Exam 2: Administration of Symantec Email Security.cloud (v1)

Which protection engine should an administrator enable in order to drop malicious vulnerability scans against a client system?

A large-scale virus attack is occurring and a notification condition is configured to send an email whenever viruses infect five computers on the network. A Symantec Endpoint Protection administrator has set a one hour damper period for that notification condition. How many notifications dos the administrator receive after 30 computers are infected in two hours?

An organization has several Symantec Endpoint Protection Management (SEPM) Servers without access to the Internet. The SEPM can only run LiveUpdate within a specified "maintenance window" outside of business hours. What content distribution method should the organization utilize?

An administrator receives a browser certificate warning when accessing the Symantec Endpoint Protection Manager (SEPM) Web console. Where can the administrator obtain the certificate?

Which tool should the administrator run before starting the Symantec Endpoint Protection Manager upgrade according to best practices?

A company needs to configure an Application and Device Control policy to block read/write access to all USB removable media on its Symantec Endpoint Protection (SEP) systems. Which tool should an administrator use to format the GUID and device IDs as required by SEP?

Which two instances could cause Symantec Endpoint Protection to be unable to remediate a file? (Select two.)

How could an administrator decrease the timeout period before logging back onto the management console?

A company uses a remote administration tool that is detected as Hacktool.KeyLoggPro and quarantined by Symantec Endpoint Protection (SEP). Which step can an administrator perform to continue using the remote administration tool without detection by SEP?

In addition to performance improvements, which two benefits does Insight provide? (Select two)

A company deploys Symantec Endpoint Protection client to its sales staff who travel across the country. Which deployment method should the company use to notify its sales staff to install the client?

Which package type should an administrator use to reduce a SEP environment's footprint when considering that new SEP 14 clients will be installed on point of sale terminals?

A company has 10,000 Symantec Endpoint Protection (SEP) clients deployed using two Symantec Endpoint Protection Managers (SEPMs). Which configuration is recommended to ensure that each SEPM is able to effectively handle the communications load with the SEP clients?

Which feature reduces the impact of Auto-Protect on a virtual client guest operating system?

An organization's Limited Administrator needs to create an exclusion. When the Limited Administrator logs in, they do NOT see Exceptions listed as an option on the Policies page. What setting should a System Administrator enable so the Limited Administrator could see Exceptions and create an exclusion?

What SEPM report should an administrator utilize to view the files that Download Insight detected on your computers, after configuring Download Insight?

Which action should an administrator take to prevent users from using Windows Security Center?

Which technology can prevent an unknown executable from being downloaded through a browser session?

An organization has a group of 500 SEP for Windows Clients running 12.1 RU5. The organization wants to migrate the clients to 14 RU1, but must minimize WAN bandwidth usage. What installation method should the organization use?

An organization needs to be notified when certain types of events happen in their SEP environment. What notification type should the SEP Administrator create to see attacks and events that the firewall or Intrusion Protection System (IPS) detects?