Broadcom 250-428 Exam Practice Test Instant Access

Question 1

A Symantec Endpoint Protection administrator is using System Lockdown in blacklist mode with a file fingerprint list. When testing a client, the administrator notices that at least one of the files on the list is allowed to execute.

What is the likely cause of the problem?

AThe application has been upgraded.

BThe Application and Device Control policy is in test mode.

CA file exception has been added to the Exceptions policy.

DThe Application and Device Control policy is allowing the file to execute.

Answer : A

Question 2

A Symantec Endpoint Protection administrator needs to prevent users from modifying files in a specific program folder that is on all client machines.

What does the administrator need to configure?

Aa file and folder exception in the Exception policy

Ban application rule set in the Application and Device Control policy

Ca file fingerprint list and System Lockdown

Dthe Tamper Protection settings for the client folder

Answer : B

Question 3

A user is unknowingly about to connect to a malicious website and download a known threat within a .rar file. All Symantec Endpoint Protection technologies are installed on the client's system.

In which feature set order must the threat pass through to successfully infect the system?

ADownload Insight, Firewall, IPS

BFirewall, IPS, Download Insight

CIPS, Firewall, Download Insight

DDownload Insight, IPS, Firewall

Answer : B

Question 4

A company has an application that requires network traffic in both directions to multiple systems at a specific external domain. A firewall rule was created to allow traffic to and from the external domain, but the rule is blocking incoming traffic.

What should an administrator enable in the firewall policy to allow this traffic?

ATCP resequencing

BSmart DHCP

CReverse DNS Lookup

DSmart WINS

Answer : C

Question 5

A threat was detected by Auto-Protect on a client system.

Which command can an administrator run to determine whether additional threats exist?

ARestart Client Computer

BUpdate Content and Scan

CEnable Network Threat Protection

DEnable Download Insight

Answer : A

Question 6

A Symantec Endpoint Protection (SEP) administrator is remotely deploying SEP clients, but the clients are failing to install on Windows XP.

What are two possible reasons for preventing installation? (Select two.)

AWindows firewall is enabled.

BInternet Connection firewall is disabled.

CAdministrative file shares are enabled.

DSimple file sharing is enabled.

EClients are configured for DHCP.

Answer : A, D

Question 7

Employees of an accounting company often take their notebooks to customer sites. The administrator needs to apply a different firewall policy when the notebooks are disconnected from the accounting company's network.

What must the administrator configure to use the two different policies?

AGroups

BDomains

CSites

DLocations

Answer : B

Broadcom 250-428 Symantec Endpoint Protection 14 Technical Specialist Exam Practice Test