Symantec 250-510 braindumps
Posted By admin on September 5, 2010
Symantec is the world’s leading companies, and his certification is the most authoritative. So many people want to get their certification! But because there is not much time or do not have enough confidence, so not to try. Now, test4actual tell you absolutely do not have to worry about, because test4actual is the world’s leading IT supplier of materials!
250-510 is the latest to break test4actual an item bank, it same as the real exam!
and we are sure you will pass the exam with high score!
Product Description:
Exam Name: Administration of SymantecTM Data Loss Prevention 10.5 – BETA
Questions and Answers: 198Q & A
Update Time :2010-8-28
Waiting for? Click here to start your Symantec certification of the road!
Still hesitant? Look at it under the DEMO:
1. Which two products can be run on virtual servers? (Select two.)
A.Endpoint Discover
B.Endpoint Prevent
C.Network Monitor
D.Enforce
E.Network Prevent
Answer: DE
2. How is the incident count for a new system managed in order to avoid overwhelming the incident
response team?
A.Match count thresholds are set.
B.More than one policy is enabled.
C.Many incident responders are allowed access to the system.
D.Incidents are auto-filtered to hide false positives.
Answer: A
3. Which response rule action will be ignored when using an Exact Data Matching (EDM) policy?
A.Endpoint: Notify
B.Network: Block HTTP/HTTPS
C.Protect: Quarantine File
D.Network: Remove HTTP/HTTPS Content
Answer: A
4. Which two recommendations should an organization follow when deploying Endpoint Prevent? (Select
two.)
A.test the agent on a variety of end-user images
B.initially enable monitoring of the local file system
C.enable monitoring of many destinations and protocols simultaneously
D.configure, test, and tune filters
E.configure blocking as soon as the agents are deployed
Answer: AD
5. Which plug-in can connect to Microsoft Active Directory (AD)?
A.CSV Lookup
B.Live LDAP Lookup
C.Active Directory Integration Lookup
D.Directory Server Lookup
Answer: B
6. Which information is recommended to be included in an Exact Data Matching (EDM) data source?
A.date fields
B.numeric fields with fewer than five digits
C.column names in the first row
D.country, state, or province names
Answer: C
7. What are two valid reasons for adding notes to incidents? (Select two.)
A.to provide incident detail to policy violators
B.to allow the next responder to more quickly prioritize incidents for review
C.to allow the next responder to more quickly understand the incident history
D.to provide detail when closing an incident
E.to provide incident detail for report filtering
Answer: CD
8. What must be running on a Linux Enforce server to enable the Symantec Data Loss Prevention user
interface?
A.selinux
B.iptables
C.xwindows
D.ssh
Answer: B
9. Which file on the endpoint machine stores messages that are temporarily cached when using two-tier
policies such as IDM or EDM?
A.is.ead
B.ttds.ead
C.ks.ead
D.cg.ead
Answer: B
10. Which detection server setting enables detecting text within markup language tags?
A.ContentExtraction.MarkupAsText
B.ContentExtraction.EnableMetaData
C.Detection.EncodingGuessingEnabled
D.Lexer.Validate
Answer: A
Comments
Leave a Reply
You must be logged in to post a comment.