VMware

Symantec Endpoint Protection 14.x Admin R2 Technical Specialist

250-605

Validate your skills in endpoint protection with the 250-605 exam.

198 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 31–40 of 198

Q31

Which service is responsible for device control in Symantec Endpoint Protection?

  • A Device Control Service
  • B Firewall Service
  • C Antivirus Service
  • D Intrusion Prevention Service
Explanation Device Control Service manages device permissions; others focus on threats.
Q32

A company needs to isolate a potentially infected system. What is the most effective method using Symantec Endpoint Protection?

  • A Run a full system scan
  • B Use Application Control
  • C Activate Network Threat Protection
  • D Enable the LiveUpdate feature
Explanation Network Threat Protection isolates the device; others do not directly isolate.
Q33

You are configuring notifications for malware detection. What happens if 'Highest Risk' is set to only send emails to admins?

  • A Only critical infections are reported
  • B All types of infections are reported
  • C No email notifications are sent
  • D Users also receive the notifications
Explanation 'Highest Risk' settings alert only for critical threats; others do not limit to critical infections.
Q34

Which service does Symantec Endpoint Protection use for centralized management?

  • A Symantec Management Console
  • B Endpoint Security Manager
  • C Symantec Cloud Engine
  • D Threat Control Center
Explanation The Symantec Management Console provides centralized management; the others are incorrect services.
Q35

A company needs to deploy a new security policy to restrict USB access. What is the best immediately actionable step?

  • A Disable USB ports in BIOS
  • B Configure device control policy
  • C Install additional antivirus software
  • D Use Group Policy Objects
Explanation Configuring a device control policy directly addresses USB restrictions, while the others are not effective for managing USB access.
Q36

What happens when a security group policy is set to 'Block All' on clients?

  • A Only trusted applications allowed
  • B All applications blocked
  • C Users can override the setting
  • D Only network connections blocked
Explanation 'Block All' policy prevents all applications, while the other options state incorrect policies or behaviors.
Q37

Which service in Symantec Endpoint Protection handles client communication?

  • A Symantec Endpoint Protection Manager
  • B Intelligent Threat Cloud
  • C LiveUpdate
  • D Network Threat Protection
Explanation The Symantec Endpoint Protection Manager facilitates client-server communication, while the other options serve different functions.
Q38

A company needs to enforce a policy that blocks USB storage devices on all endpoints. Which feature should they use?

  • A Application Control
  • B Device Control
  • C Firewall Configuration
  • D Network Access Control
Explanation Device Control specifically manages and restricts peripheral devices like USBs, unlike the other options.
Q39

What happens when a client is unable to connect to the Symantec Endpoint Protection Manager for an extended period?

  • A Client will be quarantined
  • B Client policies become outdated
  • C Client operates in a fully blocked state
  • D Client uninstall happens automatically
Explanation Clients will still operate but their policies will not receive updates, while the other options do not reflect client behavior.
Q40

What happens when a Symantec Endpoint Protection client is in 'Cached Mode' and cannot connect to the management server?

  • A Updates from local cache apply.
  • B Client reverts to default policies.
  • C All protections are disabled.
  • D Real-time protection stops functioning.
Explanation In 'Cached Mode', the client uses local cache for updates; other options imply total failure which is incorrect.