250-438 Online Practice Questions and Answers

Which two Infrastructure-as-a-Service providers are supported for hosting Cloud Prevent for Office 365? (Choose two.)

A. Any customer-hosted private cloud

B. Amazon Web Services

C. ATandT

D. Verizon

E. Rackspace

Which product is able to replace a confidential document residing on a file share with a marker file explaining why the document was removed?

A. Network Discover

B. Cloud Service for Email

C. Endpoint Prevent

D. Network Protect

Which channel does Endpoint Prevent protect using Device Control?

A. Bluetooth

B. USB storage

C. CD/DVD

D. Network card

Which two actions are available for a "Network Prevent: Remove HTTP/HTTPS content" response rule when the content is unable to be removed? (Choose two.)

A. Allow the content to be posted

B. Remove the content through FlexResponse

C. Block the content before posting

D. Encrypt the content before posting

E. Redirect the content to an alternative destination

Which two factors are common sources of data leakage where the main actor is well-meaning insider? (Choose two.)

A. An absence of a trained incident response team

B. A disgruntled employee for a job with a competitor

C. Merger and Acquisition activities

D. Lack of training and awareness

E. Broken business processes

What is required on the Enforce server to communicate with the Symantec DLP database?

A. Port 8082 should be opened

B. CryptoMasterKey.properties file

C. Symbolic links to .dbf files

D. SQL*Plus Client

A DLP administrator is attempting to add a new Network Discover detection server from the Enforce management console. However, the only available options are Network Monitor and Endpoint servers. What should the administrator do to make the Network Discover option available?

A. Restart the Symantec DLP Controller service

B. Apply a new software license file from the Enforce console

C. Install a new Network Discover detection server

D. Restart the Vontu Monitor Service

Which statement accurately describes where Optical Character Recognition (OCR) components must be installed?

A. The OCR engine must be installed on detection server other than the Enforce server.

B. The OCR server software must be installed on one or more dedicated (non-detection) Linux servers.

C. The OCR engine must be directly on the Enforce server.

D. The OCR server software must be installed on one or more dedicated (non-detection) Windows servers.

What detection server type requires a minimum of two physical network interface cards?

A. Network Prevent for Web

B. Network Prevent for Email

C. Network Monitor

D. Cloud Detection Service (CDS)

A DLP administrator created a new agent configuration for an Endpoint server. However, the endpoint agents fail to receive the new configuration. What is one possible reason that the agent fails to receive the new configuration?

A. The new agent configuration was saved but not applied to any endpoint groups.

B. The new agent configuration was copied and modified from the default agent configuration.

C. The default agent configuration must be disabled before the new configuration can take effect.

D. The Endpoint server needs to be recycled so that the new agent configuration can take effect.