VMware 5V0-93.22 Exam Practice Questions (P. 4)
- Full Access (60 questions)
- Six months of Premium Access
- Access to one million comments
- Seamless ChatGPT Integration
- Ability to download PDF files
- Anki Flashcard files for revision
- No Captcha & No AdSense
- Advanced Exam Configuration
Question #16
An administrator has just placed an endpoint into bypass.
What type of protection, if any, will VMware Carbon Black provide this device?
What type of protection, if any, will VMware Carbon Black provide this device?
- AVMware Carbon Black will be uninstalled from the endpoint.
- BVMware Carbon Black will place the machine in quarantine.
- CVMware Carbon Black will not provide any protection to the endpoint.
- DVMware Carbon Black will apply policy rules.
Correct Answer:
C
C
send
light_mode
delete
Question #17
A security administrator needs to review the Live Response activities and commands that have been executed while performing a remediation process to the sensors.
Where can the administrator view this information in the console?
Where can the administrator view this information in the console?
send
light_mode
delete
Question #18
Which statement accurately characterizes Alerts that are categorized as a "Threat" versus those categorized as "Observed"?
- A"Threat" indicates an ongoing attack, "Observed" indicates the attack is over and is being watched.
- B"Threat" indicates a more likely malicious event, "Observed" are less likely to be malicious.
- C"Threat" indicates a block (Deny or Terminate) has occurred, "Observed" indicates that there is no block.
- D"Threat" indicates that no block (Deny or Terminate) has occurred, "Observed" indicates a block.
Correct Answer:
B
B
send
light_mode
delete
Question #19
An administrator is working in a development environment that has a policy rule applied and notices that there are too many blocks. The administrator takes action on the policy rule to troubleshoot the issue until the blocks are fixed.
Which action should the administrator take?
Which action should the administrator take?
send
light_mode
delete
Question #20
An organization has the following requirements for allowing application.exe:
Must not work for any user's D:\ drive
Must allow running only from inside of the user's Temp\Allowed directory
Must not allow running from anywhere outside of Temp\Allowed
For example, on one user's machine, the path is C:\Users\Lorie\Temp\Allowed\application.exe.
Which path meets this criteria using wildcards?
Must not work for any user's D:\ drive
Must allow running only from inside of the user's Temp\Allowed directory
Must not allow running from anywhere outside of Temp\Allowed
For example, on one user's machine, the path is C:\Users\Lorie\Temp\Allowed\application.exe.
Which path meets this criteria using wildcards?
- AC:\Users\?\Temp\Allowed\application.exe
- BC:\Users\*\Temp\Allowed\application.exe
- C*:\Users\**\Temp\Allowed\application.exe
- D*:\Users\*\Temp\Allowed\application.exe
Correct Answer:
B
B
send
light_mode
delete
All Pages