Dans cette société bien intense, c'est avantage si quelque'un a une technique particulère, donc c'est pourquoi beaucoup de gens ont envie de dépnenser les efforts et le temps à préparer le test Symantec ST0-174, mais ils ne peuvaient pas réussir finalement. C'est juste parce que ils ont pas bien choisi une bonne formation. L'outil de formation lancé par les experts de Pass4Test vous permet à passer le test Symantec ST0-174 coûtant un peu d'argent.
Le produit de Pass4Test que vous choisissez vous met le pied sur la première marche du pic de l'Industrie IT, et vous serez plus proche de votre rêve. Les matériaux offerts par Pass4Test peut non seulement vous aider à réussir le test Symantec ST0-174, mais encore vous aider à se renforcer les connaissances professionnelles. Le service de la mise à jour pendant un an est aussi gratuit pour vous.
Code d'Examen: ST0-174
Nom d'Examen: Symantec (Symantec Data Loss Prevention 11.5 Technical Assessment )
Questions et réponses: 161 Q&As
Pass4Test est un site de vous ramener au succès. Pass4Test peut vous aider à promouvoir les connaissances essentielles pour le test Symantec ST0-174 et passer le test à la première fois.
Pour réussir le test Symantec ST0-174 demande beaucoup de connaissances professionnelles IT. Il n'y a que les gens qui possèdent bien les connaissances complètes à participer le test Symantec ST0-174. Maintenant, on a les autres façons pour se former. Bien que vous n'ayez pas une connaissance complète maintenant, vous pouvez quand même réussir le test Symantec ST0-174 avec l'aide de Pass4Test. En comparaison des autres façons, cette là dépense moins de temps et de l'effort. Tous les chemins mènent à Rome.
Si vous choisissez notre l'outil formation, Pass4Test peut vous assurer le succès 100% du test Symantec ST0-174. Votre argent sera tout rendu si vous échouez le test.
Vous Symantec ST0-174 pouvez télécharger le démo Symantec ST0-174 gratuit dans le site Pass4Test pour essayer notre qualité. Une fois vous achetez le produit de Pass4Test, nous allons faire tous effort à vous aider à réussir le test à la première fois et vous laisser savoir qu'il ne faut pas beaucoup de travaux pour réussir ce que vous voulez.
La Q&A Symantec ST0-174 de Pass4Test est liée bien avec le test réel de Symantec ST0-174. La mise à jour gratuite est pour vous après vendre. Nous avons la capacité à vous assurer le succès de test Symantec ST0-174 100%. Si malheureusement vous échouerez le test, votre argent sera tout rendu.
ST0-174 Démo gratuit à télécharger: http://www.pass4test.fr/ST0-174.html
NO.1 What are two possible ways to provide incident match text information? (Select two.)
A. CSV export
B. Email notification
C. Reporting API
D. Syslog notification
E. XML export
Answer: C,E
Symantec certification ST0-174 ST0-174 ST0-174 examen ST0-174
NO.2 A Network Monitor server has been installed and the networking components configured accordingly.
The server is receiving traffic, but fails to detect incidents. Running Wireshark indicates that the desired
traffic is reaching the detection server. What is the most likely cause for this behavior?
A. The mirrored port is sending corrupted packets.
B. The wrong interface is selected in the configuration.
C. The configuration is set to process GET requests.
D. The communication to the database server is interrupted.
Answer: D
Symantec certification ST0-174 ST0-174 examen ST0-174
NO.3 What is the function of the Remote Indexer?
A. to create Index Document Matching (IDM) profiles and Exact Data Matching (EDM) profiles on a
remote server
B. to create Exact Data Matching (EDM) profiles on a remote server
C. to create policy templates on a remote server
D. to create Index Document Matching (IDM) profiles on a remote server
Answer: B
Symantec examen ST0-174 ST0-174 ST0-174
NO.4 Which product can replace a confidential document residing on a share with a marker file explaining
why the document was removed?
A. Network Discover
B. Network Protect
C. Endpoint Prevent
D. Endpoint Discover
Answer: B
certification Symantec certification ST0-174 ST0-174 certification ST0-174
NO.5 A scanner fails to return results upon completion of the scan process. Which file should be removed to
eliminate previous scan issues?
A. scanner_typeScanner.cfg
B. Clean.exe
C. ScannerControllerLogging.properties
D. logs
Answer: A
Symantec examen ST0-174 examen ST0-174 ST0-174 examen ST0-174
NO.6 Which profile contains information to enable the VPN on Demand functionality for the Data Loss
Prevention for Tablets solution.?
A. DLP Agent profile
B. SCEP profile
C. iOS profile
D. VPN client profile
Answer: C
Symantec examen ST0-174 examen ST0-174 examen
NO.7 A user attempts to run Lookup Attributes manually on an incident. On the Incident List page under
Incident Actions, the option for Lookup Attributes is missing. Which section in the Plugins.properties file is
misconfigured?
A. Plugin Execution Chain is undefined.
B. Attribute Lookup parameters is set to "message".
C. Automatic plugin reload is set to false.
D. Automatic Lookup is set to false.
Answer: A
Symantec examen certification ST0-174 ST0-174 ST0-174
NO.8 In which two ways can the default listener port for a detection server be modified? (Select two.)
A. through the Enforce user interface under System > Overview
B. by editing the Communication.properties file on a detection server
C. through the Enforce user interface under Manage > Policies
D. by editing the MonitorController.properties file on a detection server
E. by editing the jaas.config file on a detection server
Answer: A,B
Symantec ST0-174 examen certification ST0-174
NO.9 Which option describes the three-tier installation type for Symantec Data Loss Prevention?
A. Install the database, the Enforce Server, and a detection server all on the same computer.
B. Install the Oracle database and the Enforce Server on the same computer, then install detection
servers on separate computers.
C. Install the Oracle Client (SQL*Plus and Database Utilities) on three detection servers.
D. Install the Oracle database, the Enforce Server, and a detection server on separate computers.
Answer: C
Symantec examen certification ST0-174 ST0-174 examen
NO.10 What are two benefits of the Symantec Data Loss Prevention 11.5 security architecture? (Select two.)
A. Communication is initiated by the detection servers inside the firewall.
B. SSL communication is used for user access to the Enforce Platform.
C. Endpoint Agent to Endpoint Server communication uses the Triple Data Encryption Standard (Triple
DES).
D. Confidential information captured by system components is stored using Advanced Encryption
Standards (AES) symmetric keys.
E. All indexed data uploaded into the Enforce Platform is protected with a two-way hash.
Answer: B,D
certification Symantec ST0-174 ST0-174 examen ST0-174
NO.11 Which is the correct traffic flow for the Symantec Data Loss Prevention for Tablets solution?
A. iPad > VPN > Tablet Server > Exchange Server > final destination
B. iPad > VPN > Web proxy > Tablet Server > final destination
C. iPad > VPN > Web proxy > Tablet Server > Enforce Server > final destination
D. iPad > VPN > Tablet Server > Web proxy > final destination
Answer: B
Symantec ST0-174 examen ST0-174 examen ST0-174 examen
NO.12 An administrator has completed the example document training process, but is having difficulty deciding
whether or not to accept a VML profile. Where can the administrator find information regarding the quality
of each training set at a granular, per-fold level?
A. machinelearning_training_process.log file
B. machinelearning_native_filereader.log file
C. machinelearning_training.log file
D. machinelearning_native_manager.log file
Answer: C
Symantec ST0-174 ST0-174 examen
NO.13 Which product must run on a physical server?
A. Endpoint Prevent
B. Network Monitor
C. Enforce D. Network Prevent
Answer: B
certification Symantec ST0-174 examen ST0-174 examen ST0-174
NO.14 Which two components are required for the Symantec Data Loss Prevention for Tablets solution in
addition to the Tablet Prevent and Enforce servers? (Select two.)
A. DLP Agent
B. Virtual Private Network Gateway
C. Web Proxy
D. 2010 Exchange Server
E. Mobile Device Management
Answer: B,C
Symantec ST0-174 certification ST0-174 ST0-174
NO.15 Which detection server requires two physical network interface cards?
A. Network Protect
B. Network Discover
C. Endpoint Discover
D. Network Monitor
Answer: B
Symantec ST0-174 examen certification ST0-174 ST0-174
NO.16 What is one benefit of using FlexResponse for Network Discover?
A. Response rules trigger varying actions depending on which DLP Agent created the incident.
B. An email can be encrypted as it is being transmitted.
C. Displayed incident data can be redacted from the Data Loss Prevention interface automatically.
D. Customizable incident remediation actions can be manually executed.
Answer: D
certification Symantec ST0-174 examen certification ST0-174 ST0-174
NO.17 An approved Endpoint device has been configured and added as an exception to a policy that blocks
the transfer of sensitive data. Data transfers to these approved Endpoint devices are still being blocked.
What should the Data Loss Prevention administrator do to resolve this?
A. disable and enable the policy involved for the changes to take effect
B. edit the exception rule to ensure Match On is set to "Attachments"
C. verify that the proper device ID or class has been entered
D. assign the Endpoint device configuration to all the Endpoint servers
Answer: C
Symantec ST0-174 ST0-174 ST0-174
NO.18 What is a possible solution when a Network Discover server is unable to scan a remote file server?
A. mount the IPC$ share on the file server
B. verify that the target file server is a Windows 2000 server
C. use the fully qualified name (FQDN) of the server
D. verify that the file server has .NET services running
Answer: C
Symantec ST0-174 ST0-174 certification ST0-174 ST0-174
NO.19 Which two should be used to collect log information from Enforce servers? (Select two.)
A. enable the VontuSNMP service and set the community strings accordingly
B. use the Log Collection and Configuration tool
C. navigate manually to the log directory of the Enforce server installation
D. .access the Enforce Log Viewer page athttps://<VONTU_SRV>/logs?view=true
E. use dbgmonitor from sysinternals to connect to the debug output of the service
Answer: B,C
Symantec ST0-174 ST0-174 ST0-174 examen
NO.20 How can an administrator validate that once a policy is updated and saved it has been enabled on a
specific detection server?
A. check the status of the policy on the policy list page
B. check to see whether the policy was loaded under System > Servers > Alerts
C. check the policy and validate the date and time it was last updated
D. check to see whether the policy was loaded under System > Servers > Events
Answer: D
Symantec ST0-174 examen ST0-174 examen
Pass4Test peut non seulement vous aider à réussir votre rêve, mais encore vous offre le service gratuit pendand un an après vendre en ligne. Q&A offerte par l'équipe de Pass4Test vous assure à passer 100% le test de Certification Symantec ST0-174.
没有评论:
发表评论