©THESTAR 2024/2025 ALL RIGHTS RESERVED 2:24PM.
DISA HBSS 201 Admin ePO5.1 Exam Questions
And Answers |Latest 2025 | Guaranteed Pass.
DISA HBSS 201 Admin ePO5.1 (2016 Version) - Answer✔Pull Task
What can be created to prevent interpreting a normal behavior as an attack? -
Answer✔Exception
Which executable runs the main HIPS service? - Answer✔Firesvc.exe
How do yo uninstall the HIPS 7.0 client for Windows from a managed system? -
Answer✔Remove the extension from the ePO Server and initiate the McAfee Agent wakeup
call.( double check answer)
Assume three IPS policies are applied to a node; 1 default and 2 custom. The default severity
level is set to HIGH; 1 custom severity level is set to LOW and the other custom is set to
MEDIUM. What is the effective severity level outcome for the applied policy? - Answer✔Low
Med
Least Restrictive - testing
Which ePO repository provides all updates to the ePO Master repository? - Answer✔Source
Which is not a type of IPS Signature? - Answer✔Network Signatures
If a connection is in the state table; what action will occur with future traffic for that
connection? - Answer✔Allow
Which ePO component gathers the events from the managed systems and communicates them
to the ePO server? - Answer✔McAfee Agent
What are the four main types of Permission Sets in ePO? - Answer✔Executive Reviewer; Global
Reviewer; Group Admin; Group Reviewer
To manually move a system from one group to another; you do which two things with the
system to move it to the other group? - Answer✔A. Drag and drop - testing
1|Page
DISA HBSS 201 Admin ePO5.1 Exam Questions
And Answers |Latest 2025 | Guaranteed Pass.
DISA HBSS 201 Admin ePO5.1 (2016 Version) - Answer✔Pull Task
What can be created to prevent interpreting a normal behavior as an attack? -
Answer✔Exception
Which executable runs the main HIPS service? - Answer✔Firesvc.exe
How do yo uninstall the HIPS 7.0 client for Windows from a managed system? -
Answer✔Remove the extension from the ePO Server and initiate the McAfee Agent wakeup
call.( double check answer)
Assume three IPS policies are applied to a node; 1 default and 2 custom. The default severity
level is set to HIGH; 1 custom severity level is set to LOW and the other custom is set to
MEDIUM. What is the effective severity level outcome for the applied policy? - Answer✔Low
Med
Least Restrictive - testing
Which ePO repository provides all updates to the ePO Master repository? - Answer✔Source
Which is not a type of IPS Signature? - Answer✔Network Signatures
If a connection is in the state table; what action will occur with future traffic for that
connection? - Answer✔Allow
Which ePO component gathers the events from the managed systems and communicates them
to the ePO server? - Answer✔McAfee Agent
What are the four main types of Permission Sets in ePO? - Answer✔Executive Reviewer; Global
Reviewer; Group Admin; Group Reviewer
To manually move a system from one group to another; you do which two things with the
system to move it to the other group? - Answer✔A. Drag and drop - testing
1|Page
