Symantec 250-438 - Administration of Symantec Data Loss Prevention 15 Exam
Page: 2 / 14
Total 70 questions
Question #6 (Topic: Topic 1)
How should a DLP administrator exclude a custom endpoint application named ג€custom_app.exeג€ from being monitoring by Application File Access Control?
A. Add ג€custom_app.exeג€ to the ג€Application Whitelistג€ on all Endpoint servers.
B. Add ג€custom_app.exeג€ Application Monitoring Configuration and de-select all its channel options.
C. Add ג€custom_app_.exeג€ as a filename exception to the Endpoint Prevent policy.
D. Add ג€custom_app.exeג€ to the ג€Program Exclusion Listג€ in the agent configuration settings.
Answer: B
Question #7 (Topic: Topic 1)
A software company wants to protect its source code, including new source code created between scheduled indexing runs.
Which detection method should the company use to meet this requirement?
Which detection method should the company use to meet this requirement?
A. Exact Data Matching (EDM)
B. Described Content Matching (DCM)
C. Vector Machine Learning (VML)
D. Indexed Document Matching (IDM)
Answer: C
Question #8 (Topic: Topic 1)
What are two reasons an administrator should utilize a manual configuration to determine the endpoint location? (Choose two.)
A. To specify Wi-Fi SSID names
B. To specify an IP address or range
C. To specify the endpoint server
D. To specify domain names
E. To specify network card status (ON/OFF)
Answer: BD
Question #9 (Topic: Topic 1)
What detection server is used for Network Discover, Network Protect, and Cloud Storage?
A. Network Protect Storage Discover
B. Network Discover/Cloud Storage Discover
C. Network Prevent/Cloud Detection Service
D. Network Protect/Cloud Detection Service
Answer: B
Question #10 (Topic: Topic 1)
Which product is able to replace a confidential document residing on a file share with a marker file explaining why the document was removed?
A. Network Discover
B. Cloud Service for Email
C. Endpoint Prevent
D. Network Protect
Answer: D
