Broadcom 250-438 Exam Practice Test Instant Access

Question 1

Which action is available for use in both Smart Response and Automated Response rules?

ALog to a Syslog Server

BLimit incident data retention

CModify SMTP message

DBlock email message

Answer : D

Question 2

Which detection server is available from Symantec as a hardware appliance?

ANetwork Prevent for Email

BNetwork Discover

CNetwork Monitor

DNetwork Prevent for Web

Answer : D

Question 3

Which statement accurately describes where Optical Character Recognition (OCR) components must be installed?

AThe OCR engine must be installed on detection server other than the Enforce server.

BThe OCR server software must be installed on one or more dedicated (non-detection) Linux servers.

CThe OCR engine must be directly on the Enforce server.

DThe OCR server software must be installed on one or more dedicated (non-detection) Windows servers.

Answer : C

Question 4

A DLP administrator determines that the SymantecDLPProtectIncidents folder on the Enforce server contains. BAD files dated today, while other. IDC files are flowing in and out of the Incidents directory. Only .IDC files larger than 1MB are turning to .BAD files.

What could be causing only incident data smaller than 1MB to persist while incidents larger than 1MB change to .BAD files?

AA corrupted policy was deployed.

BThe Enforce server's hard drive is out of space.

CA detection server has excessive filereader restarts.

DTablespace is almost full.

Answer : D

Question 5

What detection server is used for Network Discover, Network Protect, and Cloud Storage?

ANetwork Protect Storage Discover

BNetwork Discover/Cloud Storage Discover

CNetwork Prevent/Cloud Detection Service

DNetwork Protect/Cloud Detection Service

Answer : B

Question 6

Which product is able to replace a confidential document residing on a file share with a marker file explaining why the document was removed?

ANetwork Discover

BCloud Service for Email

CEndpoint Prevent

DNetwork Protect

Answer : D

Question 7

Which detection method depends on “training sets”?

AForm Recognition

BVector Machine Learning (VML)

CIndex Document Matching (IDM)

DExact Data Matching (IDM)

Answer : B

Broadcom 250-438 Administration of Symantec Data Loss Prevention 15 Exam Practice Test