250-438 Symantec Administration of Symantec Data Loss Prevention 15 exact Exam Questions

Administration of Symantec Data Loss Prevention 15

Last Update 20 hours ago Total Questions : 70

The Administration of Symantec Data Loss Prevention 15 content is now fully updated, with all current exam questions added 20 hours ago. Deciding to include 250-438 practice exam questions in your study plan goes far beyond basic test preparation.

You'll find that our 250-438 exam questions frequently feature detailed scenarios and practical problem-solving exercises that directly mirror industry challenges. Engaging with these 250-438 sample sets allows you to effectively manage your time and pace yourself, giving you the ability to finish any Administration of Symantec Data Loss Prevention 15 practice test comfortably within the allotted time.

Question # 11

How should a DLP administrator change a policy so that it retains the original file when an endpoint incident has detected a “cope to USB device” operation?

Add a “Limit Incident Data Retention” response rule with “retain Original Message” option selected.

Modify the agent config.db to include the file

Modify the “Endpoint_Retain_Files.int” setting in the Endpoint server configuration

Modify the agent configuration and select the option “retain Original Files”

Question # 12

Which option correctly describes the two-tier installation type for Symantec DLP?

Install the Oracle database on the host, and install the Enforce server and a detection server on a second host.

Install the Oracle database on a local physical host, and install the Enforce server and detection servers on virtual hosts in the Cloud.

Install the Oracle database and a detection server in the same host, and install the Enforce server on a second host.

Install the Oracle database and Enforce server on the same host, and install detection servers on separate hosts.

Question # 13

A company needs to secure the content of all mergers and Acquisitions Agreements/ However, the standard text included in all company literature needs to be excluded.

How should the company ensure that this standard text is excluded from detection?

Create a Whitelisted.txt file after creating the Vector Machine Learning (VML) profile.

Create a Whitelisted.txt file after creating the Exact Data Matching (EDM) profile

Create a Whitelisted.txt file before creating the Indexed Document Matching (IDM) profile

Create a Whitelisted.txt file before creating the Exact Data Matching (EDM) profile

Question # 14

What is the correct configuration for “BoxMonitor.Channels” that will allow the server to start as a Network Monitor server?

Packet Capture, Span Port

Packet Capture, Network Tap

Packet Capture, Copy Rule

Packet capture, Network Monitor

Question # 15

Which detection server is available from Symantec as a hardware appliance?

Network Prevent for Email

Network Discover

Network Monitor

Network Prevent for Web

Question # 16

A DLP administrator is checking the System Overview in the Enforce management console, and all of the detection servers are showing as “unknown”. The Vontu services are up and running on the detection servers. Thousands of .IDC files are building up in the Incidents directory on the detection servers. There is good network connectivity between the detection servers and the Enforce server when testing with the telnet command.

How should the administrator bring the detection servers to a running state in the Enforce management console?

Restart the Vontu Update Service on the Enforce server

Ensure the Vontu Monitor Controller service is running in the Enforce server

Delete all of the .BAD files in the Incidents folder on the Enforce server

Restart the Vontu Monitor Service on all the affected detection servers

Question # 17

A DLP administrator is preparing to install Symantec DLP and has been asked to use an Oracle database provided by the Database Administration team.

Which SQL *Plus command should the administrator utilize to determine if the database is using a supported version of Oracle?

select database version from < database name > ;

select * from db$version;

select * from v$version;

select db$ver from < database name > ;

Question # 18

Which two actions are available for a “Network Prevent: Remove HTTP/HTTPS content” response rule when the content is unable to be removed? (Choose two.)

Allow the content to be posted

Remove the content through FlexResponse

Block the content before posting

Encrypt the content before posting

Redirect the content to an alternative destination

Question # 19

Where in the Enforce management console can a DLP administrator change the “UI.NO_SCAN.int” setting to disable the “Inspecting data” pop-up?

Advanced Server Settings from the Endpoint Server Configuration

Advanced Monitoring from the Agent Configuration

Advanced Agent Settings from the Agent Configuration

Application Monitoring from the Agent Configuration