VMware

Symantec Endpoint Protection 14.x Admin R2 Technical Specialist

250-605

Validate your skills in endpoint protection with the 250-605 exam.

198 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 191–198 of 198

Q191

A company needs to track user behavior across devices. What Symantec feature should they utilize?

  • A Device Control
  • B Network Access Control
  • C Application Control
  • D User Behavioral Analysis
Explanation User Behavioral Analysis tracks activities; the others focus on device or network controls.
Q192

You are configuring exception policies in Symantec Endpoint Protection. What will happen if a file is excluded from scans?

  • A It won't be scanned for threats.
  • B It is automatically quarantined.
  • C It will be monitored actively.
  • D It is reported in logs.
Explanation Excluding a file means it isn't scanned; others imply accountability or action that doesn't occur.
Q193

Which service is responsible for host isolation in Symantec Endpoint Protection?

  • A Firewall Service
  • B Intrusion Prevention Service
  • C Network Threat Protection
  • D Application Control Service
Explanation Network Threat Protection manages network traffic and can enforce host isolation features, while other services handle different security functions.
Q194

You are configuring policy settings for a specific group. What is the best practice for managing default policies?

  • A Always override default policies.
  • B Edit default policies directly.
  • C Clone default policies for modifications.
  • D Disable default policies entirely.
Explanation Cloning default policies allows for custom settings while preserving the original configurations.
Q195

What happens when a computer runs out of storage space for Endpoint Protection?

  • A Logs will be deleted immediately.
  • B Updates will be applied automatically.
  • C Clients will stop reporting to the server.
  • D Temporary files will be compressed.
Explanation If disk space is insufficient, clients may not be able to communicate with the SEPM, disrupting management functions.
Q196

Which service is responsible for enforcing policies in Symantec Endpoint Protection?

  • A Symantec Endpoint Protection Manager
  • B Symantec LiveUpdate
  • C Security Response Team
  • D Symantec Intrusion Prevention Service
Explanation Symantec Endpoint Protection Manager enforces client policies; the others serve different functions.
Q197

A company needs to protect its endpoints and ensure no unauthorized software is running. What configuration should they enable?

  • A Application Control
  • B Drive Encryption
  • C Firewall Rules
  • D Web Lockdown
Explanation Application Control prevents unauthorized software; the other options do not specifically address software restrictions.
Q198

What happens when a Symantec Endpoint Protection client gets disconnected from the Manager?

  • A It stops all protection activities.
  • B It continues to run locally applied policies.
  • C It uninstalls itself automatically.
  • D It switches to a trial version.
Explanation The client continues to enforce locally applied policies while disconnected, contrary to the other options.