Symantec 250-438 Exam Questions Free Practice Test

Viewing page 2 out of 3 pages

Viewing questions 11-20 out of questions

Questions # 11:

What is the correct order for data in motion when a customer has integrated their CloudSOC and DLP solutions?

Options:

User > CloudSOC Gatelet > DLP Cloud Detection Service > Application

User > Enforce > Application

User > Enforce > CloudSOC > Application

User > CloudSOC Gatelet > Enforce > Application

Expert Solution

Questions # 12:

Which service encrypts the message when using a Modify SMTP Message response rule?

Options:

Network Monitor server

SMTP Prevent

Enforce server

Encryption Gateway

Expert Solution

Questions # 13:

What should an incident responder select in the Enforce management console to remediate multiple incidents simultaneously?

Options:

Smart response on the Incident page

Automated Response on the Incident Snapshot page

Smart response on an Incident List report

Automated response on an Incident List report

Expert Solution

Questions # 14:

Which server target uses the “Automated Incident Remediation Tracking” feature in Symantec DLP?

Options:

Exchange

File System

Lotus Notes

SharePoint

Expert Solution

Questions # 15:

Which two detection technology options run on the DLP agent? (Choose two.)

Options:

Optical Character Recognition (OCR)

Described Content Matching (DCM)

Directory Group Matching (DGM)

Form Recognition

Indexed Document Matching (IDM)

Expert Solution

Questions # 16:

When managing an Endpoint Discover scan, a DLP administrator notices some endpoint computers are NOT completing their scans.

When does the DLP agent stop scanning?

Options:

When the agent sends a report within the “Scan Idle Timeout” period

When the endpoint computer is rebooted and the agent is started

When the agent is unable to send a status report within the “Scan Idle Timeout” period

When the agent sends a report immediately after the “Scan Idle Timeout” period

Expert Solution

Questions # 17:

A company needs to implement Data Owner Exception so that incidents when employees send or receive their own personal information.

What detection method should the company use?

Options:

Indexed Document Matching (IDM)

Vector Machine Learning (VML)

Exact data matching (EDM)

Described Content matching (DCM)

Expert Solution

Questions # 18:

A DLP administrator is attempting to add a new Network Discover detection server from the Enforce management console. However, the only available options are Network Monitor and Endpoint servers.

What should the administrator do to make the Network Discover option available?

Options:

Restart the Symantec DLP Controller service

Apply a new software license file from the Enforce console

Install a new Network Discover detection server

Restart the Vontu Monitor Service

Expert Solution

Questions # 19:

What is the correct configuration for “BoxMonitor.Channels” that will allow the server to start as a Network Monitor server?

Options:

Packet Capture, Span Port

Packet Capture, Network Tap

Packet Capture, Copy Rule

Packet capture, Network Monitor

Expert Solution

Questions # 20:

Which option correctly describes the two-tier installation type for Symantec DLP?

Options:

Install the Oracle database on the host, and install the Enforce server and a detection server on a second host.

Install the Oracle database on a local physical host, and install the Enforce server and detection servers on virtual hosts in the Cloud.

Install the Oracle database and a detection server in the same host, and install the Enforce server on a second host.

Install the Oracle database and Enforce server on the same host, and install detection servers on separate hosts.

Expert Solution

Viewing page 2 out of 3 pages

Viewing questions 11-20 out of questions

Pass the Symantec Data Loss Prevention 250-438 Questions and answers with CertsForce