ST0-134 Online Practice Questions and Answers

An administrator is designing a new single site Symantec Endpoint Protection environment. Due to perimeter firewall bandwidth restrictions, the design needs to minimize the amount of traffic from content passing through the firewall. Which source must the administrator avoid using?

A. Symantec Endpoint Protection Manager

B. LiveUpdate Administrator (LUA)

C. Group Update Provider (GUP)

D. Shared Insight Cache (SIC)

A large software company runs a small engineering department that is remotely located over a slow WAN connection. Which option should the company use to install an exported Symantec Endpoint Protection (SEP) package to the remote site using the smallest amount of network bandwidth?

A. a SEP package using Basic content

B. a SEP package using a policy defined Single Group Update Provider (GUP)

C. a SEP package using a policy defined Multiple Group Update Provider (GUP) list

D. a SEP package using the Install Packages tab

A new installation of the Symantec Endpoint Protection 12.1 (SEP) is running on a trial license. For how long can managed SEP clients receive updates?

A. 30 days

B. 60 days

C. 90 days

D. 120 days

A large software company has a small engineering department that is remotely located over a slow WAN connection. Which method will deploy the Symantec Endpoint Protection 12.1 (SEP) clients to the remote site using the smallest amount of network bandwidth?

A. Deploy the SEP clients using basic content.

B. Deploy the clients using the Push Install Wizard.

C. Install a Group Update Provider on a remote computer and then install the remote SEP clients.

D. Install a Group Update Provider on a local computer and then install the remote SEP clients.

All email Auto-Protect options are disabled, and an administrator receives an email from an associate with a .zip file attached. There are three files in the .zip file that are needed for the administrator's presentation the next day. What neither of them realize is that one of the files is infected with a virus. When will File System Auto-Protect detect this infected file?

A. when the email is opened

B. when the .zip file is opened

C. when the .zip file is saved to the administrator's desktop

D. when the email is closed

Which two should be considered when enabling Application Learning in an environment? (Select two.)

A. Application Learning requires Virus and Spyware Protection.

B. Application Learning should be deployed on a small group of systems in the enterprise.

C. Application Learning can generate significant CPU or memory use on a Symantec Endpoint Protection Manager.

D. Application Learning can be used without using application-based firewall rules, Application Control rules, or Centralized Exceptions.

E. Application Learning is dependent on a properly configured firewall.

How can an administrator proactively obtain information about unknown devices on a network?

A. Use the Client Deployment Wizard feature to locate unmanaged endpoints.

B. Create an Unmanaged Computer notification.

C. Schedule an audit report to send to the administrator.

D. Run the Symantec Endpoint Discovery Tool.

An administrator enabled virtual image exceptions for Auto-Protect and Administrator-Defined scans on virtual machines. In order to protect against previously undetected threats, the administrator must regularly scan the static instance of the virtual machine image set which includes the files that have been whitelisted. In addition to cleaning the static image set, which additional step must the administrator complete if threats are discovered?

A. Select the threat in the log and add it as an exception.

B. Use the Symantec Offline Image Scanner (SOIS) on the static image.

C. Ensure that virtual client tagging is enabled.

D. Use the vietool to update the whitelist.