Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home VMware 5V0-91.20

VMware 5V0-91.20 Exam Practice Questions (P. 5)

  • Full Access (56 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #21
Management has directed that the SOC team be enabled to create global file bans via the App Control API.
How would this be configured in the App Control Console?
  1. A
    Create a Role, map to corresponding SOC group, and add permission ג€Manage filesג€ to Role.
  2. B
    Add permission ג€Manage filesג€ and create an API token for each SOC user.
  3. C
    Create a Role, map to the corresponding SOC group, add permission ג€Manage filesג€, and create API token for the Role.
  4. D
    Create a Role, map it to the corresponding SOC group, add permission ג€Manage filesג€ to Role, and create an API token for each user in group.

Correct Answer:
C

Question #22
An administrator is creating a query per policy for Audit and Remediation. The administrator ran several recommended queries already but notices they are unable to run the same recommended query for one of their policies. The run button is grayed out.
Which statement correctly explains why the run button is unavailable?
  1. A
    The sensors in the policy do not support the table or query.
  2. B
    The administrator needs the use live query permission.
  3. C
    The number of consecutive running queries is limited.
  4. D
    The query or table is not supported within osquery.

Correct Answer:
B
Reference:
https://www.google.com/url?
sa=t&rct=j&q=&esrc=s&source=web&cd=&cad=rja&uact=8&ved=2ahUKEwjZ_N65jIXvAhUFYcAKHbu4ChUQFjAAegQIAhAD&url=https%3A%2F%
2Fcommunity.carbonblack.com%2Fgbouw27325%2Fattachments%2Fgbouw27325%2Fproduct-docs-news%2F3142%2F25%2FCarbon%2520Black%2520Cloud
%2520-%2520Endpoint%2520Advanced%2520User%2520Guide.pdf&usg=AOvVaw2N-B7YFQA_l7hj-HvB5Hf6
(47)

Question #23
An Endpoint Standard administrator finds a binary in the environment and decides to manually add the file hash to the Banned List.
Which reputation does the file now have?
  1. A
    Suspect/Heuristic Malware
  2. B
    Company Black
  3. C
    Adware/PUP Malware
  4. D
    Known Malware

Correct Answer:
A

Question #24
Given an event rule: Approve nVidia Drivers, changes the local state to Approved for file writes or execution blocks when the publisher is NVIDIA Corporation.
How is an alert created that is triggered whenever an nVidia driver is approved by the event rule?
  1. A
    Add a new Alert of type Event Alert. Set Subtype to New unapproved file to computer and Execution block (unapproved file) and Publisher to NVIDIA Corporation. Click Create and add email recipients.
  2. B
    Click Create Alert on the event rule Approve nVidia Drivers details page. Click Create and add email recipients. Create and Exit.
  3. C
    Click Create Alert on the event rule Approve nVidia Drivers details page. Add email recipients. Create and Exit.
  4. D
    Create a custom rule name Approve nVidia that approves writes or blocks when the publisher is NVIDIA Corporation. Create an alert for rule name Approve nVidia. Click Create and add email recipients.

Correct Answer:
B

Question #25
The final section of each exam is exclusively available to users with Contributor Access. This temporary measure was implemented to cover the expenses of the SecExams infrastructure and moderation staff while also decreasing the load on our infrastructure.
  1. A
    Restricted Option
  2. B
    Restricted Option
  3. C
    Restricted Option
  4. D
    Restricted Option
Previous Questions Next Questions

All Pages