Broadcom 250-428 Symantec Endpoint Protection 14 Technical Specialist Exam Practice Test

A Symantec Endpoint Protection administrator is using System Lockdown in blacklist mode with a file fingerprint list. When testing a client, the administrator notices that at least one of the files on the list is allowed to execute.

What is the likely cause of the problem?

A Symantec Endpoint Protection administrator needs to prevent users from modifying files in a specific program folder that is on all client machines.

What does the administrator need to configure?

A user is unknowingly about to connect to a malicious website and download a known threat within a .rar file. All Symantec Endpoint Protection technologies are installed on the client's system.

In which feature set order must the threat pass through to successfully infect the system?

A company has an application that requires network traffic in both directions to multiple systems at a specific external domain. A firewall rule was created to allow traffic to and from the external domain, but the rule is blocking incoming traffic.

What should an administrator enable in the firewall policy to allow this traffic?

A threat was detected by Auto-Protect on a client system.

Which command can an administrator run to determine whether additional threats exist?

Which command attempts to find the name of the drive in the private region and to match it to a disk media record that is missing a disk access record?

Which ports on the company firewall must an administrator open to avoid problems when connecting to Symantec Public LiveUpdate servers?