Exam Details
Exam Code
:ST0-237Exam Name
:Symantec Data Loss Prevention 12 Technical AssessmentCertification
:Symantec Certified Security programVendor
:SymantecTotal Questions
:237 Q&AsLast Updated
:Apr 16, 2025
Symantec Symantec Certified Security program ST0-237 Questions & Answers
-
Question 281:
Refer to the exhibit.
A DLP administrator is planning the deployment of the Symantec Data Loss Prevention with Mobile Email Monitor. Where should the administrator place the Mobile Email Monitor?
A. 1
B. 2
C. 3
D. 4
-
Question 282:
Which two fallback options are available for a 'Network Prevent: Remove HTTP/HTTPS' content response rule when a web-based message contains confidential data? (Select two.)
A. Redirect the content to an alternative destination
B. Block the content from being posted
C. Encrypt the content before posting
D. Remove the content through FlexResponse
E. Allow the content to be posted
-
Question 283:
A DLP administrator needs to forward data loss incidents to the company's Security Information and Event Management (SIEM) system. Which response rule action provides the administrator with the ability to accomplish this task?
A. All: Send Email Notification
B. All: Log to a Syslog Server
C. All: Add Note
D. All: Set Attribute
-
Question 284:
Which traffic type is excluded from analysis when an administrator uses Network Monitor?
A. Skype
B. Yahoo! Instant Messenger
C. NNTP
D. Telnet
-
Question 285:
You execute the vxtrace command without any option to collect I/O trace data on all virtual disk drives during peak I/O operations. When you start to analyze the data, you notice that vxtrace displays a record indicating records are lost. You want to reduce the likelihood of the kernel discarding records so that you don't have to rerun vxtrace to capture the records.
What should you do?
A. Print vxtrace event records to a file
B. Increase the kernel buffer
C. Wait until I/O operations have decreased
D. Increase the kernel buffer using the o option
-
Question 286:
Which server target uses the 'Automated Incident Remediation Tracking' feature?
A. Lotus Notes
B. File System
C. SharePoint
D. Exchange
-
Question 287:
Which command will you use to display all the disk groups that are currently imported on the system?
A. vxdg import
B. vdisk dglist
C. vxvm dg list
D. vxdg list
-
Question 288:
A DLP administrator needs to configure an Automated Response rule that can execute while end-users are off the corporate network. Which response rule condition will enable the administrator to accomplish this task?
A. Endpoint Location
B. Endpoint Device
C. Protocol or Endpoint Destination
D. Sender/User Matches Pattern
-
Question 289:
Which two Diagnostic Logging Settings can be configured under the Systems > Servers > Logs - Configuration tab in the Enforce UI? (Select two.)
A. Discover Trace Logging
B. Packet Capture Debug Logging
C. Endpoint Debug Logging
D. Described Content Matching Incident Logging
E. Aggregator Debug Logging
-
Question 290:
Which two products are leveraged for Network Prevent integration? (Select two.)
A. Mail Transfer Agent
B. Network Tap
C. Proxy Server
D. Span Port
E. Load Balancer
Related Exams:
Tips on How to Prepare for the Exams
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Symantec exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your ST0-237 exam preparations and Symantec certification application, do not hesitate to visit our Vcedump.com to find your solutions here.