VMware
Carbon Black Application Control Technical Specialist
250-600
Prepare for the 250-600 exam to validate your skills in Carbon Black Application Control.
195 questions
0 views
Free
Questions 191–195 of 195
A company needs to prevent unknown executable files from running on its endpoints. What should be configured?
-
A
Application Control Policy
-
B
User Behavior Analytics
-
C
Incident Response Plan
-
D
Data Loss Prevention
Explanation
Application Control Policy directly prevents unknown executables, while others do not focus on execution prevention.
You are configuring a new application whitelist. What happens when a non-whitelisted application attempts to execute?
-
A
Execution is allowed with a prompt
-
B
Execution is blocked by default
-
C
Execution is logged and monitored
-
D
Execution is allowed for administrators only
Explanation
Unlisted applications are blocked by default unless exceptions are defined; others misrepresent the functionality.
Which service in VMware Carbon Black helps in enforcing application control policies?
-
A
Policy Management
-
B
Threat Intelligence
-
C
Incident Response
-
D
Cloud Monitoring
Explanation
Policy Management enforces application control policies; the others do not directly pertain to policy enforcement.
A company needs to prevent unauthorized software on endpoints. What feature should be configured in VMware Carbon Black Application Control?
-
A
Integrity Monitoring
-
B
Application Whitelisting
-
C
User Behavior Analytics
-
D
Malware Detection
Explanation
Application Whitelisting prevents unauthorized software; the other options do not directly achieve this goal.
What happens when an event is mistakenly marked as 'trusted' in Carbon Black?
-
A
It's permanently allowed
-
B
Requires immediate reporting
-
C
Cannot be changed later
-
D
Path to remediation is created
Explanation
Marking an event as 'trusted' allows it permanently, while the other options do not apply.