Dashboard, which setting on the Access Control page affects the ability of a 2.4 GHz only client device from associating to the WLAN for the first time?

  • A. Bridge mode
  • B. 802.11r
  • C. Dual band operating with Band Steering
  • D. Content filtering

Answer: C


NEW QUESTION # 54
An organization requires that BYOD devices be enrolled in Systems Manager before they gain access to the network. Part of the enrollment includes pushing out the corporate SSID preshared key, corporate email settings, and some business-sensitive PDFs. When a user leaves the organization, which Systems Manager feature allows the removal of only the MDM-delivered content from the user's device?

  • A. Clear Pushed Data
  • B. Unenroll Device
  • C. Selective Wipe
  • D. Erase Device

Answer: C

Explanation:
Explanation
https://documentation.meraki.com/SM/Monitoring_and_Reporting/Selective_Wipe_and_Device_Quarantine_in_


NEW QUESTION # 55
Which two features and functions are supported when using an MX appliance in Passthrough mode? (Choose two.)

  • A. secondary uplinks
  • B. intrusion prevention
  • C. DHCP
  • D. high availability
  • E. site-to-site VPN

Answer: B,E

Explanation:
Explanation
These are the two features and functions that are supported when using an MX appliance in Passthrough mode.
According to the [MX Addressing and VLANs] article, Passthrough mode allows the MX appliance to act as a layer 2 bridge, passing traffic between its LAN and WAN ports without performing any routing or address translation. However, some features such as intrusion prevention and site-to-site VPN are still available in this mode.


NEW QUESTION # 56
For which two reasons can an organization become "Out of License"? (Choose two.)

  • A. licenses that do not match the serial numbers in the organization
  • B. more hardware devices than device licenses
  • C. expired device license
  • D. licenses that are in the wrong network
  • E. MR licenses that do not match the MR models in the organization

Answer: B,C

Explanation:
More hardware devices than device licenses: An organization needs to have enough device licenses to cover all the hardware devices in its network. A device license is consumed by each device that is added to the network. If the number of devices exceeds the number of licenses, the organization will be out of license and will lose access to some features and support until it purchases more licenses or removes some devices4.
Expired device license: A device license has an expiration date that depends on the license term purchased by the organization. If a device license expires, it will no longer be valid and will not count towards the license limit. The organization will need to renew the expired license or purchase a new one to avoid being out of license4.


NEW QUESTION # 57
In an organization that uses the Co-Termination licensing model, which two operations enable licenses to be applied? (Choose two.)

  • A. Wait for the devices to auto-renew.
  • B. Renew the Dashboard license.
  • C. Call Meraki support.
  • D. License more devices.
  • E. License a network.

Answer: B,D

Explanation:
Explanation
There are two operations in which a license can be applied, License more devices or Renew my dashboard license. This article will compare both operations and describe their behaviors.
https://documentation.meraki.com/General_Administration/Licensing/Meraki_Licensing_-_License_More_Devi These are the two operations that enable licenses to be applied in an organization that uses the Co-Termination licensing model. According to the Meraki Co-Termination Licensing Overview, there are two ways to add licenses to an organization:
Renewing the Dashboard license: This option allows you to extend the co-termination date of your organization by purchasing new licenses for the same or longer term as your existing licenses. You can renew your Dashboard license from the Organization > Configure > License Info page or from the Meraki Dashboard homepage.
Licensing more devices: This option allows you to add new devices to your organization by purchasing new licenses for them. You can license more devices from the Organization > Inventory page or from the Meraki Dashboard homepage.


NEW QUESTION # 58
What is the role of the Meraki Dashboard as the service provider when using SAML for single sign-on to the Dashboard?

  • A. The Dashboard provides user access credentials.
  • B. The Dashboard generates the SAML response.
  • C. The Dashboard parses the SAML request and authenticates users.
  • D. The Dashboard generates the SAML request.

Answer: D


NEW QUESTION # 59
Refer to the exhibit.

The VPN concentrator is experiencing issues. Which action should be taken to ensure a stable environment?

  • A. Add a deny any/any firewall rule to the end of the firewall rules.
  • B. Remove the connection from Internet 1.
  • C. Configure the MX appliance to Routed mode on the Addressing & VLANS page.
  • D. Physically disconnect all LAN ports.

Answer: D


NEW QUESTION # 60
......

100% Free 500-220 Files For passing the exam Quickly: https://www.exams-boost.com/500-220-valid-materials.html

500-220 Dumps Questions Study Exam Guide : https://drive.google.com/open?id=1afp6hj4MgXIYAzqGYkuM6R1D5Vmm_vw3

Related Blogs

more
Cisco 500-220 Certification Practice Exam

Copyright © 2026 EXAMS-BOOST.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor.