Ensurepass

QUESTION 51

An administrator is using the SylinkDrop tool to update a Symantec Endpoint Protection client install on a system. The client fails to migrate to the new Symantec Endpoint Protection Manager (SEPM), which is defined correctly in the Sylink.xml file that was exported from the SEPM. Which settings must be provided with SylinkDrop to ensure the successful migration to a new Symantec Endpoint Protection environment with additional Group Level Security Settings?

 

A.

-s “silent”

B.

-t “Tamper Protect”

C.

-r “reboot”

D.

-p “password”

 

Correct Answer: D

 

 

QUESTION 52

An administrator is troubleshooting a Symantec Endpoint Protection (SEP) replication. Which component log should the administrator check to determine whether the communication between the two sites is working correctly?

 

A.

Apache Web Server

B.

Tomcat

C.

SQL Server

D.

Group Update Provider (GUP)

 

Correct Answer: B

 

 

QUESTION 53

An administrator selects the Backup files before attempting to repair the Remediations option in the Auto-Protect policies. Which two actions occur when a virus is detected? (Select two.)

 

A.

replace the file with a place holder

B.

check the reputation

C.

store in Quarantine folder

D.

send the file to Symantec Insight

E.

encrypt the file

 

Correct Answer: CE

 

QUESTION 54

Which action can an administrator take to improve the Symantec Endpoint Protection Manager (SEPM) dashboard performance and
report accuracy?

 

A.

decreasing the number of content revisions to keep

B.

lowering the client installation log entries

C.

rebuilding database indexes

D.

limiting the number of backups to keep

 

Correct Answer: C

 

 

QUESTION 55

An administrator is recovering from a Symantec Endpoint Manager (SEPM) site failure. Which file should the administrator use during an install of SEPM to recover the lost environment according to Symantec Disaster Recovery Best Practice documentation?

 

A.

original installation log

B.

recovery_timestamp file

C.

settings.properties file

D.

Sylink.xml file from the SEPM

 

Correct Answer: B

 

 

QUESTION 56

What is the file scan workflow order when Shared Insight Cache and reputation are enabled?

 

A.

Symantec Insight > Shared Insight Cache server > local client Insight cache

B.

Local client Insight cache > Shared Insight Cache server > Symantec Insight

C.

Shared Insight Cache server > local client Insight cache > Symantec Insight

D.

Local client Insight cache > Symantec Insight > Shared Insight Cache server

 

Correct Answer: B

 

 

QUESTION 57

A company has a small number of systems in their Symantec Endpoint Protection Manager (SEPM) group with federal mandates that AntiVirus definitions undergo a two week testing period. After being loaded on the client, the tested virus definitions must remain unchanged on the client systems until the next set of virus definitions have completed testing. All other clients must remain operational on the most recent definition sets. An internal LiveUpdate Server has been considered as too expensive to be a solution for this company. What should be modified on the SEPM to meet this mandate?

 

A.

The LiveUpdate Settings policy for this group should be modified to use an Explicit Group Update Provider.

B.

The LiveUpdate Content policy for this group should be modified to use a specific definition revision.

C.

The SEPM site LiveUpdate settings should be modified so the Number of content revisions to keep is set to 1.

D.

The SEPM site LiveUpdate settings should be modified so the Number of content revisions to keep is set to 14.

Correct Answer: B

 

 

QUESTION 58

An administrator uses ClientSideClonePrepTool to clone systems and virtual machine deployment. What will the tool do when it is run on each system?

 

A.

Run Microsoft SysPrep and removes all AntiVirus/AntiSpyware definitions

B.

Disable Tamper Protect and deploys a Sylink.xml

C.

Add a new Extended File Attribute value to all existing files

D.

Remove unique Hardware IDs and GUIDs from the system

 

Correct Answer: D

 

 

QUESTION 59

A system running Symantec Endpoint Protection is assigned to a group with client user interface control settings set to mixed mode with Auto-Protect options set to Client. The user on the system is unable to turn off Auto-Protect. What is the likely cause of this problem?

 

A.

Tamper protection is enabled.

B.

System Lockdown is enabled.

C.

Application and Device Control is configured.

D.

The padlock on the enable Auto-Protect option is locked.

 

Correct Answer: D

 

 

QUESTION 60

An administrator notices that some entries list that the Risk was partially removed. The administrator needs to determine whether additional steps are necessary to remediate the threat. Where in the Symantec Endpoint Protection Manager console can the administrator find additional information on the risk?

 

A.

Risk log

B.

Computer Status report

C.

Notifications

D.

Infected and At Risk Computers report

 

Correct Answer: A

 

Free VCE & PDF File for Symantec 250-315 Real Exam

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

Comments are closed.