250-315 Online Practice Questions and Answers

Users report abnormal behavior on systems where Symantec Endpoint Protection is installed.

Which tool can an administrator run on the problematic systems to identify the likely cause of the abnormal behavior?

A. smc.exe -stop

B. SymHelp.exe

C. PowerShell.exe

D. CleanWipe.exe

A Symantec Endpoint Protection administrator needs to comply with a service level agreement stipulating that all definitions must be internally quality assurance tested before being deployed to customers.

Which step should the administrator take?

A. install a LiveUpdate Administrator Server

B. install a Shared Insight Cache Server

C. install a Group Update Provider (GUP) to the existing site

D. install a Symantec Protection Center

A Symantec Endpoint Protection (SEP) administrator is remotely deploying SEP clients, but the clients are failing to install on Windows XP.

What are two possible reasons for preventing installation? (Select two.)

A. Windows firewall is enabled.

B. Internet Connection firewall is disabled.

C. Administrative file shares are enabled.

D. Simple file sharing is enabled.

E. Clients are configured for DHCP.

A company deploys Symantec Endpoint Protection client to its sales staff who travel across the country. Which deployment method should the company use to notify its sales staff to install the client?

A. Push mode

B. Client Deployment Wizard

C. Pull mode

D. Unmanaged Detector

An administrator selects the Backup files before attempting to repair the Remediations option in the Auto-Protect policies.

Which two actions occur when a virus is detected? (Select two.)

A. replace the file with a place holder

B. check the reputation

C. store in Quarantine folder

D. send the file to Symantec Insight

E. encrypt the file

A Symantec Endpoint Protection (SEP) administrator creates a firewall policy to block FTP traffic and assigns the policy to all of the SEP clients. The network monitoring team informs the administrator that a client system is making an FTP connection to a server. While investigating the problem from the SEP client GUI, the administrator notices that there are zero entries pertaining to FTP traffic in the SEP Traffic log or Packet log. While viewing the Network Activity dialog, there is zero inbound/outbound traffic for the FTP process.

What is the most likely reason?

A. The block rule is below the blue line.

B. The server has an IPS exception for that traffic.

C. Peer-to-peer authentication is allowing the traffic.

D. The server is in the IPS policy excluded hosts list.

What is a function of Symantec Insight?

A. provides reputation ratings for structured data

B. enhances the capability of Group Update Providers (GUP)

C. increases the efficiency and effectiveness of LiveUpdate

D. provides reputation ratings for binary executables

Which Symantec Endpoint Protection Management (SEPM) database option is the default for deployments of fewer than 1,000 clients?

A. EmbeddeD. Using the Sybase SQL Anywhere database that comes with the product

B. On SEPM: Installing Microsoft SQL on the same server as the SEPM

C. External to SEPM: Using a preexisting Microsoft SQL server in the environment

D. EmbeddeD. Using the Microsoft SQL database that comes with the product

Where in the Symantec Endpoint Protection (SEP) management console will a SEP administrator find the option to allow all users to enable and disable the client firewall?

A. Client User Interface Control Settings

B. Overview in Firewall Policy

C. Settings in Intrusion Prevention Policy

D. System Lockdown in Group Policy

You have executed the vxdg -g diskgroup adddisk disk_name= command. Which switch needs to be added to force VxVM to take the disk media name of the failed disk and assign it to the new replacement disk?

A. -force

B. -k

C. -f

D. -assign