VMware Carbon Black Portfolio Skills 5V0-91.20 Exam Questions

An administrator is concerned that someone may be using unauthorized commands from cmd.exe. These commands are not considered suspicious or malicious, and there is no policy based around them.

Which page should the administrator use to find these commands?

What information does the Alert Details panel provide on the Alert Triage page in Endpoint Standard?

An Endpoint Standard administrator is working with an IT team to explicitly permit specific applications from the environment using both the IT Tools and Certs Approved List features.

Once applied, which reputation would these applications be classified under for processing?

What occurs when an administrator selects "Enable private logging level" in Sensor Settings under Policy?

An analyst navigates to the alerts page in Endpoint Standard and sees the following:

What does the yellow color represent on the left side of the row?

An authorized administrator plans to remove the App Control agent from a computer.

Which Enforcement Level must a computer be in before the agent can be uninstalled?

A process wrote an executable file as detailed in the following event:

Which rule type should be used to ensure that files of the same name and path, written by that process in the future, will not be blocked when they execute?