Exam Code: ST0-237 (Practice Exam Latest Test Questions VCE PDF)
Exam Name: Symantec Data Loss Prevention 12 Technical Assessment
Certification Provider: Symantec
Free Today! Guaranteed Training- Pass ST0-237 Exam.
2021 Sep ST0-237 training
Q121. Where does a Data Loss Prevention administrator recycle the FileReader process on a detection server?
A. System Overview page
B. Server Detail page
C. command prompt
D. Windows Services
Answer: B
Q122. Which command line utility generates custom authentication keys to improve the security of the data that is transmitted between the Enforce server and detection servers?
A. endpointkeytool
B. keytool
C. servertool
D. sslkeytool
Answer: D
Q123. For most organizations, the password for the database accounts is changed on a regular basis.
Which action is recommended for the account that is used by Symantec Control Compliance Suite
9.0 (CCS 9.0)?
A. Require that the CCS 9.0 have a password exception
B. Coordinate the password change to ensure database connectivity
C. Require that the CCS 9.0 administrator also have database administrator rights
D. Create a job that refreshes the settings information automatically
Answer: B
Q124. Which two should be used to collect log information from Enforce servers? (Select two.)
A. Enable the VontuSNMP service and set the community strings accordingly
B. Use the Log Collection and Configuration tool
C. Navigate manually to the log directory of the Enforce server installation
D. Access the Enforce Log Viewer page at https:///logs?view=true
E. Use dbgmonitor from sysinternals to connect to the debug output of the service
Answer: B,C
254. Which three database maintenance tasks must be performed outside of Symantec Control Compliance Suite 9.0? (Select three.)
A. Purge evidence
B. Back up the databases
C. Purge stale data
D. Shrink the databases
E. Defragment the databases
Answer: B,D,E
Q125. You are accessing the public region of a drive. You get an error message stating that the disk has failed. What could be the possible reason for this message?
A. VxVM can access the private region but there are uncorrectable I/O failures on the public region of the drive.
B. VxVM cannot access the private region or the public region of the drive.
C. VxVM can access the public region of the drive but there are uncorrectable I/O failures on the private region of the drive.
D. VxVM can access the public and the private region of the drive but the plex on the drive is disabled.
Answer: C
Up to the immediate present ST0-237 practice test:
Q126. A policy template called Customer Credit Card Numbers is being imported into the system.
What is the default result for this action?
A. the policy template will be listed under US Regulatory Enforcement Templates and be available
B. the policy template will be enabled by default
C. the policy template will be available after logging off and on to Enforce
D. the policy template will be listed under Imported Templates
Answer: D
Q127. Refer to the exhibit.
Symantec Data Loss Prevention's four phases of risk reduction model provides a blueprint for identifying and remediating key risk areas without disrupting legitimate business activity.
Which two actions are involved with the remediation phase of risk reduction? (Select two.)
A. employee and business unit communication
B. sender auto notification
C. blocking and notifying response rules
D. fixing broken business processes
E. enabling Exact Data Matching (EDM)/Indexed Document Matching (IDM)
Answer: A,D
Q128. A report template has been scheduled.
Where will the resulting report be located?
A. My Reports
B. Predefined Reports
C. Monitor > Jobs
D. My Documents folder
Answer: A
Q129. How should an administrator determine which Database version is running?
A. Run the command select database version from database;
B. Right click on database folder and select version
C. Run the command select * from v$version;
D. Look in add/remove programs for the database program
Answer: C
Q130. Refer to the exhibit.
An administrator is testing the DLP installation by placing .EML files into the drop folder, but has been unsuccessful in generating any incidents. The administrator is checking the Advanced Server Settings page to see if it can help diagnose the issue.
What could be causing this problem?
A. BoxMonitor.IncidentWriter setting needs to be set to Test
B. BoxMonitor.FileReader needs to be set to default
C. BoxMonitor.IncidentWriterMemory is set too high
D. BoxMonitor.Channels contains an incompatible entry
Answer: D