Download Administration of Symantec Endpoint Protection 14.250-428.PracticeTest.2019-08-17.73q.vcex
| Vendor: | Symantec |
| Exam Code: | 250-428 |
| Exam Name: | Administration of Symantec Endpoint Protection 14 |
| Date: | Aug 17, 2019 |
| File Size: | 660 KB |
How to open VCEX files?
Files with VCEX extension can be opened by ProfExam Simulator.
Discount: 20%
Demo Questions
Question 1
Which setting can an administrator configure in the LiveUpdate policy?
- Linux Settings
- Frequency to download content.
- Specific content revision to download from a Group Update Provider (GUP)
- Specific content policies to download
Correct answer: B
Explanation:
References: https://support.symantec.com/en_US/article.TECH104435.html References: https://support.symantec.com/en_US/article.TECH104435.html
Question 2
A Symantec Endpoint Protection Manager (SEPM) administrator notices performance issues with the SEPM server. The Client tab becomes unresponsive in the SEPM console and .DAT files accumulate in the “agentinfo” folder.
Which tool should the administrator use to gather log files to submit to Symantec Technical Support?
- collectLog.cmd
- LogExport.exe
- smc.exe
- ExportLog.vbs
Correct answer: A
Explanation:
References: https://support.symantec.com/en_US/article.TECH105955.html References: https://support.symantec.com/en_US/article.TECH105955.html
Question 3
Which two considerations must an administrator make when enabling Application Learning in an environment? (Select two.)
- Application Learning should be deployed on a small group of systems in the enterprise.
- Application Learning can generate significant CPU or memory use on a Symantec Endpoint Protection Manager.
- Application Learning is dependent on Insight.
- Application Learning requires a file fingerprint list to be created in advance.
- Application Learning can generate increased false positives.
Correct answer: AB
Explanation:
References: https://support.symantec.com/en_US/article.TECH134367.html References: https://support.symantec.com/en_US/article.TECH134367.html
Question 4
Which task should an administrator perform to troubleshoot operation of the Symantec Endpoint Protection embedded database?
- Verify the sqlserver.exe service is running on port 1433
- Verify that dbsrv11.exe is listening on port 2638
- Check the database transaction logs in X:Program FilesMicrosoft SQL Server
- Check whether the MSSQLSERVER service is running
Correct answer: B
Explanation:
References: https://support.symantec.com/en_US/article.TECH160964.html References: https://support.symantec.com/en_US/article.TECH160964.html
Question 5
An administrator notices that some entries list that the Risk was partially removed. The administrator needs to determine whether additional steps are necessary to remediate the threat.
Where in the Symantec Endpoint Protection Manager console can the administrator find additional information on the risk?
- Infected and At Risk Computers report
- Risk log
- Notifications
- Computer Status report
Correct answer: B
Explanation:
References: https://support.symantec.com/en_US/article.TECH95543.html References: https://support.symantec.com/en_US/article.TECH95543.html
Question 6
An administrator reports that the Home, Monitors, and Report pages are absent in the Symantec Endpoint Protection Management console when the administrator logs on.
Which action should the administrator perform to correct the problem?
- Grant the Administrator Full Access to Root group of the organization
- Configure proxy settings for each server in the site
- Configure External Logging to Enable Transmission of Logs to a Syslog Server
- Grant View Reports permission to the administrator
Correct answer: D
Question 7
An administrator is reviewing an Infected Clients Report and notices that a client repeatedly shows the same malware detection. Although the client remediates the files, the infection continues to display in the logs.
Which two functions should be enabled to automate enhanced remediation of a detected threat and its related side effects? (Select two.)
- Stop Service Automatically
- Stop and Reload AutoProtect
- Terminate Processes Automatically
- Risk Tracer
- Early Launch Anti-Malware Driver
Correct answer: AC
Question 8
A company deploys Symantec Endpoint Protection (SEP) to50 virtual machines running on a single ESXi host.
Which configuration change can the administrator make to minimize sudden IOPS impact on the ESXi server while each SEP endpoint communicates with the Symantec Endpoint Protection Manager?
- Reduce number of content revisions to keep
- Increase download randomization window
- Reduce the heartbeat interval
- Increase Download Insight sensitivity level
Correct answer: B
Question 9
An administrator needs to add an Application Exception. When the administrator accesses the Application Exception dialog window, applications fail to appear.
What is the likely problem?
- The Symantec Endpoint Protection Manager is installed on a Domain Controller
- The client computers already have exclusions for the applications.
- The Learn applications that run on the client computers setting is disabled.
- The clients are in a trusted Symantec Endpoint Protection domain.
Correct answer: C
Question 10
An administrator is designing a new single site Symantec Endpoint Protection environment. Due to perimeter firewall bandwidth restrictions, the design needs to minimize the amount of traffic from content passing through the firewall.
Which source must the administrator avoid using?
- Group Update Provider (GUP)
- LiveUpdate Administrator (LUA)
- Symantec Endpoint Protection Manager
- Shared Insight Cache (SIC)
Correct answer: B
HOW TO OPEN VCE FILES
Use VCE Exam Simulator to open VCE files
HOW TO OPEN VCEX AND EXAM FILES
Use ProfExam Simulator to open VCEX and EXAM files
ProfExam at a 20% markdown
You have the opportunity to purchase ProfExam at a 20% reduced price
Get Now!