250-438 Online Practice Questions and Answers

What are two reasons an administrator should utilize a manual configuration to determine the endpoint location? (Choose two.)

A. To specify Wi-Fi SSID names

B. To specify an IP address or range

C. To specify the endpoint server

D. To specify domain names

E. To specify network card status (ON/OFF)

Which product is able to replace a confidential document residing on a file share with a marker file explaining why the document was removed?

A. Network Discover

B. Cloud Service for Email

C. Endpoint Prevent

D. Network Protect

Which action should a DLP administrator take to secure communications between an on-premises Enforce server and detection servers hosted in the Cloud?

A. Use the built-in Symantec DLP certificate for the Enforce Server, and use the "sslkeytool" utility to create certificates for the detection servers.

B. Use the built-in Symantec DLP certificate for both the Enforce server and the hosted detection servers.

C. Set up a Virtual Private Network (VPN) for the Enforce server and the hosted detection servers.

D. Use the "sslkeytool" utility to create certificates for the Enforce server and the hosted detection servers.

Which two components can perform a file system scan of a workstation? (Choose two.)

A. Endpoint Server

B. DLP Agent

C. Network Prevent for Web Server

D. Discover Server

E. Enforce Server

Which two actions are available for a "Network Prevent: Remove HTTP/HTTPS content" response rule when the content is unable to be removed? (Choose two.)

A. Allow the content to be posted

B. Remove the content through FlexResponse

C. Block the content before posting

D. Encrypt the content before posting

E. Redirect the content to an alternative destination

Which option is an accurate use case for Information Centric Encryption (ICE)?

A. The ICE utility encrypts files matching DLP policy being copied from network share through use of encryption keys.

B. The ICE utility encrypts files matching DLP policy being copied to removable storage through use of encryption keys.

C. The ICE utility encrypts files matching DLP policy being copied to removable storage on an endpoint use of certificates.

D. The ICE utility encrypts files matching DLP policy being copied from network share through use of certificates

Which detection server is available from Symantec as a hardware appliance?

A. Network Prevent for Email

B. Network Discover

C. Network Monitor

D. Network Prevent for Web

A company needs to implement Data Owner Exception so that incidents are avoided when employees send or receive their own personal information. What detection method should the company use?

A. Indexed Document Matching (IDM)

B. Vector Machine Learning (VML)

C. Exact Data Matching (EDM)

D. Described Content Matching (DCM)

What should an incident responder select in the Enforce management console to remediate multiple incidents simultaneously?

A. Smart Response on the Incident page

B. Automated Response on the Incident Snapshot page

C. Smart Response on an Incident List report

D. Automated Response on an Incident List report

Which service encrypts the message when using a Modify SMTP Message response rule?

A. Network Monitor server

B. SMTP Prevent

C. Enforce server

D. Encryption Gateway