Exam Code: ST0-237 (Practice Exam Latest Test Questions VCE PDF)
Exam Name: Symantec Data Loss Prevention 12 Technical Assessment
Certification Provider: Symantec
Free Today! Guaranteed Training- Pass ST0-237 Exam.

2021 Sep ST0-237 training

Q121. Where does a Data Loss Prevention administrator recycle the FileReader process on a detection server? 

A. System Overview page 

B. Server Detail page 

C. command prompt 

D. Windows Services 

Answer: B 


Q122. Which command line utility generates custom authentication keys to improve the security of the data that is transmitted between the Enforce server and detection servers? 

A. endpointkeytool 

B. keytool 

C. servertool 

D. sslkeytool 

Answer: D 


Q123. For most organizations, the password for the database accounts is changed on a regular basis. 

Which action is recommended for the account that is used by Symantec Control Compliance Suite 

9.0 (CCS 9.0)? 

A. Require that the CCS 9.0 have a password exception 

B. Coordinate the password change to ensure database connectivity 

C. Require that the CCS 9.0 administrator also have database administrator rights 

D. Create a job that refreshes the settings information automatically 

Answer: B 


Q124. Which two should be used to collect log information from Enforce servers? (Select two.) 

A. Enable the VontuSNMP service and set the community strings accordingly 

B. Use the Log Collection and Configuration tool 

C. Navigate manually to the log directory of the Enforce server installation 

D. Access the Enforce Log Viewer page at https:///logs?view=true 

E. Use dbgmonitor from sysinternals to connect to the debug output of the service 

Answer: B,C 

254. Which three database maintenance tasks must be performed outside of Symantec Control Compliance Suite 9.0? (Select three.) 

A. Purge evidence 

B. Back up the databases 

C. Purge stale data 

D. Shrink the databases 

E. Defragment the databases 

Answer: B,D,E 


Q125. You are accessing the public region of a drive. You get an error message stating that the disk has failed. What could be the possible reason for this message? 

A. VxVM can access the private region but there are uncorrectable I/O failures on the public region of the drive. 

B. VxVM cannot access the private region or the public region of the drive. 

C. VxVM can access the public region of the drive but there are uncorrectable I/O failures on the private region of the drive. 

D. VxVM can access the public and the private region of the drive but the plex on the drive is disabled. 

Answer: C 


ST0-237 latest exam

Up to the immediate present ST0-237 practice test:

Q126. A policy template called Customer Credit Card Numbers is being imported into the system. 

What is the default result for this action? 

A. the policy template will be listed under US Regulatory Enforcement Templates and be available 

B. the policy template will be enabled by default 

C. the policy template will be available after logging off and on to Enforce 

D. the policy template will be listed under Imported Templates 

Answer: D 


Q127. Refer to the exhibit. 

Symantec Data Loss Prevention's four phases of risk reduction model provides a blueprint for identifying and remediating key risk areas without disrupting legitimate business activity. 

Which two actions are involved with the remediation phase of risk reduction? (Select two.) 

A. employee and business unit communication 

B. sender auto notification 

C. blocking and notifying response rules 

D. fixing broken business processes 

E. enabling Exact Data Matching (EDM)/Indexed Document Matching (IDM) 

Answer: A,D 


Q128. A report template has been scheduled. 

Where will the resulting report be located? 

A. My Reports 

B. Predefined Reports 

C. Monitor > Jobs 

D. My Documents folder 

Answer: A 


Q129. How should an administrator determine which Database version is running? 

A. Run the command select database version from database; 

B. Right click on database folder and select version 

C. Run the command select * from v$version; 

D. Look in add/remove programs for the database program 

Answer: C 


Q130. Refer to the exhibit. 

An administrator is testing the DLP installation by placing .EML files into the drop folder, but has been unsuccessful in generating any incidents. The administrator is checking the Advanced Server Settings page to see if it can help diagnose the issue. 

What could be causing this problem? 

A. BoxMonitor.IncidentWriter setting needs to be set to Test 

B. BoxMonitor.FileReader needs to be set to default 

C. BoxMonitor.IncidentWriterMemory is set too high 

D. BoxMonitor.Channels contains an incompatible entry 

Answer: D