IMSEP EXAM 1 LATEST UPDATE 2022
COMPLETE SOLUTION CERTIFICATION
EVALUATION 2026 SOLVED QUESTIONS
AND SOLUTIONS GRADED A+
⩥ What can be created to prevent interpreting a normal behavior as an
attack? Answer: Exception
⩥ Which executable runs the main HIPS service? Answer: Firesvc.exe
⩥ How do yo uninstall the HIPS 7.0 client for Windows from a managed
system? Answer: Remove the extension from the ePO Server and initiate
the McAfee Agent wakeup call.( double check answer)
⩥ Assume three IPS policies are applied to a node; 1 default and 2
custom. The default severity level is set to HIGH; 1 custom severity
level is set to LOW and the other custom is set to MEDIUM. What is the
effective severity level outcome for the applied policy? Answer: Low
Med
Least Restrictive - testing
⩥ Which ePO repository provides all updates to the ePO Master
repository? Answer: Source
, ⩥ Which is not a type of IPS Signature? Answer: Network Signatures
⩥ If a connection is in the state table; what action will occur with future
traffic for that connection? Answer: Allow
⩥ Which ePO component gathers the events from the managed systems
and communicates them to the ePO server? Answer: McAfee Agent
⩥ What are the four main types of Permission Sets in ePO? Answer:
Executive Reviewer; Global Reviewer; Group Admin; Group Reviewer
⩥ To manually move a system from one group to another; you do which
two things with the system to move it to the other group? Answer: A.
Drag and drop - testing
⩥ Which ePO core component enforces the policies on the systems?
Answer: McAfee Agent
⩥ In the Client Task Catalog you can export all of your client tasks into
an XML file that can be imported into another ePolicy Orchestrator
Server. Answer: True
COMPLETE SOLUTION CERTIFICATION
EVALUATION 2026 SOLVED QUESTIONS
AND SOLUTIONS GRADED A+
⩥ What can be created to prevent interpreting a normal behavior as an
attack? Answer: Exception
⩥ Which executable runs the main HIPS service? Answer: Firesvc.exe
⩥ How do yo uninstall the HIPS 7.0 client for Windows from a managed
system? Answer: Remove the extension from the ePO Server and initiate
the McAfee Agent wakeup call.( double check answer)
⩥ Assume three IPS policies are applied to a node; 1 default and 2
custom. The default severity level is set to HIGH; 1 custom severity
level is set to LOW and the other custom is set to MEDIUM. What is the
effective severity level outcome for the applied policy? Answer: Low
Med
Least Restrictive - testing
⩥ Which ePO repository provides all updates to the ePO Master
repository? Answer: Source
, ⩥ Which is not a type of IPS Signature? Answer: Network Signatures
⩥ If a connection is in the state table; what action will occur with future
traffic for that connection? Answer: Allow
⩥ Which ePO component gathers the events from the managed systems
and communicates them to the ePO server? Answer: McAfee Agent
⩥ What are the four main types of Permission Sets in ePO? Answer:
Executive Reviewer; Global Reviewer; Group Admin; Group Reviewer
⩥ To manually move a system from one group to another; you do which
two things with the system to move it to the other group? Answer: A.
Drag and drop - testing
⩥ Which ePO core component enforces the policies on the systems?
Answer: McAfee Agent
⩥ In the Client Task Catalog you can export all of your client tasks into
an XML file that can be imported into another ePolicy Orchestrator
Server. Answer: True
