Broderick's picture
From Broderick rss RSS  subscribe Subscribe

Symantec ST0-116 Certification practice exam 

Killtest Symantec ST0-116 practice exam covers the information associated with each ST0-116 exam topics in details and includes information found in no other practice test sites on the web. As all known, Killtest is one of the most popular websites all over the world. It keeps excellent information on IT and provides the current data. It has not only thorough information on every certification but also provides you your required study material for your targeted certification.

 
 
 
Tags:  ST0-116  practice  exam 
Views:  38
Published:  December 15, 2011
 
0
download

Share plick with friends Share
save to favorite
Report Abuse Report Abuse
 
Related Plicks
No related plicks found
 
More from this user
Updated Cisco 650-155 practice exam

Updated Cisco 650-155 practice exam

From: Broderick
Views: 176
Comments: 0
Updated Cisco 650-148 practice engine

Updated Cisco 650-148 practice engine

From: Broderick
Views: 112
Comments: 0
Killtest Cisco 650-159 actual guide

Killtest Cisco 650-159 actual guide

From: Broderick
Views: 76
Comments: 0
EMC EVP-100 exam in newest version

EMC EVP-100 exam in newest version

From: Broderick
Views: 84
Comments: 0
Killtest IBM 000-M247 exam PDF

Killtest IBM 000-M247 exam PDF

From: Broderick
Views: 87
Comments: 0
Symantec ST0-119 exam traning materials

Symantec ST0-119 exam traning materials

From: Broderick
Views: 117
Comments: 0
See all 
 
 
 URL:          AddThis Social Bookmark Button
Embed Thin Player: (fits in most blogs)
Embed Full Player :
 
 

Name

Email (will NOT be shown to other users)

 
 
 
Comments: (watch)
 
 
Notes:
 
Slide 1: Killtest is the best choice for all your IT exam preparation. Before you buy these exams from us, we can offer you some free demos of each products. You can check out the interface, question quality and usability of our practice exams before you decide to buy. The followings are some latest and hottest exams in Killtest now, such as the VCP-510 exam, SY0-301 exam, EX0-115 exam, HP2-H18 exam, 250-310 exam, 000-581 exam and so on. Welcome to Killtest.com now, then get more benefits from there.
Slide 2: The safer , easier way to help you pass any IT exams. Exam : ST0-116 Title : Symantec Data Loss Prevention 11 Technical Assessment Version : Demo 1/5
Slide 3: The safer , easier way to help you pass any IT exams. 1.How can an administrator validate that once a policy is updated and saved it has been enabled on a specific detection server? A. check the status of the policy on the policy list page B. check to see whether the policy was loaded under System > Servers > Alerts C. check the policy and validate the date and time it was last updated D. check to see whether the policy was loaded under System > Servers > Events Answer: D 2.An administrator is running a Discover Scanner target scan and the scanner is unable to communicate back to the Discover Server. Where will the files be stored.? A. Discover Server incoming folder B. scanner's outgoing folder C. scanner's incoming folder D. Enforce incident persister Answer: B 3.Which two remediation actions are available for Network Protect? (Select two.) A. Copy B. Move C. Block D. Rename E. Quarantine Answer: A, E 4.A company needs to scan all of its file shares on a weekly basis to make sure sensitive data is being stored correctly. The total volume of data on the file servers is greater than 1 TB . Which approach will allow the company to quickly scan all of this data on a weekly basis? A. run an initial complete scan of all the file shares, then modify the scan target to add date filters and exclude any files created or modified before the initial scan was run B. run an initial complete scan of all the file shares, then modify the scan target to an incremental scan type C. create a separate scan target for each file share and exclude files accessed before the start of each scan D. run an initial complete scan of all file shares, create a summary report of all incidents created by the scan, then run weekly scans and compare incidents from weekly scans to incidents from the complete scan Answer: B 5.Which Network Discover option is used to determine whether confidential data exists without having to scan the entire target? A. Byte Throttling B. File Throttling C. Match Thresholds D. Inventory Mode Scanning 2/5
Slide 4: The safer , easier way to help you pass any IT exams. Answer: D 6.A Data Loss Prevention administrator notices that several errors occurred during a Network Discover scan. Which report can the administrator use to determine exactly which errors occurred and when? A. Discover Incident report sorted by target name and scan B. Full Activity report for that particular scan C. Server Event report from Server Overview D. Full Statistics report for that particular scan Answer: B 7.What must a policy manager do when working with Exact Data Matching (EDM) indexes? A. re-index large data sources on a daily or weekly basis B. index the original data source on the detection server C. deploy the index only to specific detection servers D. create a new data profile if data source schema changes Answer: D 8.Which two policy management actions can result in a reduced number of incidents for a given traffic flow? (Select two.) A. adding additional component matching to the rule B. adding data owner exceptions C. deploying to additional detection servers D. increasing condition match count E. adding additional severities Answer: B, D 9.What is a feature of keyword proximity matching? A. It will match on whole keywords only. B. It has a maximum distance between keywords of 99. C. It only matches on message body. D. It evaluates each keyword pair independently. Answer: D 10.The database is full and the Incident Persister is unable to process incidents. Which two file types could be present in Vontu/protect/incidents? (Select two.) A. .idx B. .edc C. .idc D. .inc E. .bad Answer: C, E 11.A role is configured for XML export and a user executes the export XML incident action. What must be done before history information is included in the export? 3/5
Slide 5: The safer , easier way to help you pass any IT exams. A. A remediator must take an action on the incident. B. History must be enabled as a tab or panel in the incident snapshot layout. C. Incident history must be enabled in the user's role. D. The manager.properties must be configured for XML export. Answer: C 12.A user is unable to log in as sysadmin. The Data Loss Prevention system is configured to use Active Directory authentication. The user is a member of two roles, sysadmin and remediator. How should the user log in to the user interface in the sysadmin role? A. sysadmin\username@domain B. sysadmin\username C. domain\username D. sysadmin\username\domain Answer: B 13.Which product provides support for the Citrix XenApp virtualization platform? A. Endpoint Prevent B. Network Discover C. Network Protect D. Network Prevent Answer: A 14.What are two benefits of the Symantec Data Loss Prevention 11 security architecture? (Select two.) A. Communication is initiated by the detection servers inside the firewall. B. SSL communication is used for user access to the Enforce Platform. C. Endpoint Agent to Endpoint Server communication uses the Triple Data Encryption Standard (Triple DES). D. Confidential information captured by system components is stored using Advanced Encryption Standards (AES) symmetric keys. E. All indexed data uploaded into the Enforce Platform is protected with a two-way hash. Answer: B, D 15.Which two functions of the communications architecture ensure that the system will automatically recover if a network connectivity failure occurs between the detection servers and the Enforce Server? (Select two.) A. Oracle database backup B. detection server autonomous monitoring C. Enforce Server offline alert notification D. detection server incident queuing E. detection server alert archiving Answer: B, D 16.Where should the Network Discover detection server be placed in a corporate network architecture? A. inside the DMZ 4/5
Slide 6: The safer , easier way to help you pass any IT exams. B. on the same virtual LAN as the proxy server C. inside the corporate network D. on the same switch as the Oracle database server Answer: C 17.Which DLP Agent task is unique to the Symantec Management Platform and is unavailable through the Enforce console? A. Change Endpoint server B. Restart agent C. Pull agent logs D. Set log level Answer: D 18.After installing several new DLP Agents, the Data Loss Prevention administrator discovers that none of the endpoint agents are appearing on the Agent Overview page. After refreshing the page several times, and determining that the equipment is powered on and connected to the network, the Agent Overview page still fails to display the new agents. What is a possible cause for this issue? A. The DLP Agents need to be added manually through the Symantec Management Platform. B. The DLP Agents were installed with the incorrect Endpoint server IP address. C. The assigned Endpoint server needs to be recycled in order to detect the new DLP Agents. D. The Endpoint Location is set to "Manually" instead of "Automatically" in the Enforce user interface. Answer: B 19.To manually troubleshoot DLP Agent issues, the database and log viewer tools must be executed in which location? A. in the same location as the dcs.ead file location B. in the same location as the cg.ead file location C. in the same location as the ks.ead file location D. in the same location as the is.ead file location Answer: C 20.A divisional executive requests a report of all incidents generated by a particular region, summarized by department. What must be populated to generate this report? A. remediation attributes B. sender correlations C. status groups D. custom attributes Answer: D 5/5
Slide 7: Welcome to Killtest.com to get this exam pdf and then prepare your exam well. If you have any other questions, plz contact with us in time via this email support@killtest.com . Thanks !

   
Time on Slide Time on Plick
Slides per Visit Slide Views Views by Location