MA0-103 Exam Questions

Which of the following DLP features could be used to target suspicious activity during the first phase of an attack at the hardware layer?

Which product feature can the DLP Endpoint Administrator use to help with capacity management for events/incidents?

An organization wants to prevent sensitive data from being uploaded to unauthorized websites. Which of the following types of protection rule can the DLP Endpoint administrator con...

How would internal users be prohibited from accessing local drives?

Which Corporate Security Policy affects the Evidence Share and ePO Database size and growth?

The DLP agent status dashboard monitor displays "no data found". Which server task should be reviewed?

How can incident data be exported?

Which of the following proactively helps prevent data loss? Removable Storage Devices with a file system, when connected to a computer

What rule is used to monitor protected file transfer to network shares?

Before upgrading to a newer version, which of the following steps should be followed?

Which of the following is an authorized method to remove the McAfee DLPe Agent?

Following production deployment the DLP Endpoint Administrator begins to receive an increasing number of calls related to credit card number content detection false positives. Whic...

An executive sends merger documents to legal counsel. Policy dictates the documents should be encrypted, but they are being sent in plain text. What is the appropriate action to co...

Which encryption type is NOT available when creating a file system discovery rule?

An organization's security policy prohibits the use of Internet based file sharing and storage applications. To monitor violation of this policy, which rule can the DLP Endpoint ad...

An employee attempts to upload company data in violation of corporate security policy using a secure HTTPS connection. The DLPe Administrator has configured rules with a blocking r...

Which of the following protects the DLP Endpoint client from malicious interferences?

What result types are supported in a McAfee DLPe query?

Prior to editing the production DLP Endpoint Policy a backup copy should be taken as a precaution. Which method can the DLP Administrator use to backup rules based on User Assignme...

Which Microsoft product can hinder proper installation of McAfee DLPe components on the ePO server and may need to be disabled until after installation is completed?

Groupings of Applications in McAfee DLP used in rule creation are called

An organization is concerned that employees are using their personal web based email accounts to conduct work on internal documents after hours. Which of the following can the DLP...

Which of the following organizational structures demonstrates strict compliance to Segregation of Duties?

Which of the following is a potential indicator of an issue with the DLP Endpoint client?

By default, McAfee DLP will copy evidence to its configured share using which of the following accounts?

There is a known virus spreading using removable media. What action should be taken to mitigate this risk?

What is the recommended rule to block Removable Storage Devices?

Which of the following is an example of structured data that may be identified using Regular Expressions?

When configuring access controls for the Evidence repository, which of the following minimum advanced security settings need to be applied to the Evidence Folder, subfolders and fi...

To determine baseline conditions for DLP implementation, which of the following actions can the DLP End point Administrator perform?

Which of the following protocols cannot be blocked or monitored by McAfee DLP 'Network Communication Protection Rules'?

To meet specific requirements for managed systems in four different regions, an organization has customized several values within DLPE Agent Configuration policies. The four differ...

When including local users in User Assignment Groups, are all local users evaluated equally?

Which of the following is an indication of potential data loss?

To assist with perceived performance issues prior to product installation, the DLP End point Administrator could prepare by

Which of the following must be restarted after upgrading the ePO extensions for DLPe?

Which of the following is an example of un-structured data that may be identified using Dictionaries?

An employee attempts to copy sensitive data from the Oracle HR database into a Microsoft Word document. To prevent a violation of employee privacy, what actions should the administ...

How can remote users who are not connected to the corporate network be protected?

What must be deployed to all target computers before an endpoint policy can be distributed?

Applications in which of the following groups will NOT have their Disk Activity scanned for sensitive data?

Which of the following advanced security settings are the minimum required for replicating files to the Evidence folder?

To remove files from quarantine, which of the following is required?

What rule prevents unauthorized executables and potential malware from running directly from Removable Storage Devices?

When detected, which of the following must be categorized with the highest severity?

How can DLP be used to prohibit users from sending confidential files to partners?

Which of the following DLP features is associated with designating destinations and sources to protect?

What does DLP Endpoint client use to send operational events and incidents to ePO?

Managed McAfee DLPe clients receive the Global Policy through which of the following?

Which of the following McAfee tools are useful to collect McAfee product data from a computer so that the problem can be analyzed and resolved by McAfee Technical Support?