VMware

Carbon Black Application Control Technical Specialist

250-600

Prepare for the 250-600 exam to validate your skills in Carbon Black Application Control.

195 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 111–120 of 195

Q111

You are configuring whitelist rules in Carbon Black. What happens when a new application is introduced?

  • A Application is automatically allowed
  • B Requires manual approval
  • C Blocked by default
  • D Automatically identified
Explanation New applications require manual approval unless explicitly allowed, ensuring security.
Q112

Which service enables creating and managing application control policies?

  • A Application Control Service
  • B Policy Management Service
  • C Endpoint Protection Service
  • D Threat Detection Service
Explanation The Application Control Service specifically manages application whitelisting policies, while the others serve different functions.
Q113

A company needs to ensure only authorized applications run on endpoints. What should they implement?

  • A Application Whitelisting
  • B Regular Auditing
  • C Firewall Configuration
  • D Data Encryption
Explanation Application Whitelisting restricts execution to only approved software, whereas the others address different security concerns.
Q114

What happens when a non-compliant application is executed under strict enforcement policy?

  • A Application is allowed to run
  • B Application is blocked
  • C User is notified only
  • D System automatically updates
Explanation Under strict enforcement, unapproved applications are blocked, while other options don't reflect the policy’s behavior.
Q115

Which service in VMware Carbon Black provides advanced threat detection?

  • A Event Monitoring
  • B File Integrity Monitoring
  • C Threat Intelligence
  • D Behavioral Analytics
Explanation Threat Intelligence offers advanced threat detection capabilities; the others focus on different types of monitoring and analysis.
Q116

A company needs to create a policy for executable files in VMware Carbon Black. What should they include to allow only trusted applications?

  • A Whitelist unverified software
  • B Blacklist known malware
  • C Enforce application whitelisting
  • D Allow all applications
Explanation Application whitelisting ensures only trusted executables run while the others either allow bad practices or lack enforcement.
Q117

What happens when the Carbon Black server is temporarily disconnected from managed agents?

  • A Agents stop functioning permanently
  • B Agents continue with last policy
  • C Agents revert to factory settings
  • D Agents operate under reduced functionality
Explanation Agents continue to enforce the last applied policy without server connectivity; the other options imply incorrect behaviors of agents.
Q118

What is the primary purpose of VMware Carbon Black Application Control?

  • A Manage software licensing compliance.
  • B Regulate network traffic.
  • C Prevent unauthorized application execution.
  • D Provide cloud storage solutions.
Explanation The primary purpose is to prevent unauthorized application execution; the other options do not relate to its core functionality.
Q119

You are configuring a policy for application whitelisting. What is the default action for unevaluated executables?

  • A Allow execution.
  • B Block execution.
  • C Notify user.
  • D Log only.
Explanation The default action is to block execution while waiting for evaluation, as allowing could introduce security risks.
Q120

A company needs to comply with a new regulatory requirement for their application control policies. Which feature does VMware Carbon Black Application Control provide to assist?

  • A Policy versioning.
  • B Built-in reporting templates.
  • C User training modules.
  • D Automated incident response.
Explanation Built-in reporting templates help demonstrate compliance; other options do not specifically address regulatory needs.