1. Home
  2. Symantec
  3. 250-438

Administration of Symantec Data Loss Prevention 15

Exam Details

  • Exam Code
    :250-438
  • Exam Name
    :Administration of Symantec Data Loss Prevention 15
  • Certification
    :Symantec Other Certification
  • Vendor
    :Symantec
  • Total Questions
    :70 Q&As
  • Last Updated
    :May 09, 2024

Symantec Symantec Other Certification 250-438 Questions & Answers

  • Question 1:

    What is the Symantec recommended order for stopping Symantec DLP services on a Windows Enforce server?

    A. Vontu Notifier, Vontu Incident Persister, Vontu Update, Vontu Manager, Vontu Monitor Controller

    B. Vontu Update, Vontu Notifier, Vontu Manager, Vontu Incident Persister, Vontu Monitor Controller

    C. Vontu Incident Persister, Vontu Update, Vontu Notifier, Vontu Monitor Controller, Vontu Manager.

    D. Vontu Monitor Controller, Vontu Incident Persister, Vontu Manager, Vontu Notifier, Vontu Update.

  • Question 2:

    Where in the Enforce management console can a DLP administrator change the "UI.NO_SCAN.int" setting to disable the "Inspecting data" pop-up?

    A. Advanced Server Settings from the Endpoint Server Configuration

    B. Advanced Monitoring from the Agent Configuration

    C. Advanced Agent Settings from the Agent Configuration

    D. Application Monitoring from the Agent Configuration

  • Question 3:

    Which two automated response rules will be active in policies that include Exact Data Matching (EDM) detection rule? (Choose two.)

    A. Endpoint Discover: Quarantine File

    B. All: Send Email Notification

    C. Endpoint Prevent: User Cancel

    D. Endpoint Prevent: Block

    E. Network Protect: Quarantine File

  • Question 4:

    Where should an administrator set the debug levels for an Endpoint Agent?

    A. Setting the log level within the Agent List

    B. Advanced configuration within the Agent settings

    C. Setting the log level within the Agent Overview

    D. Advanced server settings within the Endpoint server

  • Question 5:

    Which service encrypts the message when using a Modify SMTP Message response rule?

    A. Network Monitor server

    B. SMTP Prevent

    C. Enforce server

    D. Encryption Gateway

  • Question 6:

    How do Cloud Detection Service and the Enforce server communicate with each other?

    A. Enforce initiates communication with Cloud Detection Service, which is expecting connections on port 8100.

    B. Cloud Detection Service initiates communication with Enforce, which is expecting connections on port 443.

    C. Cloud Detection Service initiates communication with Enforce, which is expecting connections on port 1443.

    D. Enforce initiates communication with Cloud Detection Service, which is expecting connections on port 443.

  • Question 7:

    A DLP administrator is preparing to install Symantec DLP and has been asked to use an Oracle database provided by the Database Administration team. Which SQL *Plus command should the administrator utilize to determine if the database is using a supported version of Oracle?

    A. select database version from ;

    B. select * from db$version;

    C. select * from v$version;

    D. select db$ver from ;

  • Question 8:

    A DLP administrator created a new agent configuration for an Endpoint server. However, the endpoint agents fail to receive the new configuration. What is one possible reason that the agent fails to receive the new configuration?

    A. The new agent configuration was saved but not applied to any endpoint groups.

    B. The new agent configuration was copied and modified from the default agent configuration.

    C. The default agent configuration must be disabled before the new configuration can take effect.

    D. The Endpoint server needs to be recycled so that the new agent configuration can take effect.

  • Question 9:

    A DLP administrator is checking the System Overview in the Enforce management console, and all of the detection servers are showing as "unknown". The Vontu services are up and running on the detection servers. Thousands of .IDC files are building up in the Incidents directory on the detection servers. There is good network connectivity between the detection servers and the Enforce server when testing with the telnet command.

    How should the administrator bring the detection servers to a running state in the Enforce management console?

    A. Restart the Vontu Update Service on the Enforce server

    B. Ensure the Vontu Monitor Controller service is running in the Enforce server

    C. Delete all of the .BAD files in the Incidents folder on the Enforce server

    D. Restart the Vontu Monitor Service on all the affected detection servers

  • Question 10:

    Which two Network Discover/Cloud Storage targets apply Information Centric Encryption as policy response rules?

    A. Microsoft Exchange

    B. Windows File System

    C. SQL Databases

    D. Microsoft SharePoint

    E. Network File System (NFS)

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Symantec exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 250-438 exam preparations and Symantec certification application, do not hesitate to visit our Vcedump.com to find your solutions here.