DISA HBSS 201 Admin ePO5.1 || all accurately answered.
What can be created to prevent interpreting a normal behavior as an attack? correct answers
Exception
Which executable runs the main HIPS service? correct answers Firesvc.exe
How do yo uninstall the HIPS 7.0 client for Windows from a managed system? correct answers
Remove the extension from the ePO Server and initiate the McAfee Agent wakeup call.( double
check answer)
Assume three IPS policies are applied to a node; 1 default and 2 custom. The default severity
level is set to HIGH; 1 custom severity level is set to LOW and the other custom is set to
MEDIUM. What is the effective severity level outcome for the applied policy? correct answers
Low
Med
Least Restrictive - testing
Which ePO repository provides all updates to the ePO Master repository? correct answers Source
Which is not a type of IPS Signature? correct answers Network Signatures
If a connection is in the state table; what action will occur with future traffic for that connection?
correct answers Allow
Which ePO component gathers the events from the managed systems and communicates them to
the ePO server? correct answers McAfee Agent
What are the four main types of Permission Sets in ePO? correct answers Executive Reviewer;
Global Reviewer; Group Admin; Group Reviewer
What can be created to prevent interpreting a normal behavior as an attack? correct answers
Exception
Which executable runs the main HIPS service? correct answers Firesvc.exe
How do yo uninstall the HIPS 7.0 client for Windows from a managed system? correct answers
Remove the extension from the ePO Server and initiate the McAfee Agent wakeup call.( double
check answer)
Assume three IPS policies are applied to a node; 1 default and 2 custom. The default severity
level is set to HIGH; 1 custom severity level is set to LOW and the other custom is set to
MEDIUM. What is the effective severity level outcome for the applied policy? correct answers
Low
Med
Least Restrictive - testing
Which ePO repository provides all updates to the ePO Master repository? correct answers Source
Which is not a type of IPS Signature? correct answers Network Signatures
If a connection is in the state table; what action will occur with future traffic for that connection?
correct answers Allow
Which ePO component gathers the events from the managed systems and communicates them to
the ePO server? correct answers McAfee Agent
What are the four main types of Permission Sets in ePO? correct answers Executive Reviewer;
Global Reviewer; Group Admin; Group Reviewer
