FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 1: Administration of Symantec Endpoint Protection 14 (Broadcom)

Show Answer

Share

---

All types

Filters

Study FlashcardsPractice ExamLearn

Question 51

Multiple Choice

Review LaterAdd Note

Review Later

The Security Status on the console home page is failing to alert a Symantec Endpoint Protection (SEP) administrator when virus definitions are out of date. How should the SEP administrator enable the Security Status alert?

A) lower the Security Status thresholds
B) raise the Security Status thresholds
C) change the Notifications setting to "Show all notifications"
D) change the Action Summary display to "By number of computers"

E) A) and B)
F) B) and C)

Correct Answer

verified

Show Answer

Question 52

Multiple Choice

Review LaterAdd Note

Review Later

A Symantec Endpoint Protection 12.1 (SEP) administrator deployed SEP clients, but the SEP clients are failing to register with the Symantec Endpoint Protection Manager (SEPM) . Which solution would allow the clients to register with the SEPM?

A) Disable the firewall on the SEP client.
B) Allow port 8014 through the network firewall between the SEPM and the client.
C) Modify the network firewalls so that stateful packet inspection is performed.
D) Open the ephemeral TCP ports on the SEP client firewall.

E) C) and D)
F) A) and B)

Correct Answer

verified

Show Answer

Question 53

Multiple Choice

Review LaterAdd Note

Which Symantec Endpoint Protection 12.1 feature allows an administrator to prevent users from downloading files that are unsafe?

A system running Symantec Endpoint Protection is assigned to a group with client user interface control settings set to mixed mode with Auto-Protect options set to Client. The user on the system is unable to turn off Auto-Protect. What is the likely cause of this problem?

Employees of an accounting company often take their notebooks to customer sites. The administrator needs to apply a different firewall policy when the notebooks are disconnected from the accounting company's network. What must the administrator configure to use the two different policies?

A company has three groups of clients: Laptops, Desktops, and Servers. Administrators must have the ability to perform manual scans for these clients from the Symantec Endpoint Protection Manager. In addition, the manual scans need to be customized according to the different clients, for example by customizing whether memory is scanned and which folder locations are scanned. How can the environment be configured to provide this ability while minimizing management overhead?

Some customers report that when they run the command "smc -stop" on their clients, they are unable to connect to network resources. What is wrong?

A Symantec Endpoint Protection (SEP) administrator creates a firewall policy to block FTP traffic and assigns the policy to all of the SEP clients.  The network monitoring team informs the administrator that a client system is making an FTP connection to a server.  While investigating the problem from the SEP client GUI, the administrator notices that there are zero entries pertaining to FTP traffic in the SEP Traffic log or Packet log.  While viewing the Network Activity dialog, there is zero inbound/outbound traffic for the FTP process. What is the most likely reason?

Which two options are available when configuring DNS change detected for SONAR? (Select two.)

A large-scale virus attack is occurring and a notification condition is configured to send an email whenever viruses infect five computers on the network. A Symantec Endpoint Protection administrator has set a one hour damper period for that notification condition. How many notifications does the administrator receive after 30 computers are infected in two hours?

A Symantec Endpoint Protection Manager (SEPM) administrator is importing from an Active Directory environment. The administrator needs to know which object types are being imported. Which two object types are imported into the SEPM from Active Directory? (Select two.)

An administrator gets a browser certificate warning when accessing the Symantec Endpoint Protection Manager (SEPM) Web console. Where can the administrator obtain a self-signed certificate to prevent this warning from appearing?

Refer to the exhibit. Which settings can impact the Files trusted count?

A financial company has a security policy that prevents banking system workstations from connecting to the internet. Which Symantec Endpoint Protection 12.1 protection technology will be prevented from working on the company's workstations?

Which two criteria can an administrator use to determine hosts in a host group? (Select two.)

A company is currently testing Symantec Endpoint Protection 12.1 on 100 clients. The company has decided to deploy SEP to an additional 20,000 clients. They are concerned about the number of clients supported on a single Symantec Endpoint Protection Manager (SEPM) . What should the company do to ensure that the SEPM can support the clients?

A company is running the Symantec Endpoint Protection 12.1 firewall and wants to ensure that DNS traffic is allowed. Which feature should be enabled in the firewall policy?

Which client log shows that a client is downloading content from its designated source?

An administrator is re-adding an existing Replication Partner to the local Symantec Endpoint Protection Manager site. Which two parameters are required to re-establish this replication partnership? (Select two.)

An administrator is modifying a Virus and Spyware Protection policy for a Symantec Endpoint Protection 12.1 (SEP) client because it is demonstrating poor boot performance. Which option should the administrator consider to alleviate this problem?