Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home VMware 5V0-93.22

VMware 5V0-93.22 Exam Practice Questions (P. 3)

  • Full Access (60 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #11
An administrator wants to find information about real-world prevention rules that can be used in VMware Carbon Black Cloud Endpoint Standard.
How can the administrator obtain this information?
  1. A
    Refer to an external report from other security vendors to obtain solutions.
  2. B
    Refer to the TAU-TIN's on the VMware Carbon Black community page.
  3. C
    Refer to the VMware Carbon Black Cloud sensor install guide.
  4. D
    Refer to VMware Carbon Black Cloud user guide.

Correct Answer:
B

Question #12
Is it possible to search for unsigned files in the console?
  1. A
    Yes, by using the search:
    NOT process_publisher_state:FILE_SIGNATURE_STATE_SIGNED
  2. B
    No, it is not possible to return a query for unsigned files.
  3. C
    Yes, by using the search:
    process_publisher_state:FILE_SIGNATURE_STATE_UNSIGNED
  4. D
    Yes, by looking at signed and unsigned executables in the environment and seeing if another difference can be found, thus locating unsigned files in the environment.

Correct Answer:
C

Question #13
The administrator has configured a permission rule with the following options selected:
Application at path: C:\Program Files\**
Operation Attempt: Performs any operation

Action: Bypass -
What is the impact, if any, of using the wildcards in the application at path field?
  1. A
    Executable files in the "Program Files" directory and subdirectories will be ignored.
  2. B
    Executable files in the "Program Files" directory will be blocked.
  3. C
    Executable files in the "Program Files" directory will be logged.
  4. D
    Executable files in the "Program Files" directory will be subject to blocking rules.

Correct Answer:
A

Question #14
A script-based attack has been identified that inflicted damage to the corporate systems. The security administrator found out that the malware was coded into Excel VBA and would like to perform a search to further inspect the incident.
Where in the VMware Carbon Black Cloud Endpoint Standard console can this action be completed?
  1. A
    Endpoints
  2. B
    Settings
  3. C
    Investigate
  4. D
    Alerts

Correct Answer:
C

Question #15
An administrator would like to proactively know that something may get blocked when putting a policy rule in the environment.
How can this information be obtained?
  1. A
    Search the data using the test rule functionality.
  2. B
    Examine log files to see what would be impacted.
  3. C
    Put the rules in and see what happens to the endpoints.
  4. D
    Determine what would happen based on previously used antivirus software.

Correct Answer:
A

Previous Questions Next Questions

All Pages