Trend Deep-Security-Professional Exam Practice Test Instant Access

Question 1

How is scan caching used in agentless implementations of Deep Security?

AScan caching maintains the Inclusions and Exclusions lists from the Malware Scan Configuration in memory to improve performance.

BScan caching manages resource usage by staggering the launch of malware scans to prevent scan storms

CScan caching is used in Agent-based installations only and is not supported in an agentless implementation.

DScan caching enhances the performance of the Deep Security Virtual Appliance in that files scanned for malware on a virtual machine that appear on other virtual machines may not need to be scanned again.

Answer : D

Question 2

Where does Deep Security Manager store the credentials it uses to access the database?

AIn the logging.properties file

BIn the dsm.properties file

CIn the Windows Registry

DIn the database.properties file

Answer : B

Question 3

Which of the following statements is correct regarding the policy settings displayed in the exihibit?

AThe Heartbeat interval value displayed in this policy is inherited from the parent policy

BDeep Security Agents using the displayed policy will send event details to Deep Security Manager every 5 minutes.

CAll Deep Security Agents will send event details to Deep Security Manager every 5 minutes.

DDeep Security Manager will refresh the policy details on the Deep Security Agents using this policy every 5 minutes.

Answer : C

Question 4

Based on the following exhibit, what behavior would you expect for the Application Control Protection Module?

ASince this computer is in Maintenance Mode, updates to the Application Control Pro-tection Module will be applied.

BSince this computer is in Maintenance Mode, new or changed software will be auto-matically added to the list of Allowed software in the currently active ruleset.

CSince this computer is in Maintenance Mode, Application Control will allow any Blocked software to temporarily run

DSince this computer is in Maintenance Mode, Application Control will ignore any Blocked software in the currently active ruleset.

Answer : A

Question 5

Which of the following statements correctly describes Smart Folders?

ASmart Folders identify the folders that will be scanned when a Real-Time, Manual or Scheduled malware scan is run.

BSmart Folders are a collection of subfolders containing the policy settings that are ap-plied to child policies or directly to Computers.

CSmart Folders act as a saved search of computers which is executed each time the folder is clicked to display its contents.

DSmart Folders are the containers used to store the results of Recommendation Scans. Once a Recommendation Scan has completed, and administrator can click a Smart Folder and select which of the recommended rules to apply.

Answer : C

Smart Folders are used to group your computers dynamically. The computers displayed in a Smart Folder are determined by a set of custom rules, that act as a saved search which is executed each time you click on the folder to display its contents. This allows administrators to easily filter and group computers by these defined properties.

Explication: Study Guide - page (127)

Question 6

The "Protection Source when in Combined Mode" settings are configured for a virtual machine as in the exhibit. You would like to enable Application Control on this virtual machine, but there is no corresponding setting displayed. Why?

AIn the example displayed in the exhibit, no activation code was entered for Application Control. Since the Protection Module is not licensed, the corresponding settings are not displayed.

BThese settings are used when both an host-based agent and agentless protection are available for the virtual machine. Since Application Control is not supported in agentless installations, there is no need for the setting.

CIn the example displayed in the exhibit, the Application Control Protection Module has not yet been enabled. Once it is enabled for this virtual machine, the corresponding settings are displayed.

DIn the example displayed in the exhibit, the VMware Guest Introspection Service has not yet been installed. This service is required to enable Application Control in agentless installations.

Answer : B

Question 7

Based on the policy configuration displayed in the exhibit, which of the following statements is true?

AChanges to any of the Deep Security policies will be send to the Deep Security Agents as soon as the changes are saved.

BAdministrators with access to the protected Server will be able to uninstall the Deep Security Agent through Windows Control Panel.

CDeep Security Agents will send event information to Deep Security Manager every 10 minutes.

DIf the Deep Security Manager does not receive a message from the Deep Security agent every 20 minutes, an alert will be raised.

Answer : B

Trend Micro Certified Professional for Deep Security Exam Practice Test