VMware

Carbon Black Application Control Technical Specialist

250-600

Prepare for the 250-600 exam to validate your skills in Carbon Black Application Control.

195 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 51–60 of 195

Q51

What happens when a user tries to run a blocked application in Carbon Black?

  • A Application runs with warnings
  • B Application is blocked and logged
  • C Application opens in safe mode
  • D User is automatically notified
Explanation Blocked applications are prevented from running, and this action is logged for security oversight, while others are incorrect behaviors.
Q52

A user needs to ensure only approved applications run on endpoints. Which feature of VMware Carbon Black Application Control achieves this?

  • A Application blacklisting
  • B Application whitelisting
  • C Real-time monitoring
  • D Intrusion detection
Explanation Application whitelisting allows only approved applications to run, while blacklisting prevents specified ones.
Q53

You are configuring a new policy for application control. What happens when the policy is set to 'Monitor' mode?

  • A Blocks all unapproved applications
  • B Logs attempts to run unapproved applications
  • C Automatically approves new applications
  • D Deletes unapproved applications immediately
Explanation Monitor mode logs but does not block unapproved applications; it observes user actions.
Q54

A company has strict compliance requirements and needs to ensure only company-approved software runs. Which feature should they enable for compliance reporting?

  • A Incident response
  • B Application control auditing
  • C Firewall logging
  • D User behavior analytics
Explanation Application control auditing tracks and reports compliance with application policies, while the others do not directly pertain to application approval.
Q55

Which service in VMware Carbon Black Application Control is responsible for policy enforcement?

  • A Policy Administration Service
  • B Data Collection Service
  • C Agent Endpoint Service
  • D Monitoring Service
Explanation The Policy Administration Service enforces security policies, while others focus on logging, agent management, or data collection.
Q56

You are configuring file integrity monitoring. What is the primary consideration?

  • A File size restrictions
  • B Monitoring frequency
  • C Type of files monitored
  • D Permissions of users
Explanation Focusing on the types of files ensures relevant changes are tracked, while others affect performance or usability indirectly.
Q57

What happens when a process is not allowed by a policy?

  • A The process is permitted anyway
  • B The process is blocked
  • C The system crashes
  • D An alert is ignored
Explanation The policy enforcement results in the blocking of unauthorized processes, ensuring system security.
Q58

Which service provides real-time threat visibility in VMware Carbon Black?

  • A Threat Analysis
  • B Security Analytics
  • C Event Monitoring
  • D Data Management
Explanation Security Analytics provides real-time insight into threats, while others focus on different aspects of security management.
Q59

A company needs to implement strict controls on application execution. What should they enable to enforce this policy?

  • A Application Control
  • B Data Loss Prevention
  • C Network Segmentation
  • D Firewall Rules
Explanation Application Control specifically governs application execution, unlike the other options which serve different purposes.
Q60

You are configuring a policy in Carbon Black. What happens when a policy is set with a block rule and a process matches this rule?

  • A Process is allowed to execute
  • B Process is logged as informational
  • C Process execution is denied
  • D Process runs in a sandbox
Explanation A block rule explicitly denies any matching process execution, while other options imply a less restrictive outcome.