250-438 by Symantec Actual Free Exam Q&As

Question 1

Which two detection servers are available as virtual appliances? (Choose two.)

A. Network Prevent for Email B. Network Discover C. Optical Character Recognition (OCR) D. Network Prevent for Web E. Network Monitor

Discussion 0

Correct Answer: A,D Vote an answer

Question 2

A DLP administrator has added several approved endpoint devices as exceptions to an Endpoint Prevent policy that blocks the transfer of sensitive data. However, data transfers to these devices are still being blocked.
What is the first action an administrator should take to enable data transfers to the approved endpoint devices?

A. Disable and re-enable the Endpoint Prevent policy to activate the changes B. Edit the exception rule to ensure that the "Match On" option is set to "Attachments" C. Double-check that the correct device ID or class has been entered for each device D. Verify Application File Access Control (AFAC) is configured to monitor the specific application

Discussion 0

Correct Answer: B Vote an answer

Question 3

What is the correct configuration for "BoxMonitor.Channels" that will allow the server to start as a Network Monitor server?

A. Packet Capture, Copy Rule B. Packet capture, Network Monitor C. Packet Capture, Span Port D. Packet Capture, Network Tap

Discussion 0

Correct Answer: A Vote an answer

Question 4

What is Application Detection Configuration?

A. the setting configured within the user interface (UI) that determines whether CloudSOC should send a file to Cloud Detection Service (CDS) for analysis. B. The Data Loss Prevention (DLP) policy which has been pushed into Cloud Detection Service (CDC) for files in transit to or residing in Cloud apps C. The terminology describing the Data Loss Prevention (DLP) process within the CloudSOC administration portal D. The Cloud Detection Service (CDS) process that tells Enforce a policy has been violated

Discussion 0

Correct Answer: D Vote an answer

Question 5

What is the default fallback option for the Endpoint Prevent Encrypt response rule?

A. Block B. Encrypt C. Notify D. User Cancel

Discussion 0

Correct Answer: C Vote an answer

Question 6

A DLP administrator has performed a test deployment of the DLP 15.0 Endpoint agent and now wants to uninstall the agent. However, the administrator no longer remembers the uninstall password.
What should the administrator do to work around the password problem?

A. Replace the PGPsdk.dll file on the agent's assigned Endpoint server with a copy from a different Endpoint server B. Use the UninstallPwdGenerator to create an UninstallPasswordKey. C. Apply a new global agent uninstall password in the Enforce management console. D. Manually delete all the Endpoint agent files from the test computer and install a new agent package.

Discussion 0

Correct Answer: B Vote an answer

Question 7

An administrator is unable to log in to the Enforce management console as "sysadmin". Symantec DLP is configured to use Active Directory authentication. The administrator is a member of two roles: "sysadmin" and "remediator." How should the administrator log in to the Enforce console with the "sysadmin" role?

A. sysadmin\username@domain B. username\sysadmin C. domain\username D. sysadmin\username

Discussion 0

Correct Answer: C Vote an answer

Symantec Administration of Symantec Data Loss Prevention 15 - 250-438 Exam Practice Test