250-438 Exam Questions

The database is full and the Incident Persister is unable to process incidents. Which two file types could be present in Vontu/protect/incidents? (Select two.)

A role is configured for XML export and a user executes the export XML incident action. What must be done before history information is included in the export?

What detection server is used for Network Discover, Network Protect, and Cloud Storage?

Which product is able to replace a confidential document residing on a file share with a marker file explaining why the document was removed?

Which two locations can Symantec DLP scan and perform Information Centric Encryption (ICE) actions on? (Choose two.)

Which detection method depends on "training sets"?

A DLP administrator needs to stop the PacketCapture process on a detection server. Upon inspection of the Server Detail page, the administrator discovers that all processes are mis...

What detection technology supports partial contents matching?

What is Application Detection Configuration?

What detection method utilizes Data Identifiers?

A user is unable to log in as sysadmin. The Data Loss Prevention system is configured to use Active Directory authentication. The user is a member of two roles, sysadmin and remedi...

Which product provides support for the Citrix XenApp virtualization platform?

Which tool must a DLP administrator run to certify the database prior to upgrading DLP?

What is the correct order for data in motion when a customer has integrated their CloudSOC and DLP solutions?

Refer to the exhibit. What activity should occur during the baseline phase, according to the risk reduction model?

Which two DLP products support the new Optical Character Recognition (OCR) engine in Symantec DLP 15.0? (Choose two.)

Which two actions are available for a "Network Prevent: Remove HTTP/HTTPS content" response rule when the content is unable to be removed? (Choose two.)

Which two factors are common sources of data leakage where the main actor is well-meaning insider? (Choose two.)

What is required on the Enforce server to communicate with the Symantec DLP database?

Which option is an accurate use case for Information Centric Encryption (ICE)?

Which two functions of the communications architecture ensure that the system will automatically recover if a network connectivity failure occurs between the detection servers and...

Which DLP Agent task is unique to the Symantec Management Platform and is unavailable through the Enforce console?

Which two detection servers are available as virtual appliances? (Choose two.)

A company needs to secure the content of all Mergers and Acquisitions Agreements However, the standard text included in all company literature needs to be excluded. How should the...

Which server target uses the "Automated Incident Remediation Tracking" feature in Symantec DLP?

An administrator is unable to log in to the Enforce management console as "sysadmin". Symantec DLP is configured to use Active Directory authentication. The administrator is a memb...

A DLP administrator is attempting to add a new Network Discover detection server from the Enforce management console. However, the only available options are Network Monitor and En...

A DLP administrator is testing Network Prevent for Web functionality. When the administrator posts a small test file to a cloud storage website, no new incidents are reported. What...