1. Home
  2. Symantec
  3. 250-428

Administration of Symantec Endpoint Protection 14

Exam Details

  • Exam Code
    :250-428
  • Exam Name
    :Administration of Symantec Endpoint Protection 14
  • Certification
    :Symantec Certifications
  • Vendor
    :Symantec
  • Total Questions
    :165 Q&As
  • Last Updated
    :Apr 12, 2025

Symantec Symantec Certifications 250-428 Questions & Answers

  • Question 151:

    How are Insight results stored?

    A. Encrypted on the Symantec Endpoint Protection Manager

    B. Unencrypted on the Symantec Endpoint Protection Manager

    C. Encrypted on the Symantec Endpoint Protection Client

    D. Unencrypted on the Symantec Endpoint Protection Client

  • Question 152:

    An administrator needs to configure Secure Socket Layer (SSL) communication for clients. In the httpd.conf file, located on the Symantec Endpoint Protection Manager (SEPM), the administrator removes the hashmark (#) from the text string

    displayed below.

    #Include conf/ssl/sslForcClients.conf<

    Which two tasks must the administrator perform to complete the SSL configuration? (Select two.)

    A. edit site.properties and change the port to 443

    B. restart the Symantec Endpoint Protection Manager Webserver service

    C. change the default certificates on the SEPM and reboot

    D. change the Management Server List and enable HTTPs

    E. change the port in Clients > Group > Policies > Settings > Communication Settings and force the clients to reconnect

  • Question 153:

    A large-scale virus attack is occurring and a notification condition is configured to send an email whenever viruses infect five computers on the network. A Symantec Endpoint Protection administrator has set a one hour damper period for that notification condition.

    How many notifications does the administrator receive after 30 computers are infected in two hours?

    A. 1

    B. 2

    C. 6

    D. 15

  • Question 154:

    An administrator is reviewing an Infected Clients Report and notices that a client repeatedly shows the same malware detection. Although the client remediates the files, the infection continues to display in the logs. Which two functions should be enabled to automate enhanced remediation of a detected threat and its related side effects? (Select two.)

    A. Risk Tracer

    B. Terminate Processes Automatically

    C. Early Launch Anti-Malware Driver

    D. Stop Service Automatically

    E. Stop and Reload AutoProtect

  • Question 155:

    A threat was detected by Auto-Protect on a client system.

    Which command can an administrator run to determine whether additional threats exist?

    A. Restart Client Computer

    B. Update Content and Scan

    C. Enable Network Threat Protection

    D. Enable Download Insight

  • Question 156:

    Which Symantec Endpoint Protection Management (SEPM) database option is the default for deployments of fewer than 1,000 clients?

    A. EmbeddeD. Using the Sybase SQL Anywhere database that comes with the product

    B. On SEPM: Installing Microsoft SQL on the same server as the SEPM

    C. External to SEPM: Using a preexisting Microsoft SQL server in the environment

    D. EmbeddeD. Using the Microsoft SQL database that comes with the product

  • Question 157:

    A company plans to install six Symantec Endpoint Protection Managers (SEPMs) spread evenly across two sites. The administrator needs to direct replication activity to SEPM3 server in Site 1 and SEPM4 in Site 2. Which two actions should the administrator take to direct replication activity to SEPM3 and SEPM4? (Select two.)

    A. Install SEPM3 and SEPM4 after the other SEPMs

    B. Install the SQL Server databases on SEPM3 and SEPM4

    C. Ensure SEPM3 and SEPM4 are defined as the top priority server in the Site Settings

    D. Ensure SEPM3 and SEPM4 are defined as remote servers in the replication partner configuration

    E. Install IT Analytics on SEPM3 and SEPM4

  • Question 158:

    Which option is a characteristic of a Symantec Endpoint Protection (SEP) domain?

    A. Each domain has its own management server and database.

    B. Every administrator from one domain can view data in other domains.

    C. Data for each domain is stored in its own separate SEP database.

    D. Domains share the same management server and database.

  • Question 159:

    An administrator selects the Backup files before attempting to repair the Remediations option in the Auto-Protect policies. Which two actions occur when a virus is detected? (Select two.)

    A. replace the file with a place holder

    B. check the reputation

    C. store in Quarantine folder

    D. send the file to Symantec Insight

    E. encrypt the file

  • Question 160:

    A company has an application that requires network traffic in both directions to multiple systems at a specific external domain. A firewall rule was created to allow traffic to and from the external domain, but the rule is blocking incoming traffic. What should an administrator enable in the firewall policy to allow this traffic?

    A. TCP resequencing

    B. Smart DHCP

    C. Reverse DNS Lookup

    D. Smart WINS

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Symantec exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 250-428 exam preparations and Symantec certification application, do not hesitate to visit our Vcedump.com to find your solutions here.