MA0-101 Online Practice Questions and Answers

Policies can be configured to drop packets when which of the following has been defined?

A. The policy has been enabled

B. The underlying rule set permits dropped packets

C. The sensor is deployed in Inline mode

D. The policy has been cloned

Which CLI command is used to determine that the Sensor has established trust with the Manager?

A. config

B. status

C. trust

D. show

Which port needs to be opened for install Channel communication between Sensor and Manager through a firewall?

A. 8501

B. 8502

C. 8503

D. 8555

What is the command to enable the sensor to forward all traffic at Layer 2 if a failure occurs?

A. Layer2 mode off

B. Layer2modeon

C. Layer2 mode assert

D. Layer2 mode deassert

Which sensor action allows the detection and dropping of attacks in real-time?

A. Host Quarantine action

B. ICMP Host unreachable

C. TCP reset

D. Drop further packets

Which NSP sensor models support SSL encryption? (Choose three)

A. M-4050

B. M-1450

C. M-2750

D. M-1250

E. M-6050

_____________________are a set of Access Control List (ACL) rules that define network access provided to a host, subject to Network Access Control.

A. Network Access Lists

B. Network Access Objects

C. Network Access Zones

D. Network Access Policy

Identity Based Access Control cannot co-exist with which mode of NAC deployment on the same port?

A. System Health-based NAC

B. DHCP NAC

C. L2 and L3 Deployment modes

D. Mixed Deployment modes

When McAfee NAC reports the host status as unmanaged with an Unknown Hearth Level, the sensor redirects the host to which of the following?

A. Guest Client Portal

B. NAC Client Portal

C. Sensor Client Portal

D. DNS Server Portal

Select the deployment method which enables the most effective Protection/Prevent on mode of operation.

A. in-line

B. SPAN

C. TAP

D. failopen