VMware 5V0-93.22 Exam Practice Test Instant Access

Question 1

An administrator notices that a sensor's local AV signatures are out-of-date.

What effect does this have on newly discovered files?

AThe reputation is determined by cloud reputation.

BThe sensor prompts the end user to allow or deny the file.

CThe sensor automatically blocks the new file.

DThe sensor is unable to block a malicious file.

Answer : A

Question 2

A security administrator needs to review the Live Response activities and commands that have been executed while performing a remediation process to the sensors.

Where can the administrator view this information in the console?

AUsers

BAudit Log

CNotifications

DInbox

Answer : B

Question 3

An administrator has just placed an endpoint into bypass.

What type of protection, if any, will VMware Carbon Black provide this device?

AVMware Carbon Black will be uninstalled from the endpoint.

BVMware Carbon Black will place the machine in quarantine.

CVMware Carbon Black will not provide any protection to the endpoint.

DVMware Carbon Black will apply policy rules.

Answer : C

Question 4

An administrator would like to proactively know that something may get blocked when putting a policy rule in the environment.

How can this information be obtained?

ASearch the data using the test rule functionality.
B Examine log files to see what would be impacted

CPut the rules in and see what happens to the endpoints.
D Determine what would happen based on previously used antivirus software

Answer : A

Question 5

A script-based attack has been identified that inflicted damage to the corporate systems. The security administrator found out that the malware was coded into Excel VBA and would like to perform a search to further inspect the incident.

Where in the VMware Carbon Black Cloud Endpoint Standard console can this action be completed?

AEndpoints

BSettings

CInvestigate

DAlerts

Answer : C

Question 6

An administrator wants to block an application by its path instead of reputation. The following steps have already been taken:

Go to Enforce > Policies > Select the desired policy >

Which additional steps must be taken to complete the task?

AClick Enforce > Add application path name

BScroll down to the Permissions section > Click Add application path > Enter the path of the desired application

CScroll down to the Blocking and Isolation section > Click Edit (pencil icon) for the desired Reputation

DScroll down to the Blocking and Isolation section > Click Add application path > Enter the path of the desired application

Answer : D

Question 7

What connectivity is required for VMware Carbon Black Cloud Endpoint Standard to perform Sensor Certificate Validation?

ATCP/443 to GoDaddy OCSP and CRL URLs (crl.godaddy.com and ocsp.godaddy.com)

BTCP/80 to GoDaddy OCSP and CRL URLs (crl.godaddy.com and ocsp.godaddy.com)

CTCP/443 to GoDaddy CRL URL (crl.godaddy.com and ocsp.godaddy.com)

DTCP/80 to GoDaddy CRL URL (crl.godaddy.com and ocsp.godaddy.com)

Answer : A

VMware 5V0-93.22 VMware Carbon Black Cloud Endpoint Standard Skills Exam Practice Test