An administrator is designing a new single site Symantec Endpoint Protection environment. Due to perimeter firewall bandwidth restrictions, the design needs to minimize the amount of traffic from content passing through the firewall.
Which source must the administrator avoid using?
A. Symantec Endpoint Protection Manager
B. LiveUpdate Administrator (LUA)
C. Group Update Provider (GUP)
D. Shared Insight Cache (SIC)
An administrator is using the SylinkDrop tool to update a Symantec Endpoint Protection client install on a system. The client fails to migrate to the new Symantec Endpoint Protection Manager (SEPM), which is defined correctly in the Sylink.xml file that was exported from the SEPM.
Which settings must be provided with SylinkDrop to ensure the successful migration to a new Symantec Endpoint Protection environment with additional Group Level Security Settings?
A. -s "silent"
B. -t "Tamper Protect"
C. -r "reboot"
D. -p "password"
A Symantec Endpoint Protection (SEP) administrator receives multiple reports that machines are experiencing performance issues. The administrator discovers that the reports happen about the same time as the scheduled LiveUpdate.
Which setting should the SEP administrator configure to minimize I/O when LiveUpdate occurs?
A. Change the LiveUpdate schedule
B. Change the Administrator-defined scan schedule
C. Disable Allow user-defined scans to run when the scan author is logged off
D. Disable Run an Active Scan when new definitions arrive
What is a function of the Symantec Endpoint Protection client?
A. Uploads logs to the Shared Insight Cache
B. Sends and receives application reputation ratings from LiveUpdate
C. Downloads virus content updates from Symantec Insight
D. Provides a Lotus Notes email scanner
A company has 10,000 Symantec Endpoint Protection (SEP) clients deployed using two Symantec Endpoint Protection Managers (SEPMs).
Which configuration is recommended to ensure that each SEPM is able to effectively handle the communications load with the SEP clients?
A. Push mode
B. Client control mode
C. Server control mode
D. Pull mode
Why does Power Eraser need Internet access?
A. to leverage Symantec Insight
B. to validate root certificates on all portable executables (PXE) files
C. to ensure the Power Eraser tool is the latest release
D. to look up CVE vulnerabilities
Which ports on the company firewall must an administrator open to avoid problems when connecting to Symantec Public LiveUpdate servers?
A. 25, 80, and 2967
B. 2967, 8014, and 8443
C. 21, 443, and 2967
D. 21, 80, and 443
What is an appropriate use of a file fingerprint list?
A. allow unknown files to be downloaded with Insight
B. prevent programs from running
C. prevent AntiVirus from scanning a file
D. allow files to bypass Intrusion Prevention detection
An organization would like to control the policies that the client uses when connecting over VPN, but wants to use a different set of policies in the office. How should an administrator implement this?
A. Create a Location called VPN and a Group called Office. Allow the client to switch to the VPN location when the user is working remote.
B. Create a Group called VPN and a Location called Office. Allow the client to switch to the VPN location when the user is working remote.
C. Create a Location called VPN and a Location called Office. Allow the client to switch to the VPN location when the user is working remote.
D. Create a Group called VPN and a Group called Office. Move the client to the VPN group when the user is working remotely.
What type of exceptions can an administrator create from the Symantec Endpoint Protection Manager for a Mac client?
A. Security Risk Exceptions - File
B. Security Risk Exceptions for both File or Folder
C. Security Risk Exceptions - Folder
D. Security Risk Exceptions - Extension