VMware

Symantec Secure Sockets Layer Visibility 5.0 Technical Specialist

250-444

Validate your skills in Symantec Secure Sockets Layer Visibility 5.0 with the 250-444 exam.

192 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 161–170 of 192

Q161

A company needs to monitor SSL-encrypted traffic from users accessing external websites. What should they implement?

  • A SSL Visibility Appliance
  • B vSphere Web Client
  • C VMware Horizon
  • D NSX Load Balancer
Explanation The SSL Visibility Appliance is intended for monitoring SSL-encrypted traffic, unlike the other options.
Q162

You are configuring certificate validation in SSL Visibility. What happens when a certificate is untrusted?

  • A Decryption fails silently
  • B Traffic is blocked until resolved
  • C Decryption proceeds with warnings
  • D No actions are taken
Explanation When a certificate is untrusted, decryption may proceed with warnings rather than blocking all traffic, provided settings allow it.
Q163

Which service in Symantec SSL Visibility enables decryption and re-encryption of SSL traffic?

  • A SSL Interception Service
  • B Network Performance Monitor
  • C Cloud Storage Service
  • D Traffic Optimization Service
Explanation The SSL Interception Service decrypts and re-encrypts SSL traffic, while the other services do not focus on SSL operations.
Q164

A company needs to ensure that sensitive data is never transmitted unencrypted. What feature should they configure?

  • A SSL Policy Enforcement
  • B Traffic Compression
  • C Session Caching
  • D Packet Logging
Explanation Configuring SSL Policy Enforcement ensures data encryption, while other options do not prevent unencrypted transmission.
Q165

What happens when SSL Visibility devices are out of sync with time?

  • A Decryption still occurs normally
  • B Logs may have incorrect timestamps
  • C SSL certificates are automatically renewed
  • D Traffic filtering stops working
Explanation Incorrect time synchronization leads to logs with incorrect timestamps; other options do not accurately describe the consequences.
Q166

Which service provides SSL/TLS decryption in Symantec SSL Visibility?

  • A SSL Visibility Appliance
  • B Web Application Firewall
  • C Intrusion Detection System
  • D Network Firewall
Explanation The SSL Visibility Appliance specifically handles SSL/TLS decryption, while others serve different security functions.
Q167

A company needs to inspect encrypted traffic without impacting network performance. What feature should they focus on?

  • A Decryption policies
  • B High availability configuration
  • C Traffic shaping
  • D Load balancing
Explanation Decryption policies enable inspection of encrypted traffic efficiently without slowing down the network, while the others are performance-related features.
Q168

You are configuring session timeout for the SSL Visibility appliance. What is the result of setting it too low?

  • A Increased resource consumption
  • B Frequent user logouts
  • C Enhanced security posture
  • D Faster decryption processes
Explanation Setting a low session timeout leads to frequent logouts as sessions expire quickly, while others do not directly result from this setting.
Q169

Which service is essential for SSL visibility in VMware environments?

  • A SSL/VPN Tunneling Service
  • B VMware Secure Sockets Layer Service
  • C VMware NSX-T Service
  • D Bandwidth Management Service
Explanation VMware Secure Sockets Layer Service provides SSL visibility, while others do not focus on SSL analysis.
Q170

A company needs to inspect encrypted traffic without compromising performance. What is the best approach?

  • A Implement SSL decryption proxies
  • B Use HTTP/2 protocol exclusively
  • C Disable all encryption
  • D Limit traffic to non-encrypted only
Explanation SSL decryption proxies allow inspection while maintaining performance; other options either kill encryption, reduce traffic, or compromise security.