EMT Practice Test

1. Question Content...


Question List

Question1: What is the role of Apex Central in the Connected Threat Defense infrastructure?

Question2: What is the effect of the Firewall rule displayed in the following exhibit?

Question3: Based on the script displayed in the exhibit, which of the following statements are correct? Select all that apply.

Question4: As the administrator in a multi-tenant environment, you would like to monitor the usage of security services by tenants? Which of the following are valid methods for monitoring the usage of the system by the tenants?

Question5: When viewing the details for a policy, as displayed in the exhibit, you notice that the Application Control Protection Module is not available. In this example, why would this Protection Modules not be available?

Question6: Your organization stores PDF and Microsoft Office files within the SAP Netweaver platform and requires these documents to be scanned for malware. Which Deep Security component is required to satisfy this requirement?

Question7: A Recommendation Scan is run to determine which Intrusion Prevention rules are appropriate for a Server. The scan is configured to apply the suggested rules automatically and ongoing scans are enabled. Some time later, an operating system patch is applied. How can you de-termine which Intrusion Prevention rules are no longer needed on this Server?

Question8: Which of the following statements is true regarding Intrusion Prevention rules?

Question9: Which of the following Protection Modules does not benefit from Recommendation Scans?

Question10: A collection of servers protected by Deep Security do not have Internet access. How can Smart Scan be used on these computers.

Question11: Based on the configuration setting highlighted in the exhibit, what behavior can be expected during a malware scan?

Question12: What is the result of performing a Reset operation on a Deep Security Agent?

Question13: Which of following statements best describes Machine Learning in Deep Security?

Question14: How does Smart Scan vary from conventional pattern-based anti-malware scanning?

Question15: What is the purpose of the override.properties file?

Question16: Based on the policy configuration displayed in the exhibit, which of the following statements is true?

Question17: The Firewall Protection Module is enabled on a server through the computer details. What is default behavior of the Firewall if no rules are yet applied?

Question18: Which of the following statements is true regarding Event Tagging?

Question19: In the policy displayed in the exhibit, the state of the Web Reputation Protection Module is set to "Inherited (On)", while the state for the other Protection Module is set to "On". Why is the Web Reputation Protection Module displayed differently than the other Protection Modules.

Question20: The Overrides settings for a computer are displayed in the exhibit. Which of the following statements is true regarding the displayed configuration?

Question21: What is the purpose of the Deep Security Relay?

Question22: The Intrusion Prevention Protection Module is enabled, but the traffic it is trying to analyze is encrypted through https. How is it possible for the Intrusion Prevention Protection Module to monitor this encrypted traffic against the assigned rules?

Question23: Multi-tenancy is enabled in Deep Security and new tenants are created. Where does the new tenant data get stored when using SQL Server as the Deep Security database?

Question24: The details for an event are displayed in the exhibit. Based on these details, which Protection Module generated the event?

Question25: Which Deep Security Protection Modules can be used to provide runtime protection for the Kubernetes and Docker platforms? Select all that apply.

Question26: The Security Level for Web Reputation in a policy is set to High. A server assigned this policy attempts to access a Web site with a credibility score of 78.
What is the result?

Question27: Recommendation scans can detect applications and/or vulnerabilities on servers on the network. Which of the following Protection Modules make use of Recommendation scans?

Question28: Which of the following statements is true regarding the Intrusion Prevention Protection Module?

Question29: While viewing the details of the Firewall Protection Module, as displayed in the exhibit, you note that a few rules have already been assigned. You try to disable these rules, but they can not be unassigned. Why can the displayed rules not be unassigned?