Broadcom 250-438 Exam Practice Test Instant Access

Question 1

Which action should a DLP administrator take to secure communications between an on-premises Enforce server and detection servers hosted in the Cloud?

AUse the built-in Symantec DLP certificate for the Enforce Server, and use the ''sslkeytool'' utility to create certificates for the detection servers.

BUse the built-in Symantec DLP certificate for both the Enforce server and the hosted detection servers.

CSet up a Virtual Private Network (VPN) for the Enforce server and the hosted detection servers.

DUse the ''sslkeytool'' utility to create certificates for the Enforce server and the hosted detection servers.

Answer : A

Question 2

What detection method utilizes Data Identifiers?

AIndexed Document matching (IDM)

BDescribed Content Matching (DCM)

CDirectory Group Matching (DGM)

DExact Data Matching (EDM)

Answer : D

Question 3

An administrator is unable to log in to the Enforce management console as â€œsysadminâ€. Symantec DLP is configured to use Active Directory authentication. The administrator is a member of two roles: â€œsysadminâ€ and â€œremediator.â€

How should the administrator log in to the Enforce console with the â€œsysadminâ€ role?

Asysadmin\username

Bsysadmin\username@domain

Cdomain\username

Dusername\sysadmin

Answer : C

Question 4

A DLP administrator determines that the SymantecDLPProtectIncidents folder on the Enforce server contains. BAD files dated today, while other. IDC files are flowing in and out of the Incidents directory. Only .IDC files larger than 1MB are turning to .BAD files.

What could be causing only incident data smaller than 1MB to persist while incidents larger than 1MB change to .BAD files?

AA corrupted policy was deployed.

BThe Enforce server's hard drive is out of space.

CA detection server has excessive filereader restarts.

DTablespace is almost full.

Answer : D

Question 5

Which product is able to replace a confidential document residing on a file share with a marker file explaining why the document was removed?

ANetwork Discover

BCloud Service for Email

CEndpoint Prevent

DNetwork Protect

Answer : D

Question 6

Which action is available for use in both Smart Response and Automated Response rules?

ALog to a Syslog Server

BLimit incident data retention

CModify SMTP message

DBlock email message

Answer : D

Question 7

Which tool must a DLP administrator run to certify the database prior to upgrading DLP?

ALob_Tablespace Reclamation Tool

BUpgrade Readiness Tool

CSymDiag

DEnforceMigrationUtility

Answer : B

Broadcom 250-438 Administration of Symantec Data Loss Prevention 15 Exam Practice Test