ST0-134 Exam Questions

An administrator is modifying a Virus and Spyware Protection policy for a Symantec Endpoint Protection 12.1 (SEP) client because it is demonstrating poor boot performance. Which op...

Which technology uses heuristics to scan outbound email?

Which type of email does Internet Email Auto-Protect support?

Refer to the exhibit. In the use case displayed in the exhibit, why is the administrator unable to save the changes to this file?

What could be an adverse effect of activating aggressive mode on the SONAR policy?

Which two options are available when configuring high risk detection in SONAR? (Select two.)

Acrobat Reader is being targeted by a threat using process injection. Which feature of SONAR is sandboxing Acroread32.exe so that the threat is prevented from dropping its payload?

All email Auto-Protect options are disabled, and an administrator receives an email from an associate with a .zip file attached. There are three files in the .zip file that are nee...

A company is building a new Symantec Endpoint Protection Manager and is setting the remediation actions for threats in the Virus and Spyware Protection policy. For security risks,...

An administrator set the remediation options for Security Risks to the defaults (Quarantine, then Delete). However, the security team is the only team authorized to have Hack Tools...

Where is a file encrypted and saved to when the "Backup files before attempting to repair them" setting is enabled?

In which two situations would Symantec Endpoint Protection 12.1 (SEP) generate a Left Alone action? (Select two.)

A company is deploying Symantec Endpoint Protection 12.1 and configuring remediation options within the Virus and Spyware Protection policy. They are considering enabling "Terminat...

An administrator is reviewing risk logs in the Symantec Endpoint Protection Manager (SEPM) and notices that some entries list that the "Risk was partially removed". The administrat...

A clean file in a proprietary application has been quarantined by SONAR. How can an administrator fix the broken application from the Symantec Endpoint Protection Manager console?

Which Symantec Endpoint Protection 12.1 feature allows an administrator to prevent users from downloading files that are unsafe?

A company is concerned that its clients may be out-of-date and it wants to ensure that all running applications are protected with Symantec's latest definitions, even if they are u...

What is the likely impact of increasing the Download Insight sensitivity?

A customer is downloading newly-created company files from an internal website and is being blocked by Download Insight based on reputation. How can the customer prevent this?

An administrator wants to make sure users are warned when they decide to download potentially malicious files. Which option should the administrator configure?

A customer reports that users are able to download new files from the internet and execute those files on their own computers. What can be configured to prevent this?

Refer to the exhibit. A user runs a full scan on a system and is confused by the "Files trusted" count. Which option will result in the files being left unscanned?

A computer is configured in Mixed Control mode. The administrator creates and applies a Firewall policy to the computer that has a rule that allows FTP traffic above the blue line...

Refer to the exhibit. A company has created a specific firewall policy that allows only certain traffic. Which traffic is allowed in the firewall policy displayed in the exhibit?

A company is running the Symantec Endpoint Protection 12.1 firewall and wants to ensure that DNS traffic is allowed. Which feature should be enabled in the firewall policy?

A system administrator created a firewall policy that allows certain applications and blocks others. However, some applications are being blocked that should be allowed. Which log...

An administrator has defined a rule to allow traffic to and from a specific server by its Fully Qualified Domain Name (FQDN), because the server's IP address varies based on the of...

An administrator is testing a new Application and Device Control policy. One of the rule sets being tested blocks the notepad.exe application from running. After pushing the policy...

An administrator enabled the default application control rule "Block writing to USB Drives", but needs to modify it so that clients can write to a specific make and model of compan...

An administrator enables the "Learn applications that run on the client computers" setting for a group of clients. Later, when using the Search for Applications function, the admin...

A company creates free web access computers for use in public areas, such as airports. The software provided on the computers will be static and the systems must be secure. What sh...

What is a benefit of enabling Browser Intrusion Prevention?

Company A acquires Company B. Company B has 200 employees. Multiple firewall rules, based on collections of client addresses, are required to allow the new employees access to Comp...

Which two criteria can be used to determine hosts in a host group? (Select two.)

Which two criteria can be used to determine hosts in a host group? (Select two.)

According to Symantec best practices, which two tasks should be completed after creating file fingerprint lists, but prior to enabling System Lockdown? (Select two.)

Which port is used by default for replication between sites?

A company has deployed Symantec Endpoint Protection 12.1 in their corporate environment using a multi-site design. If an administrator makes policy changes in the United States sit...

In a management server list, Symantec Endpoint Protection Manager (SEPM) A is added to Priority 1, and SEPM B is added to Priority 2. This setup will provide which service?

Which two configuration elements are needed in order to add a replication partner? (Select two.)

Which two are optional when replicating between Symantec Endpoint Protection Managers? (Select two.)

What is the default replication frequency when adding an additional site to a Symantec Endpoint Protection 12.1 deployment?

Which step must be completed to set up two sites to replicate?

Which authentication method must be used to provide the ability to reset forgotten passwords?

An employee is taking leave for four months and the employee's workstation will be powered off and locked in an office. Why does the workstation disappear from the Symantec Endpoin...

How frequently does Symantec recommend that a Symantec Endpoint Protection Manager site check LiveUpdate for content updates?

Which two should be considered when enabling Application Learning in an environment? (Select two.)

Where are directory servers added before importing Organizational Units (OU) or adding administrators to the Symantec Endpoint Protection Manager?

A company is setting up a new environment with three Symantec Endpoint Protection Managers (SEPM) and wants to set one SEPM to act as the primary reporting server. Where in the SEP...

A company suffered a catastrophic hardware failure on the Symantec Endpoint Protection Manager (SEPM) which was using a remote Microsoft SQL Server. The administrator has all requi...