Broadcom 250-428 Exam Practice Test Instant Access

Question 1

A company uses a remote administration tool that is detected and quarantined by Symantec Endpoint Protection (SEP).

Which step can an administrator perform to continue using the remote administration tool without detection by SEP?

ACreate a Tamper Protect exception for the tool

BCreate a SONAR exception for the tool

CCreate an Application to Monitor exception for the tool

DCreate a Known Risk exception for the tool

Answer : D

Question 2

In the virus and Spyware Protection policy, an administrator sets the First action to Clean risk and sets If first action fails to Delete risk.

Which two factors should the administrator consider? (Select two.)

AThe deleted file may still be in the Recycle Bin.

BIT Analytics may keep a copy of the file for investigation.

CFalse positives may delete legitimate files.

DInsight may back up the file before sending it to Symantec.

EA copy of the threat may still be in the quarantine.

Answer : C, E

Question 3

Where can an administrator obtain the Sylink.xml file?

AC:\Program Files\Symantec\Symantec Endpoint Protection\ folder on the client

BC:\Program Files\Symantec\Symantec Endpoint Protection\Manager\data\inbox\agent\ folder on the Symantec Endpoint Protection Manager

Cby selecting the client group and exporting the communication settings in the Symantec Endpoint Protection Manager Console

Dby selecting the location and exporting the communication settings in the Symantec Endpoint Protection Manager Console

Answer : C

Question 4

What is a supported migration path for Symantec Endpoint Protection?

ASymantec Endpoint Protection Enterprise Edition 12.1 > Symantec Endpoint Protection Small Business Edition 12.1

BSymantec Endpoint Protection Small Business Edition 12.1 > Symantec Endpoint Protection Enterprise Edition 12.1

CSymantec Endpoint Protection 12.1 Enterprise Edition > Symantec Endpoint Protection 11.x Enterprise Edition

DSymantec Endpoint Protection Small Business Edition 12.1 > Symantec Endpoint Protection 11.x Small Business Edition

Answer : D

Question 5

An administrator receives a browser certificate warning when accessing the Symantec Endpoint Protection Manager (SEPM) Web console.

Where can the administrator obtain the certificate?

ASEPM console Licenses section

BAdmin > Servers > Configure SecureID Authentication

CSEPM console Admin Tasks

DSEPM Web Access

Answer : D

Question 6

What is a valid Symantec Endpoint Protection (SEP) single site design?

AMultiple MySQL databases

BOne Microsoft SQL Server database

COne Microsoft SQL Express database

DMultiple embedded databases

Answer : A

Question 7

An administrator is responsible for the Symantec Endpoint Protection architecture of a large, multi-national company with three regionalized data centers. The administrator needs to collect data from clients; however, the collected data must stay in the local regional data center. Communication between the regional data centers is allowed 20 hours a day.

How should the administrator architect this organization?

ASet up 3 domains

BSet up 3 sites

CSet up 3 groups

DSet up 3 locations

Answer : A

References: https://support.symantec.com/en_US/article.HOWTO80764.html

Broadcom 250-428 Symantec Endpoint Protection 14 Technical Specialist Exam Practice Test