250-315 Exam Questions

Refer to the exhibit. Inheritance is turned on only for groups England, Sales, Laptops, and Manchester (highlighted). Without turning inheritance off, which top level group must be...

A client is unable to communicate with the Symantec Endpoint Protection Manager (SEPM) Server. The administrator decides to replace the Sylink.xml file on the client using the Syli...

A manufacturing company runs three shifts. Employees at the facility must share computers. The administrators need to apply different policies/configurations for each shift. The ad...

An administrator makes a change in the Active Directory structure which has been imported into the Symantec Endpoint Protection Manager (SEPM). By default, when will the change aut...

A Symantec Endpoint Protection Manager (SEPM) administrator is importing from an Active Directory environment. The administrator needs to know which object types are being imported...

When can an administrator delete a location?

A large oil company has a small exploration department that is remotely located and rarely has internet connectivity. Which client type would allow the exploration department to co...

A large software company has a small engineering department that is remotely located over a slow WAN connection. Which method will deploy the Symantec Endpoint Protection 12.1 (SEP...

An administrator created a Symantec Endpoint Protection 12.1 (SEP) installation package without specifying the group to which the SEP clients should belong. What will happen when t...

A Symantec Endpoint Protection 12.1 (SEP) administrator discovers that a firewall is blocking Windows file sharing. Which method can bypass the firewall and allow the SEP clients t...

A Symantec Endpoint Protection 12.1 (SEP) administrator deployed SEP clients, but the SEP clients are failing to register with the Symantec Endpoint Protection Manager (SEPM). Whic...

A Symantec Endpoint Protection 12.1 (SEP) administrator suspects that newly arrived computers are infected with a virus. Which steps should the administrator take when installing t...

A Symantec Endpoint Protection 12.1 (SEP) administrator is remotely deploying SEP clients, but the clients are failing to install on Windows XP. Which two could be preventing insta...

Which Symantec Endpoint Protection client component must be installed to enable Unmanaged Detector mode?

In which client management log can an administrator identify when the client last connected to the Symantec Endpoint Protection Manager?

Which command line syntax invokes the Symantec Endpoint Protection Client Service to determine whether a more recent copy of the configuration file is available on the management s...

Immediately after installation, what does a managed client do to contact the Symantec Endpoint Protection Manager (SEPM)?

Refer to the exhibit. The status of two clients on the Symantec Endpoint Protection Manager is provided in the exhibit. They indicate that the clients are "Offline". What does the...

Refer to the exhibit. What does the symbol to the left of the system name, SEPMGR12, indicate?

Some customers report that when they run the command "smc -stop" on their clients, they are unable to connect to network resources. What is wrong?

A company successfully deploys Symantec Endpoint Protection 12.1 to its clients. However, when the company deploys the client to the servers, the servers immediately reboot. The co...

A company has three groups of clients: Laptops, Desktops, and Servers. Administrators must have the ability to perform manual scans for these clients from the Symantec Endpoint Pro...

A Symantec Endpoint Protection 12.1 group has two defined locations based on whether clients are attached to the local network or are remote. The local network location has an admi...

Which two actions can a user take during an in-progress scheduled scan? (Select two.)

A user added a daily 10:00 scheduled scan to their Symantec Endpoint Protection 12.1 client. After reviewing the logs, the user confirms that the scan failed to start at 10:00. Why...

A Symantec Endpoint Protection 12.1 client is running a user-defined scan when a scheduled, administrator-defined scan is scheduled to launch. What is the effect on the client?

Which protection technology assists in protecting documents in real-time when accessed or modified?

A Symantec Endpoint Protection 12.1 administrator has the Virus and Spyware Protection policy configured with Auto-Protect enabled. The administrator is confronted with computer pe...

An administrator is modifying a Virus and Spyware Protection policy for a Symantec Endpoint Protection 12.1 (SEP) client because it is demonstrating poor boot performance. Which op...

Which technology uses heuristics to scan outbound email?

Which type of email does Internet Email Auto-Protect support?

What could be an adverse effect of activating aggressive mode on the SONAR policy?

Which two options are available when configuring high risk detection in SONAR? (Select two.)

Acrobat Reader is being targeted by a threat using process injection. Which feature of SONAR is sandboxing Acroread32.exe so that the threat is prevented from dropping its payload?

A company is building a new Symantec Endpoint Protection Manager and is setting the remediation actions for threats in the Virus and Spyware Protection policy. For security risks,...

An administrator set the remediation options for Security Risks to the defaults (Quarantine, then Delete). However, the security team is the only team authorized to have Hack Tools...

Where is a file encrypted and saved to when the "Backup files before attempting to repair them" setting is enabled?

A company is deploying Symantec Endpoint Protection 12.1 and configuring remediation options within the Virus and Spyware Protection policy. They are considering enabling "Terminat...

An administrator is reviewing risk logs in the Symantec Endpoint Protection Manager (SEPM) and notices that some entries list that the "Risk was partially removed". The administrat...

A clean file in a proprietary application has been quarantined by SONAR. How can an administrator fix the broken application from the Symantec Endpoint Protection Manager console?

Which Symantec Endpoint Protection 12.1 feature allows an administrator to prevent users from downloading files that are unsafe?

A company is concerned that its clients may be out-of-date and it wants to ensure that all running applications are protected with Symantec's latest definitions, even if they are u...

What is the likely impact of increasing the Download Insight sensitivity?

A customer is downloading newly-created company files from an internal website and is being blocked by Download Insight based on reputation. How can the customer prevent this?

An administrator wants to make sure users are warned when they decide to download potentially malicious files. Which option should the administrator configure?

Refer to the exhibit. A user runs a full scan on a system and is confused by the "Files trusted" count. Which option will result in the files being left unscanned?

A customer reports that users are able to download new files from the internet and execute those files on their own computers. What can be configured to prevent this?

A computer is configured in Mixed Control mode. The administrator creates and applies a Firewall policy to the computer that has a rule that allows FTP traffic above the blue line...

Refer to the exhibit. A company has created a specific firewall policy that allows only certain traffic. Which traffic is allowed in the firewall policy displayed in the exhibit?

A company is running the Symantec Endpoint Protection 12.1 firewall and wants to ensure that DNS traffic is allowed. Which feature should be enabled in the firewall policy?