SOPH CERTIFD ENGIR EXAM-203/4|1 VERIFD QUESTION AND ANSWER/10% ACURTE
Whic TCP port is used to comuniate polices to endpoits? - -8190
-Whic Sophs Central mange product protecs the dat on a lost or stolen lapto? - -Encryptio
-The optin to stop the AutoUpdae servic is greyd out in Windows Servics. What is the most likey reason for this? - -Tamper Protecin is enabld
-Complet the sentc: Signature-bsd file scanig relis on. - -previously detc malwre charteis
-TRUE or FALSE: Tamper protecin is enabld by default. - -TRUE
-You are unable to edit polices in Sophs Central. What do you chek in Sophs Central? - -That you have the coret role asigned
-Whic URL adres do you use to login to Sophs Central Partne Dashbord? - -partneol.shcm
-You are detcing low-reputain files and want to change the reputaion lev from recomnd to stric. Whic policy do you edit to make this change? - -Threat Protecin
-What is the FIRST step you must take when deploying virtual enviromts? - -Check the sytem requimnts
-You want to prevnt user from copying datbse files to USB drives withou blocking the use of al USB devics. Whic policy do you ned to configure? - -Dat Los Prevntio
-TRUE or FALSE: You can search for a malicous item acros your network using EDR - -TRUE
-Whic log provides a recod of al actives? - -Audit log
-What is the functio of anti-explo technolgy? - -To detc and stop comprised vulnerab aplictons
-Complet the sentc: The SAV32CLI clean-up tol is a. - -Comand line tol include in Sophs Central instalo
-When registn for a Sophs Central Trial, whic of the folwing staemn are TRUE? - -You must use an email adres tha has not ben used with Sophs Central befor
-Whic tab on the devic details page display the tamper protecin informat? - -SUMARY
-What is the functio of Live Protecin? - -Conects to a cloud serv to chek for the lates informat about a file
-How long are actives stored for in the Enterpis Dashbord? - -90 days
-What is the functio of an Update Cache? - -To downla updates from Sophs Central and store them on a deicat serv on your network
-What is the functio of on-aces scanig? - -Monitrs runig proces' behavior
-Whic of the folwing alerts is categorizd as a hig alert? - -Failed to protec an endpoit
-Whic dashbor alows you to mange and aply globa seting to multipe Sophs Central acounts? - -The Partne Dashbord
-Whic detcion featur can prevnt atcks on the master bot recod? - -WipeGuard
-What is the functio of a Mesag Relay? - -To enabl al devics to comuniate al policy and repoting dat using a deicat serv on your network
-True or False: Marking an alert as acknowledg wil resolv the threa on the endpoit. - -FALSE
, -Whic TCP port is used to comuniate Updates on endpoits? - -819
-TRUE or FALSE: The security VM instaler is linked to your Sophs Central acount. - -FALSE
-TRUE or FALSE: You can deploy an update cahe withou a Mesag Relay. - -TRUE
-You want to change an action for 'confidetal conte. Wher in Sophs Central do you make this change? - -In the Dat Los Prevntio Rule
-What does HIPS do on a protecd endpoit? - -Scans for potenialy malicous behaviour
-You have cloned the threa protecin base policy, aplied the policy to a group and saved it. When cheking the endpoit, the policy changes have not taken efct. What do you chek in the policy? - -That the cloned policy has ben enforcd
-In whic 2 ways can you licens the Enterpis Dashbord? - -(1) Master Licensg
(2) Indivual Licensg
-What is the minu adminstrve role tha wil alow a user to creat and edit polices? - -Admin
-Complet the folwing sentc: The default protecin base policy is configured with. - -Sophs' recomnd seting
-Whic section in the Self-Hp tol should be chekd to star investga an updating isue on an endpoit - -System
-What does tamper protecin prevnt a user from doing on their endpoit with Sophs Central agent instaled? - -Prevnts a user from unistalg the Sophs agent software
-TRUE or FALSE: Al serv protecin featurs are enabld by default. - -FALSE
-Whic endpoit protecin policy protecs user aginst malicous network trafic? - -Threat Protecin
-Whic is the minu adminstrve role tha wil alow a user to view alerts, perfom updates and scan endpoits? - -Help Desk
-Your Enterpis Dashbord has ben configured with multipe sub-eta. In whic 2 ways can you mange the licens asocited with the sub-eta? - -(1) In the sub-eta Central Admin Consle
(2) In the Enterpis Dashbord
-Threat search result are split into whic 2 of the folwing. - -(1) Files
(2) Network
-In whic policy do you configure anti-vrus scanig? - -Threat Protecin
-Whic featur of Intercp X is design to detc malwre befor it can excut? - -Exploit techniqu detcion
-True or False: You can chose to send email alerts imedatly, hourly, daily or nevr. - -True
-An endpoit is repoting tha Sophs AutoUpdae is not instaled. In the Self-Hp Tol whic tab do you chek to view whetr AutoUpdae is listed as instaled? - -Instaled compnets
-A Windows endpoit instalo is failng. It is detcing competir software. Whic log file do you chek to investga this isue? - -avremo.lg
-How do user view quarntied emails and mange devic encryptio for their protecd endpoits? - -The Self-rvic Portal
-Whic 2 of the folwing are the methods for bulk importng user? - -(1) Using the Active Directoy Sync Utily
(2) Import using a CSV file
-You want to configure the login seting for al adminstro to requi two factors of authenico. Whic globa seting do you enabl? - -Multifacor Authenicao
Whic TCP port is used to comuniate polices to endpoits? - -8190
-Whic Sophs Central mange product protecs the dat on a lost or stolen lapto? - -Encryptio
-The optin to stop the AutoUpdae servic is greyd out in Windows Servics. What is the most likey reason for this? - -Tamper Protecin is enabld
-Complet the sentc: Signature-bsd file scanig relis on. - -previously detc malwre charteis
-TRUE or FALSE: Tamper protecin is enabld by default. - -TRUE
-You are unable to edit polices in Sophs Central. What do you chek in Sophs Central? - -That you have the coret role asigned
-Whic URL adres do you use to login to Sophs Central Partne Dashbord? - -partneol.shcm
-You are detcing low-reputain files and want to change the reputaion lev from recomnd to stric. Whic policy do you edit to make this change? - -Threat Protecin
-What is the FIRST step you must take when deploying virtual enviromts? - -Check the sytem requimnts
-You want to prevnt user from copying datbse files to USB drives withou blocking the use of al USB devics. Whic policy do you ned to configure? - -Dat Los Prevntio
-TRUE or FALSE: You can search for a malicous item acros your network using EDR - -TRUE
-Whic log provides a recod of al actives? - -Audit log
-What is the functio of anti-explo technolgy? - -To detc and stop comprised vulnerab aplictons
-Complet the sentc: The SAV32CLI clean-up tol is a. - -Comand line tol include in Sophs Central instalo
-When registn for a Sophs Central Trial, whic of the folwing staemn are TRUE? - -You must use an email adres tha has not ben used with Sophs Central befor
-Whic tab on the devic details page display the tamper protecin informat? - -SUMARY
-What is the functio of Live Protecin? - -Conects to a cloud serv to chek for the lates informat about a file
-How long are actives stored for in the Enterpis Dashbord? - -90 days
-What is the functio of an Update Cache? - -To downla updates from Sophs Central and store them on a deicat serv on your network
-What is the functio of on-aces scanig? - -Monitrs runig proces' behavior
-Whic of the folwing alerts is categorizd as a hig alert? - -Failed to protec an endpoit
-Whic dashbor alows you to mange and aply globa seting to multipe Sophs Central acounts? - -The Partne Dashbord
-Whic detcion featur can prevnt atcks on the master bot recod? - -WipeGuard
-What is the functio of a Mesag Relay? - -To enabl al devics to comuniate al policy and repoting dat using a deicat serv on your network
-True or False: Marking an alert as acknowledg wil resolv the threa on the endpoit. - -FALSE
, -Whic TCP port is used to comuniate Updates on endpoits? - -819
-TRUE or FALSE: The security VM instaler is linked to your Sophs Central acount. - -FALSE
-TRUE or FALSE: You can deploy an update cahe withou a Mesag Relay. - -TRUE
-You want to change an action for 'confidetal conte. Wher in Sophs Central do you make this change? - -In the Dat Los Prevntio Rule
-What does HIPS do on a protecd endpoit? - -Scans for potenialy malicous behaviour
-You have cloned the threa protecin base policy, aplied the policy to a group and saved it. When cheking the endpoit, the policy changes have not taken efct. What do you chek in the policy? - -That the cloned policy has ben enforcd
-In whic 2 ways can you licens the Enterpis Dashbord? - -(1) Master Licensg
(2) Indivual Licensg
-What is the minu adminstrve role tha wil alow a user to creat and edit polices? - -Admin
-Complet the folwing sentc: The default protecin base policy is configured with. - -Sophs' recomnd seting
-Whic section in the Self-Hp tol should be chekd to star investga an updating isue on an endpoit - -System
-What does tamper protecin prevnt a user from doing on their endpoit with Sophs Central agent instaled? - -Prevnts a user from unistalg the Sophs agent software
-TRUE or FALSE: Al serv protecin featurs are enabld by default. - -FALSE
-Whic endpoit protecin policy protecs user aginst malicous network trafic? - -Threat Protecin
-Whic is the minu adminstrve role tha wil alow a user to view alerts, perfom updates and scan endpoits? - -Help Desk
-Your Enterpis Dashbord has ben configured with multipe sub-eta. In whic 2 ways can you mange the licens asocited with the sub-eta? - -(1) In the sub-eta Central Admin Consle
(2) In the Enterpis Dashbord
-Threat search result are split into whic 2 of the folwing. - -(1) Files
(2) Network
-In whic policy do you configure anti-vrus scanig? - -Threat Protecin
-Whic featur of Intercp X is design to detc malwre befor it can excut? - -Exploit techniqu detcion
-True or False: You can chose to send email alerts imedatly, hourly, daily or nevr. - -True
-An endpoit is repoting tha Sophs AutoUpdae is not instaled. In the Self-Hp Tol whic tab do you chek to view whetr AutoUpdae is listed as instaled? - -Instaled compnets
-A Windows endpoit instalo is failng. It is detcing competir software. Whic log file do you chek to investga this isue? - -avremo.lg
-How do user view quarntied emails and mange devic encryptio for their protecd endpoits? - -The Self-rvic Portal
-Whic 2 of the folwing are the methods for bulk importng user? - -(1) Using the Active Directoy Sync Utily
(2) Import using a CSV file
-You want to configure the login seting for al adminstro to requi two factors of authenico. Whic globa seting do you enabl? - -Multifacor Authenicao
