: Administration of Symantec Endpoint Protection 14 Exam

Similar documents
Symantec Exam ST0-134 Symantec EndPoint Protection 12.1 Technical Assessment Version: 8.0 [ Total Questions: 282 ]

Administration of Symantec Messaging Gateway 10.5 Study Guide

Symantec Exam Administration of Symantec Endpoint Protection 12.1 Version: 10.0 [ Total Questions: 119 ]

PracticeTorrent. Latest study torrent with verified answers will facilitate your actual test

Symantec Network Access Control Starter Edition

Symantec Endpoint Protection Getting Started Guide

Symantec Network Access Control Starter Edition

Data Sheet: Endpoint Security Symantec Network Access Control Starter Edition Simplified endpoint enforcement

WHITE PAPER: BEST PRACTICES. Sizing and Scalability Recommendations for Symantec Endpoint Protection. Symantec Enterprise Security Solutions Group

Administration of Symantec Data Loss Prevention 10.5 Study Guide

Symantec Network Access Control Starter Edition

Symantec Endpoint Protection Integration Component User's Guide. Version 7.0

ST0-29B Symantec Endpoint Protection 11 MR4 (STS)

Symantec Endpoint Protection

Product Roadmap Symantec Endpoint Protection Suzanne Konvicka & Paul Murgatroyd

WHITE PAPER: ENDPOINT SECURITY. Symantec Endpoint Protection Managed Services Implementation Guide

Administration of Symantec Storage Foundation and High Availability 6.1 for Windows Study Guide

McAfee Public Cloud Server Security Suite

Implementation Guide for Symantec Endpoint Protection Small Business Edition

Defense-in-Depth Against Malicious Software. Speaker name Title Group Microsoft Corporation

Administration of Symantec Enterprise Vault 9.0 for Exchange Study Guide

Symantec Protection Suite Add-On for Hosted Security

Administration of Symantec Cluster Server 6.1 for UNIX Study Guide

Asset Discovery with Symantec Control Compliance Suite WHITE PAPER

Introducing Next Generation Symantec AntiVirus: Symantec Endpoint Protection. Bernard Laroche Endpoint security Product marketing

Data Sheet: Endpoint Security Symantec Multi-tier Protection Trusted protection for endpoints and messaging environments

Administration of Veritas Cluster Server 6.0 for UNIX Study Guide

Forescout. eyeextend for Palo Alto Networks Wildfire. Configuration Guide. Version 2.2

Evaluation Program for Symantec Mail Security Appliances

Data Insight Feature Briefing Box Cloud Storage Support

Symantec Security Monitoring Services

IT Certification Exams Provider! Weofferfreeupdateserviceforoneyear! h ps://

SIMATIC. Process Control System PCS 7 Configuration Symantec Endpoint Protection V14. Security information 1. Preface 2.

Installation Guide for Symantec Endpoint Protection and Symantec Network Access Control

Intrusion Prevention Signature Failures Symantec Endpoint Protection

Administration of Altiris Client Management Suite 7.0 Study Guide

Administration of Symantec Cyber Security Services (July 2015) Sample Exam

Client Guide for Symantec Endpoint Protection and Symantec Network Access Control. For Microsoft Windows

Symantec Endpoint Protection, Symantec Endpoint Protection Small Business Edition, and Symantec Network Access Control 12.1.

Content for Sophos- Theory and lab session

ForeScout Extended Module for Symantec Endpoint Protection

QUICK START: SYMANTEC ENDPOINT PROTECTION FOR AMAZON EC2

Symantec Multi-tier Protection

Symantec Endpoint Protection Installation Guide

UP L13: Leveraging the full protection of SEP 12.1.x

Symantec Client Security. Integrated protection for network and remote clients.

GLOBALPROTECT. Key Usage Scenarios and Benefits. Remote Access VPN Provides secure access to internal and cloud-based business applications

Enterprise Cybersecurity Best Practices Part Number MAN Revision 006

Symantec Endpoint Protection 14

Symantec Endpoint Protection Family Feature Comparison

Configuring Symantec. device

INSIDE. Symantec AntiVirus for Microsoft Internet Security and Acceleration (ISA) Server. Enhanced virus protection for Web and SMTP traffic

Partner Management Console Administrator's Guide

Symantec and VMWare why 1+1 makes 3

Administration of Data Protection Solutions for Windows using NetBackup 6.5

McAfee Endpoint Security

Configuring Symantec Protection Engine for Network Attached Storage for Hitachi Unified and NAS Platforms

Course 10747D: Administering System Center 2012 Configuration Manager Exam Code:

SIMATIC. Process Control System PCS 7 Symantec Endpoint Protection 11.0 Configuration. Using virus scanners 1. Configuration 2. Commissioning Manual

BraindumpsIT. BraindumpsIT - IT Certification Company provides Braindumps pdf!

Juniper Vendor Security Requirements

McAfee VirusScan and McAfee epolicy Orchestrator Administration Course

Reviewer s guide. PureMessage for Windows/Exchange Product tour

ForeScout Extended Module for Carbon Black

Security+ SY0-501 Study Guide Table of Contents

Symantec & Blue Coat Technical Update Webinar 29. Juni 2017

Technical Brief Veritas Technical Education Services

Getting Started Guide. This document provides step-by-step instructions for installing Max Secure Anti-Virus and its prerequisite software.

Sophos Enterprise Console help. Product version: 5.5

Seqrite Endpoint Security

Release Notes for Symantec Endpoint Protection and Symantec Network Access Control, version 11, Release Update 7

Securing Your Environment with Dell Client Manager and Symantec Endpoint Protection

Mcafee epo. Number: MA0-100 Passing Score: 800 Time Limit: 120 min File Version: 1.0

CompTIA Security+ SY Course Outline. CompTIA Security+ SY May 2018

Exam : Implementing Microsoft Azure Infrastructure Solutions

CounterACT Check Point Threat Prevention Module

Symantec Enterprise Solution Product Guide

Symantec System Recovery 2013 R2 Management Solution Administrator's Guide

Administering System Center 2012 Configuration Manager

The SANS Institute Top 20 Critical Security Controls. Compliance Guide

Christopher Covert. Principal Product Manager Enterprise Solutions Group. Copyright 2016 Symantec Endpoint Protection Cloud

Veritas Provisioning Manager

Sophos Enterprise Console

Symantec Reference Architecture for Business Critical Virtualization

CloudSOC and Security.cloud for Microsoft Office 365

Sophos Enterprise Console Help. Product version: 5.3

How To Manually Update Definitions For A. Unmanaged Symantec Endpoint Protection Client

Building Resilience in a Digital Enterprise

Symantec Multi-tier Protection

QUICK START: VERITAS STORAGE FOUNDATION BASIC FOR AMAZON EC2

Configuring BIG-IP ASM v12.1 Application Security Manager

IndigoVision. Control Center. Security Hardening Guide

T E C H N I C A L S A L E S S E R V I C E S

MCSA Windows Server 2012

MOC 6232A: Implementing a Microsoft SQL Server 2008 Database

Network Security Platform Overview

Symantec System Recovery 2013 Management Solution FAQ

Using CSC SSM with Trend Micro Damage Cleanup Services

Endpoint Protection. ESET Endpoint Antivirus with award winning ESET NOD32 technology delivers superior detection power for your business.

Securing the Empowered Branch with Cisco Network Admission Control. September 2007

Transcription:

250-428: of Symantec Endpoint Protection 14 Exam Study Guide v. 2.2 Copyright 2017 Symantec Corporation. All rights reserved. Symantec, the Symantec Logo, and Altiris are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. Specifications and product offerings are subject to change without notice. 1

Symantec Study Guide Table of Contents 250-428: of Symantec Endpoint Protection 14 Exam... 1 Recommended Preparation Materials... 3 Recommended Courses and Experience... 3 Product Documentation Referenced in This Exam... 3 Exam Objectives... 4 EXAM SECTION 1: Products and Concepts... 4 EXAM SECTION 2: Installation and Configuration... 5 EXAM SECTION 3: Configuring Virus and Spyware Protection... 8 EXAM SECTION 4: Define and Configure Firewall, Intrusion Prevention, and Application and Device Control... 10 EXAM SECTION 5: Responding to Threats... 11 Sample Exam Questions....13 Copyright 2017 Symantec Corporation. All rights reserved. Symantec, the Symantec Logo, and Altiris are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. Specifications and product offerings are subject to change without notice. 2

Recommended Preparation Materials Recommended Courses and Experience https://learn-education.symantec.com Symantec Endpoint Protection 14.x: Configure and Protect o Securing Endpoints against Network-Based Attacks o Securing Endpoints against File-Based Threats o Controlling Endpoint Integrity and Compliance o Enforcing Adaptive Security Posture Symantec Endpoint Protection 14.x: Plan and Implement Symantec Endpoint Protection 14.x: Manage and Administer Symantec Endpoint Protection 14: Maintain and Troubleshoot Symantec Endpoint Protection 14: Differences Symantec Endpoint Protection 14: Migration and Upgrades Recommended 3-6 months experience working with Symantec Endpoint Protection 14 in a production or lab environment. Product Documentation Referenced in This Exam 1. Endpoint Protection Technical Support articles, documentation sets, and alerts including, but not limited to: https://support.symantec.com/en_us/endpoint-protection.html Guide o Symantec Endpoint Protection 14 Windows Client Guide o Symantec Endpoint Protection 14 Release Notes o Symantec Endpoint Protection 14 for Linux Client Guide o Symantec Endpoint Protection 14 Sizing and Scalability Best Practices o Symantec Endpoint Protection 14 Quick Start o Upgrade best practices for Endpoint Protection 14 250-428: of Symantec Endpoint Protection 14 March 2018 Page: 3

Exam Objectives The following tables list the Symantec SCS Certification exam objectives for the SEP 14 exam and how these objectives align to the corresponding Symantec courses and the referenced documentation. For more information on the Symantec Certification Program, visit http://go.symantec.com/certification EXAM SECTION 1: Products and Concepts Exam Objectives Explain common threats and security risks to the endpoint Describe the Symantec Endpoint Protection components Course: Symantec Endpoint Protection 14.x: Configure and Protect Module: Securing Endpoints against File-based Attacks Lesson: Introducing File-based Threats Introduction to Symantec Endpoint Protection Course: Symantec Endpoint Protection 14.x: Plan and Implement Module: Preparing and delivering a successful SEP Implementation Lesson: Architecting and Sizing the Symantec Endpoint Protection Implementation Planning the installation Components of Symantec Endpoint Protection 250-428: of Symantec Endpoint Protection 14 March 2018 Page: 4

Exam Objectives Explain how policies and concepts relate to the Symantec Endpoint Protection architecture Determine proper placement for GUP, SEPM, and LUA for communication and content deployment Course: Symantec Endpoint Protection 14.x: Manage and Administer Module: Monitoring and managing endpoints Lesson: Managing Client Architecture and Active Directory Integration Labs: Working with groups and locations o Integrating with Active Directory o Importing an AD group into the SEPM o Creating groups and organizing clients o Managing group inheritance o Working with location specific settings Managing groups of client computers, Managing domains, and Managing sites Course: Symantec Endpoint Protection 14.x: Plan and Implement Module: Preparing and delivering a successful SEP Implementation Lesson: Architecting and Sizing the Symantec Endpoint Protection Implementation o Sizing and Architecture Best Practices for SEP 14 250-428: of Symantec Endpoint Protection 14 March 2018 Page: 5

EXAM SECTION 2: Installation and Configuration Exam Objectives Describe how to prepare, install, license and configure the Endpoint Protection management infrastructure Describe how to create groups and locations to effectively configure and manage clients Courses: Symantec Endpoint Protection 14.x: Plan and Implement and SEP 14: Maintain and Troubleshoot Module: Planning and Delivering a Successful Implementation (Plan and Implement) Lessons: Installing the SEPM (Plan and Implement), Installation and Migration Issues (Maintain and Troubleshoot) Labs: Installing Symantec Endpoint Protection Manager (Plan and Implement) o Installing Symantec Endpoint Protection Manager o Tour the console (Java and Web) Installation and Migration Issues (Maintain and Troubleshoot) o Adding SRV2 to Solusell Corp for failover Administrative Planning the Installation Course: Symantec Endpoint Protection 14.x: Manage and Administer Module: Monitoring and Managing Endpoints Lesson: Managing Client Architecture and Active Directory Integration Labs: Working with groups and locations Integrating with Active Directory Importing an AD group into the SEPM Creating group and organizing clients Symantec Endpoint Protection 14 Installation and Managing groups of client computers, Managing domains, and Managing sites 250-428: of Symantec Endpoint Protection 14 March 2018 Page: 6

Exam Objectives Describe how to prepare and install the Symantec Endpoint Protection clients including creating client packages and choosing an appropriate deployment method Course: Symantec Endpoint Protection 14.x: Plan and Implement and Symantec Endpoint Protection 14: Maintain and Troubleshoot Module: Discovering endpoint client implementation methods and strategies (Plan and Implement) Lessons: Implementing the Best Method to Deploy Windows Clients (Plan and Implement) and Installation and Migration Issues (Maintain and Troubleshoot) Labs: Deploy Windows clients using the Client Deployment Wizard (Plan and Implement) o Windows Client Deployment Preparation o Configuring deployment package features and settings o Deploy SEP to WCWS01 using CDW Remote Push o Install a SEP client on the SEPM server Installation and Migration Issues (Maintain and Troubleshoot) o Windows client upgrade o Remote Push and WCSWS01 o Remote Push and network issue o Linux client installation o Installing SEP for Linux Managing the client installation 250-428: of Symantec Endpoint Protection 14 March 2018 Page: 7

Exam Objectives Identify how to verify client connectivity and find clients in the console Describe how to configure communication, general, and security settings Courses: Symantec Endpoint Protection 14.x: Manage and Administer and Symantec Endpoint Protection 14: Maintain and Troubleshoot Module: Monitoring and Managing Endpoints Lessons: Managing Client-to-Server Communication and Client Communication Issues Labs: Sylink and communication (Manage and Administer) Enrolling new endpoints Interpreting sylink.xml Moving clients to new SEPM Client communication issues (Maintain and Troubleshoot) Workstations do not show in console WCWS01 shows as self-managed Misconfigured Firewall rules Failover troubleshooting Linux not registering in the SEPM Managing client-server communication Course: Symantec Endpoint Protection 14.x: Manage and Administer Module: Monitoring and managing endpoints Lesson: Managing Client Architecture and Active Directory Integration Labs: Working with groups and locations o Creating groups and organizing clients o Managing group inheritance o Locking Tamper Protection o Working with location specific settings Managing client-server communication and updating content 250-428: of Symantec Endpoint Protection 14 March 2018 Page: 8

Exam Objectives Describe how to configure Symantec Endpoint Protection 14 for a virtual environment Describe how to configure LiveUpdate policies Protecting Client in virtual environments Courses: Symantec Endpoint Protection 14.x: Manage and Administer and SEP 14 Maintain and Troubleshoot Module: Enforcing content updates on endpoints using the best method. Lessons: o Configuring Internal and External LiveUpdate Servers o Configuring Group Update Providers o Performing Manual Content Updates o Content Update Issues (Maintain and Troubleshoot) Labs: Managing Content Updates (Manage and Administer) o Configuring LiveUpdate Administrator o Configuring Group Update Providers o Configuring the Content Distribution Monitor Tool o Configuring location aware content updates Content Update Issues (Maintain and Troubleshoot) o LiveUpdate fails o LiveUpdate configuration o Content Delivery by Group Update Provider o GUP Failover Updating content on the Clients 250-428: of Symantec Endpoint Protection 14 March 2018 Page: 9

Exam Objectives Describe when and how to configure exceptions Courses: Symantec Endpoint Protection 14.x: Configure and Protect and Symantec Endpoint Protection 14: Maintain and Troubleshoot Module: Enforcing Adaptive Security Posture (Configure and Protect) Lessons: Managing Exceptions (Configure and Protect) and Incident Handling (Maintain and Troubleshoot) Lab: Enforcing adaptive security o Configuring scan exceptions Managing Exceptions EXAM SECTION 3: Configuring Virus and Spyware Protection Exam Objectives Describe how protection technologies interact and their dependencies Describe how to configure scheduled and on-demand scans Course: Symantec Endpoint Protection 14.x: Configure and Protect Module: Securing Endpoints against File-Based Threats Lesson: Preventing Attacks with SEP Layered Security Managing protection with security policies Managing Virus and Spyware Protection Customizing Scans Courses: Symantec Endpoint Protection 14.x: Configure and Protect and Symantec Endpoint Protection 14: Maintain and Troubleshoot Module: Securing Endpoint Protection against File-Based Threats (Configure and Protect) Lessons: Securing Windows Clients (Configure and Protect) and Incident Handling (Maintain and Troubleshoot) Managing SONAR and Tamper Protection 250-428: of Symantec Endpoint Protection 14 March 2018 Page: 10

Exam Objectives Describe how to configure Auto-Protect for file systems/email clients Describe how to configure Insight and Download Insight Describe how to configure SONAR Courses: Symantec Endpoint Protection 14.x: Configure and Protect and Symantec Endpoint Protection 14: Maintain and Troubleshoot Module: Securing Endpoint Protection against File-Based Threats (Configure and Protect) Lessons: Securing Windows Clients (Configure and Protect) and Incident Handling (Maintain and Troubleshoot) Labs: Incident Handling (Maintain and Troubleshoot) o Protect Solusell Managing SONAR and Tamper Protection Course: Symantec Endpoint Protection 14.x: Configure and Protect Module: Securing Endpoint Protection against File-Based Threats Lesson: Securing Windows Clients Lab: Securing Windows Clients o Detecting unknown threats with Insight Managing SONAR and Tamper Protection Course: Symantec Endpoint Protection 14.x: Configure and Protect Module: Securing Endpoint Protection against File-Based Threats Lesson: Securing Windows Clients Lab: Securing Windows Clients o Configuring real-time behavioral protection (SONAR) Managing SONAR and Tamper Protection 250-428: of Symantec Endpoint Protection 14 March 2018 Page: 11

Exam Objectives Explain the remediation actions for infected files Courses: Symantec Endpoint Protection 14.x: Configure and Protect and Symantec Endpoint 14: Maintain and Troubleshoot Module: Securing Endpoint Protection against File-Based Threats (Configure and Protect) Lessons: Securing Windows Clients and Incident Handling (Maintain and Troubleshoot) Labs: Incident Handling (Maintain and Troubleshoot) o Protect Solusell Managing SONAR and Tamper Protection EXAM SECTION 4: Define and Configure Firewall, Intrusion Prevention, and Application and Device Control Exam Objectives Describe how to configure the firewall policy Course: Symantec Endpoint Protection 14.x: Configure and Protect Module: Securing Endpoints against Network-Based Attacks Lesson: Protecting against Network Attacks and Enforcing Corporate Policies using the Firewall Policy Labs: Protecting against network attacks o o o o Preventing access to non-business sites Blocking remote access when the screensaver runs Blocking learned applications Block OS fingerprint and port scans Managing Firewall Protection 250-428: of Symantec Endpoint Protection 14 July 2017 Page: 10

Exam Objectives Describe how to configure intrusion prevention policies Describe how to configure application and device control policies Describe how to customize firewall, intrusion prevention and application and device control policies Course: Symantec Endpoint Protection 14.x: Configure and Protect Module: Securing Endpoints against Network-Based Attacks Lesson: Blocking Threats with Intrusion Prevention Labs: Blocking threats with Intrusion Prevention o Protecting against memory tampering attacks o Using custom IPS signatures to block a malicious site Managing Intrusion Prevention and Generic Exploit Mitigation Course: Symantec Endpoint Protection 14.x: Configure and Protect Module: Controlling endpoint integrity and compliance Lessons: Controlling Application and File Access and Restricting Device Access for Windows and Mac Clients Labs: Controlling application and file access o Blocking unwanted applications with Application Control Restricting device access for Windows and Mac clients o Disabling optical drives with Device Control Managing application control, device control, and system lockdown Course: Symantec Endpoint Protection 14.x: Configure and Protect Module: Securing Endpoints against Network-Based Attacks Managing application control, device control, and system lockdown Managing Intrusion Prevention and Generic Exploit Mitigation 250-428: of Symantec Endpoint Protection 14 July 2017 Page: 11

EXAM SECTION 5: Responding to Threats Exam Objectives Explain when to install additional Symantec Endpoint Protection Managers and sites Describe how to edit server and site properties Explain the procedures for Symantec Endpoint Protection database management, backup, restore and Symantec Endpoint Protection disaster recovery Course: Symantec Endpoint Protection 14.x: Plan and Implement Module: Planning and Delivering a Successful Implementation Lesson: Installing the SEPM Symantec Endpoint Protection 14: Installation and Planning the Installation For server and site properties, search each topic in the Symantec Endpoint Protection 14 Installation and Guide Course: Symantec Endpoint Protection 14.x: Plan and Implement Module: Planning and Delivering a Successful Implementation Lesson: Benefiting from a SEPM Business Continuity Plan Lab: Back up system files Disaster recovery backups Symantec Endpoint Protection 14: Installation and Managing Databases and Disaster Recovery Describe how to create, view and manage notifications Course: Symantec Endpoint Protection 14.x: Manage and Administer Module: Monitoring and Managing Endpoints Lesson: Monitoring the Environment and Responding to Threats Labs: Managing a security incident from the Monitors and Reports page Setting up alerting Observing an attack in progress Analyzing an incident Cleaning up the infection Symantec Endpoint Protection 14: Installation and Managing Notifications 250-428: of Symantec Endpoint Protection 14 July 2017 Page: 12

Exam Objectives Describe how to manage administrator accounts and delegation of roles Course: Symantec Endpoint Protection 14.x: Manage and Administer Module: Monitoring and Managing Endpoints Lesson: Managing Console Access and Delegating Authority Lab: Administering console accounts Resetting a login Creating a Limited Administrator account Symantec Endpoint Protection 14: Installation and Managing administrator accounts and passwords Describe how and when to use supplemental Symantec tools Course: Symantec Endpoint Protection 14: Maintain and Troubleshoot Lessons: Troubleshooting Tools and Techniques and Incident Handling o Symantec Endpoint Protection: Using Power Eraser to troubleshoot difficult and persistent threats and Appendix D. 250-428: of Symantec Endpoint Protection 14 July 2017 Page: 12

of Symantec Endpoint Protection 14 Sample Exam Sample Questions... 13 Answers... 21 Sample Questions 1. Which protocol does an unmanaged detector use to identify systems on the network? a. ICMP b. TCP c. ARP d. UDP 250-428: of Symantec Endpoint Protection 14 Mar 2017 Page: 13

2. An administrator has successfully installed Symantec Endpoint Protection Manager. Which component is deployed to the server at this point in time? a. AntiVirus/AntiSpyware Protection b. Shared Insight Cache c. Apache Tomcat Server d. Central Quarantine Server e. Internet Information Services (IIS) 3. What is the first step an administrator must complete in order to integrate Active Directory with Symantec Endpoint Protection 14? a. Import a Security Group or a Distribution Group. b. Import an Organizational Unit (OU), User Object, or Computer Object. c. Add the Active Directory server to the Symantec Endpoint Protection Site. d. Add the Active Directory server to a Symantec Endpoint Protection Manager. 250-428: of Symantec Endpoint Protection 14 Mar 2017 Page: 14

4. Which two methods can be used to identify the target machines to which the Symantec Endpoint Protection client can be installed when using the Client Deployment Wizard? (Select two.) a. Browse through Windows networking. b. Import a file containing IP addresses. c. Specify a UNC path. d. Import a file from the Unmanaged Detector. e. Enable the ARP Discovery feature. 5. When Auto-Protect is enabled, protection is optional for which type of file access? a. access b. modify c. backup d. restore 6. What happens when you mark the "Enable NetBIOS Protection" checkbox? a. verifies remote computer identity using WINS server lookup b. blocks NetBIOS requests on all NetBIOS ports c. permits NetBIOS connections from local subnet only d. dynamically adds an allow rule for NetBIOS 250-428: of Symantec Endpoint Protection 14 Mar 2017 Page: 15

7. What are two uses of Application Control? (Select two.)? a. prevents applications from accessing the registry b. prevents applications from creating files c. prevents applications from accessing ports d. prevents applications from replicating e. prevents applications from accessing the network 8. Scheduled reports are delivered as which type? a. HTML b. XML c. MHT d. HTM 9. How does an administrator manage Client User Interface Control Settings? a. by group b. by location c. by domain d. by user 250-428: of Symantec Endpoint Protection 14 Mar 2017 Page: 16

10. Which criteria is used to define a Tamper Protection exception? a. file fingerprint b. file name c. MD5 hash d. process owner 11. What should an administrator configure to prevent clients from receiving Proactive Threat Scan updates? a. Virus and Spyware Protection policy b. LiveUpdate policy c. Intrusion Prevention policy d. LiveUpdate Content policy 12. A company recently installed a proxy server and configured firewall rules to allow only HTTP traffic through the perimeter firewall. Since the change, Symantec Endpoint Protection 14 is unable to receive updates. Which step must be taken on the Symantec Endpoint Protection Manager to receive updates? a. Configure proxy settings within Internet Explorer under Internet Options. b. Configure proxy settings under Server Properties. c. Configure proxy settings within the External Communication Settings. d. Configure proxy settings in the LiveUpdate policy. 250-428: of Symantec Endpoint Protection 14 Mar 2017 Page: 17

13. An administrator plans to make a duplicate of an existing policy and modify it for use on a test client in the Symantec Endpoint Protection Manager (SEPM). What is the quickest and simplest way to duplicate the existing policy? a. Copy and paste the policy's XML file on the SEPM and log back in to the console. b. Copy and paste the policy's XML file on the SEPM and restart the SEPM services. c. In the SEPM console's Policy page, copy the policy, and then paste the policy. d. Add a new client with inheritance turned off, then modify the policy. 14. Which utility should be protected to prevent unauthorized access to the Symantec Endpoint Protection Manager in a production environment? a. resetpass.bat b. sylinkdrop.exe c. scm.bat d. httpd.exe 15. According to Symantec recommendations, a Symantec Endpoint Protection Manager should have how many replication partners? a. up to 4 b. up to 5 c. up to 15 d. up to 11 16. Which two are used to block files using Download Insight, in addition to a file's reputation, (Select two.)? a. the age of the file b. the website the file was downloaded from c. the protocol the file was downloaded with d. the number of other Symantec users with the same file e. a list of Internet domains 250-428: of Symantec Endpoint Protection 14 Mar 2017 Page: 18

17. In which two sets of circumstances would it be beneficial to exclude a host within an IPS policy? (Select two.)? a. A company needs to set up custom intrusion prevent signatures in the IPS policy. b. to allow a vulnerability scanner on the network to ensure compliance with service agreements c. A company may have computers on an internal network that need to be set up for testing purposes. d. to log the activity of a particular machine for auditing e. to create an exception that will exclude particular IPS signatures 18. A company requires that sales representatives' laptops be managed even when they are out of the office. Which set up will ensure the most continuous management? a. Create a remote location using location awareness. b. Place the Symantec Endpoint Protection Manager in the DMZ. c. Install an internal LiveUpdate server in the DMZ. d. Install Symantec Protection Center in the DM." 19. Which is the most appropriate performance use case for searching clients by virtual platform version in the Symantec Endpoint Protection Manager's client view? a. moving clients to a group where Shared Insight Cache is enabled b. moving clients to a location where SONAR features are disabled c. moving clients to a group with disabled scheduled scans d. moving clients to a location with Download Insight enabled 250-428: of Symantec Endpoint Protection 14 Mar 2017 Page: 19

20. What has the greatest impact on the size of the Symantec Endpoint Protection Manager database? a. number of content revisions b. number of log entries c. number of users d. number of backups to keep 250-428: of Symantec Endpoint Protection 14 July 2017 Page: 20

Answers 1-c, 2-c, 3-d, 4-a&b, 5-c, 6-c, 7-a&b, 8-c, 9-b, 10-b, 11-d, 12-b, 13-c, 14-a, 15-b, 16-a&d, 17- b&c, 18-b, 19-a, 20-b 250-428: of Symantec Endpoint Protection 14 July 2017 Page: 21

About Symantec Symantec is a global leader in providing security, storage and systems management solutions to help consumers and organizations secure and manage their information-driven world. Our software and services protect against more risks at more points, more completely and efficiently, enabling confidence wherever information is used or stored. 250-428: of Symantec Endpoint Protection 14 July 2017 Page: 22

For specific country offices and contact numbers, please visit our Web site. Symantec World Headquarters 350 Ellis St. Mountain View, CA 94043 USA +1 (650) 527 8000 1 (800) 721 3934 www.symantec.com 250-428: of Symantec Endpoint Protection 14 July 2017 Page: 23

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback