PSE-Endpoint 무료 덤프문제 온라인 액세스

Which two are valid optional parameters when upgrading Traps agent from the ESM console using Upgrade from path? (Choose two.)

• A.Processes
• B.Target Objects
• C.ESM Server
• D.Conditions
• E.Features

An administrator is concerned about rogue installs of Internet Explorer.
Which policy can be created to assure that Internet Explorer can only run from the
\Program Files \Internet Explorer \directory?

• A.An execution path policy to blacklist iexplore.exe, and whitelist entry for
  % programfiles%\iexplore.exe
• B.A whitelist of *\iexplore.exe with an execution path restriction, and a blackfirst of
  % system%\iexplore.exe
• C.An execution path policy to blacklist *\iexplore.exe. Trusted signers will allow the default iexplore.exe
• D.An execution path policy to blacklist *\iexplore.exe, and a whitelist entry for
  % programfiles%\Internet Explorer\iexplore.exe

A deployment contains some machines that are not part of the domain. The Accounting and Sales departments are two of these.
How can a policy of WildFire notification be applied to Accounting, and a policy of WildFire prevention be applied to Sales, while not affecting any other WildFire policies?

• A.Create group-specific registry entries on endpoints. Use these registry entries to create conditions for the WildFire rules
• B.Create the rules and use the Objects tab to add Accounting and Sales to each rule they should apply to.
• C.Create two rules for WildFire: one for prevention, and one for notification. Make sure the Accounting rule is numbered higher.
• D.Create a condition for an application found on an Accounting machine. Use that condition for the Accounting groups rule, and create the rule tor Sales without any conditions.

An administrator receives a number of email alerts indicating WildFire has prevented a malicious activity. All the prevention events refer to launching an Install Wizard that has received a benign verdict from WildFire. All prevention events are reported on a subset of endpoints, that have recently been migrated Mom another Traps deployment.
Which two troubleshooting actions are relevant to this investigation? (Choose two.)

• A.Check that the servers xml file has been cleared on the migrated endpoints.
• B.Check that the actions xml file has not been cleared on the migrated endpoints.
• C.Check that the ClientInfoHash tag has been cleared on the migrated endpoints.
• D.Check that the WildFire cache has been cleared on the migrated endpoints.

An administrator has decided to test Traps functionality using malware samples in an isolated non-production environment. In order to effectively test Traps, what three types of samples should the administrator avoid? (Choose three.)

• A.An MS Office document which contains a ransomware macro
• B.A sample known to generate false positives in the production environment.
• C.A sample with a low number of hits in Virus Total
• D.A freeware video application which spawns malicious processes
• E.A sample known to be flagged as grayware by Traps