Trend Deep-Security-Professional Exam Practice Test Instant Access

Question 1

The Firewall Protection Module is enabled on a server through the computer details. What is default behavior of the Firewall if no rules are yet applied?

AAll traffic is permitted through the firewall until either a Deny or Allow rule is assigned.

BA collection of default rules will automatically be assigned when the Firewall Protection Module is enabled.

CAll traffic is blocked by the firewall until an Allow rule is assigned.

DAll traffic is passed through the Firewall using a Bypass rule

Answer : B

Deep Security provides a set of Firewall rules that can be applied to policies or directly to a com-puter.

These default rules provide coverage for typical scenarios.

Set up the Deep Security firewall

Explication: Study Guide - page (219)

Question 2

Based on the script displayed in the exhibit, which of the following statements are correct? Select all that apply.

ADeep Security Agents deployed using this script will be activated against Tenant 0 in a multi-tenant environment.

BThis script will deploy the Deep Security Agent on a server, but will not automatically activate it.

CDeep Security Agents deployed using this script are activated against a specific tenant.

DDeep Security Agents deployed using this script will be assigned a specific policy when activated.

Answer : C, D

Question 3

As the administrator in a multi-tenant environment, you would like to monitor the usage of security services by tenants? Which of the following are valid methods for monitoring the usage of the system by the tenants?

AGenerate a Chargeback report in Deep Security manager Web console.

BAll the choices listed here are valid.

CUse the Representational State Transfer (REST) API to collect usage data from the tenants.

DMonitor usage by the tenants from the Statistics tab in the tenant Properties window.

Answer : B

Deep Security Manager records data about tenant usage. This information is displayed in the Ten-ant Protection Activity widget on the Dashboard, the Statistics tab in tenant Properties, and the Chargeback report.

This information can also be accessed through the Status Monitoring REST API which can be enabled or disabled from the Administration > Advanced > System Settings > Advanced > Status Monitoring API.

multi-tenancy

Explication: Study Guide - page (422)

Question 4

The details for an event are displayed in the exhibit. Based on these details, which Protection Module generated the event?

AFirewall

BIntegrity Monitoring

CIntrusion Prevention

DApplication Control

Answer : C

Question 5

Multiple Application Control Events are being displayed in Deep Security after a series of ap-plication updates and the administrator would like to reset Application Control. How can this be done?

AOn the Deep Security Agent computer, type the following command to reset Application Control: dsa_control -r

BClick 'Clear All' on the Actions tab in the Deep Security Manager Web console to reset the list of Application Control events.

CApplication Control can be reset by disabling the Protection Module, then enabling it once again. This will cause local rulesets to be rebuilt.

DApplication Control can not be reset.

Answer : C

Question 6

Which of the following VMware components is not required to enable agentless protection using Deep Security.

AVMware NSX

BVMware ESXi

CVMware vRealize

DVMware vCenter

Answer : C

Integrate with VMware vRealize Operations Manager

Question 7

Which of the following file types would not be evaluated by the Application Control Protection Module?

A.py scripts

B.exe files

C.class files

D.docx files

Answer : D

Trend Micro Certified Professional for Deep Security Deep-Security-Professional Exam Practice Test