Now there are many IT professionals in the world and the competition of IT industry is very fierce. So many IT professionals will choose to participate in the IT certification exam to improve their position in the IT industry. 250-315 exam is a very important Symantec's certification exam. But if you want to get a Symantec certification, you must pass the exam.
IT-Tests.com is a convenient website to provide service for many of the candidates participating in the IT certification exams. A lot of candidates who choose to use the IT-Tests's product have passed IT certification exams for only one time. And from the feedback of them, helps from IT-Tests.com are proved to be effective. IT-Tests's expert team is a large team composed of senior IT professionals. And they take advantage of their expertise and abundant experience to come up with the useful training materials about 250-315 certification exam. IT-Tests's simulation test software and related questions of 250-315 certification exam are produced by the analysis of 250-315 exam outline, and they can definitely help you pass your first time to participate in 250-315 certification exam.
Exam Code: 250-315
Exam Name: Symantec (Administration of Symantec Endpoint Protection 12.1)
IT-Tests.com promise that we will spare no effort to help you pass Symantec certification 250-315 exam. Now you can free download part of practice questions and answers of Symantec certification 250-315 exam on IT-Tests. When you select IT-Tests, you can not only pass Symantec certification 250-315 exam, but also have one year free update service. IT-Tests.com can also promise if you fail to pass the exam, IT-Tests.com will 100% refund.
Now Symantec 250-315 is a hot certification exam in the IT industry, and a lot of IT professionals all want to get Symantec 250-315 certification. So Symantec certification 250-315 exam is also a very popular IT certification exam. Symantec 250-315 certificate is very helpful to your work in the IT industry, which can help promote your position and salary a lot and let your life have more security.
250-315 (Administration of Symantec Endpoint Protection 12.1) Free Demo Download: http://www.it-tests.com/250-315.html
NO.1 Which Symantec Endpoint Protection 12.1 component provides single-sign-on to the Symantec
Endpoint Protection Manager and other products, along with cross-product reporting?
A. Symantec Reporting server
B. Symantec Security Information Manager
C. IT Analytics
D. Symantec Protection Center
Answer: D
Symantec dumps 250-315 exam simulations 250-315 test answers 250-315 test questions 250-315 test answers
NO.2 An administrator is logged in to the Symantec Endpoint Protection Manager (SEPM) console for a
system named SEPM01. The groups and policies that were previously in the SEPM01 console are
unavailable and have been replaced with unfamiliar groups and policies. What was a possible reason for
this change?
A. The administrator was modified from using Computer mode to User mode.
B. The administrator was logged in to the incorrect domain for SEPM01.
C. The administrator was changed from a limited administrator to a system administrator.
D. The administrator was using the Web console instead of the Java console.
Answer: B
Symantec exam 250-315 250-315 exam prep
NO.3 Which Symantec Endpoint Protection 12.1 component uses reputation to evaluate a file?
A. Shared Insight Cache server
B. Symantec Endpoint Protection client
C. Symantec Endpoint Protection Manager
D. LiveUpdate Administrator server
Answer: B
Symantec demo 250-315 250-315 250-315 original questions
NO.4 How can an administrator manage multiple, independent companies from one database while
maintaining independent groups, computers, and policies?
A. Set up limited administrators with appropriate rights.
B. Set up separate domains.
C. Set up additional sites using a single database.
D. Set up separate locations and turn off inheritance.
Answer: B
Symantec dumps 250-315 250-315 demo 250-315 exam dumps
NO.5 How many Symantec Endpoint Protection Managers can be connected to an embedded database?
A. 1
B. 2
C. 5
D. 10
Answer: A
Symantec questions 250-315 250-315 250-315
NO.6 Which component is required in order to run Symantec Endpoint Protection 12.1 protection
technologies?
A. Symantec Endpoint Protection Manager
B. Symantec Endpoint Protection client
C. LiveUpdate Administrator server
D. Symantec Protection Center
Answer: B
Symantec 250-315 250-315 exam dumps 250-315 250-315 exam simulations 250-315
NO.7 Which Symantec Endpoint Protection 12.1 defense mechanism provides protection against worms like
W32.Silly.FDC, which propagate from system to system through the use of autorun.inf files?
A. Application Control
B. SONAR
C. Client Firewall
D. Exceptions
Answer: A
Symantec 250-315 250-315 certification 250-315 exam simulations
NO.8 Which Symantec Endpoint Protection 12.1 component uses Sybase SQL Anywhere?
A. Symantec Endpoint Protection Manager embedded database
B. Symantec Endpoint Protection Manager remote database
C. LiveUpdate Administrator server
D. Shared Insight Cache server
Answer: A
Symantec 250-315 250-315 250-315 250-315
NO.9 A company with one site has a factory with computers in the manufacturing area. Both factory
managers and operators need to log in to these shared computers. Different policies will be applied
depending on whether the individual logging in to the machine is a manager or an operator. Which
Symantec Endpoint Protection 12.1 feature provides this ability?
A. Computer mode
B. Active Directory synchronization
C. User mode
D. Console authentication
Answer: C
Symantec questions 250-315 250-315 exam 250-315 certification training
NO.10 According to Symantec, what is a botnet.?
A. systems infected with the same virus strain
B. groups of systems performing remote tasks without the users' knowledge
C. groups of computers configured to steal credit card records
D. compromised systems opening communication to an IRC channel
Answer: B
Symantec 250-315 exam simulations 250-315 250-315 exam 250-315 test answers
NO.11 A company is experiencing a malware outbreak. The company deploys Symantec Endpoint Protection
12.1, with only Virus and Spyware Protection, Application and Device Control, and Intrusion Prevention
technologies. Why would Intrusion Prevention be unable to block all communications from an attacking
host?
A. Intrusion Prevention needs the firewall component to block all traffic from the attacking host.
B. Intrusion Prevention blocks the attack only if the administrator wrote a signature for it.
C. Intrusion Prevention definitions are out-of-date.
D. Intrusion Prevention is set to log only.
Answer: A
Symantec 250-315 certification training 250-315 exam
NO.12 Which Symantec Endpoint Protection 12.1 protection technology provides the primary protection layers
against zero-day network attacks?
A. SONAR
B. Client Firewall
C. Intrusion Prevention
D. System Lockdown
Answer: C
Symantec test answers 250-315 250-315 250-315 test 250-315
NO.13 Drive-by downloads are a common vector of infections. Some of these attacks use encryption to bypass
traditional defense mechanisms. Which Symantec Endpoint Protection 12.1 protection technology blocks
such obfuscated attacks?
A. SONAR
B. Bloodhound heuristic virus detection
C. Client Firewall
D. Browser Intrusion Prevention
Answer: D
Symantec dumps 250-315 certification 250-315 250-315 answers real questions 250-315 study guide
NO.14 A financial company has a security policy that prevents banking system workstations from connecting to
the internet. Which Symantec Endpoint Protection 12.1 protection technology will be prevented from
working on the company's workstations?
A. Insight
B. Application and Device Control
C. Network Threat Protection
D. LiveUpdate
Answer: A
Symantec exam 250-315 test 250-315 exam simulations
NO.15 In addition to performance improvements, which two benefits does Insight provide? (Select two.)
A. reputation scoring for documents
B. zero-day threat detection
C. protection against system file modifications
D. false positive mitigation
E. blocking of malicious websites
Answer: B,D
Symantec 250-315 certification 250-315
NO.16 Which Symantec Endpoint Protection 12.1 component improves performance because known good
files are skipped?
A. LiveUpdate Administrator server
B. Group Update Provider
C. Shared Insight Cache server
D. Central Quarantine server
Answer: C
Symantec test 250-315 certification 250-315 250-315
NO.17 Which Symantec Endpoint Protection 12.1 component provides services to improve the performance
of virtual client scanning?
A. Shared Insight Cache server
B. LiveUpdate Administrator server
C. Symantec Protection Center
D. Group Update Provider
Answer: A
Symantec questions 250-315 exam dumps 250-315 answers real questions 250-315 250-315 250-315
NO.18 Which two objects in the Symantec Endpoint Protection Manager console describe the most granular
level to which a policy can be applied? (Select two.)
A. Site
B. Domain
C. Group
D. Location
E. Computer
F. User
Answer: C,D
Symantec 250-315 practice test 250-315 practice test 250-315 pdf
NO.19 The fake antivirus family "PC scout" infects systems with a similar method regardless of its variant.
Which SONAR sub-feature can block new variants of the same family, based on sequence of events?
A. artificial intelligence
B. behavioral heuristic
C. human authored signatures
D. behavioral policy lockdown
Answer: C
Symantec braindump 250-315 250-315 250-315
NO.20 How does the Intrusion Prevention System add an additional layer of protection to Network Threat
Protection?
A. It inspects the TCP packet headers and tracks the sequence number.
B. It performs deep packet inspection, reading the packet headers, and data portion.
C. It examines TCP/IP traffic from the application and traces the source of the traffic.
D. It monitors IP datagrams for abnormalities.
Answer: B
Symantec pdf 250-315 250-315 test answers 250-315 questions
If you IT-Tests, IT-Tests.com can ensure you 100% pass Symantec certification 250-315 exam. If you fail to pass the exam, IT-Tests.com will full refund to you.
没有评论:
发表评论