New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: best70

MA0-107 McAfee Certified Product Specialist - ENS Questions and Answers

Questions 4

When configuring the Adaptive Threat Protection Options policy, which of the following is a rule assignment group that needs to be selected to accommodate an environment consisting of high-change systems with frequent installations and updates of trusted software?

Options:

A.

Adaptive

B.

Productivity

C.

Balanced

D.

Security

Buy Now
Questions 5

An IT department is looking for a way to optimize performance with on-access scanning. To maximize security and minimize the impact on the system, on-access scanning should be configured to scan files at which of the following frequencies?

Options:

A.

Disable on-access scanning.

B.

Let McAfee decide.

C.

Only scan files on write.

D.

Only scan files on read.

Buy Now
Questions 6

An engineer needs to allow a specific application to run. The engineer just finished creating an Exploit Prevention process exclusion. After applying the exclusion, the engineer notices the application is not being run. The following information is provided to the engineer:

Which of the following is the error with the engineer's exclusion?

Options:

A.

A signature ID was not entered.

B.

Exclusions are case sensitive.

C.

A hash was not specified.

D.

Wildcard was not used.

Buy Now
Questions 7

While tuning the firewall policy, the ePO administrator notices unauthorized traffic is being initiated by a file transfer utility application. If this is a recently approved application, in which of the following locations should this be configured to allow FTP traffic only with this application?

Options:

A.

Add a new rule within the Access Protection policy to block port 21 and exclude the executable for the software.

B.

Put a new rule in the Exploit Prevention policy to include the executable for the software for additional protection.

C.

Exclude the process associated with the software within the On Access Scan policy's Low-Risk Processes section.

D.

Create an allow rule within the Rules policy for inbound/outbound on port 21 and the executable for the software.

Buy Now
Questions 8

Which of the following is the benefit of a TIE server with regard to the Adaptive Threat Protection module?

Options:

A.

It communicates with McAfee GTI for file and certificate reputation for malicious code.

B.

It is required, and the Adaptive Threat Protection will only work with the TIE server.

C.

The Threat Protection cache flushes when the reputation rules change.

D.

The stored file and certificate reputations are locally stored, making the remediation automatically quicker.

Buy Now
Questions 9

Joe, an administrator, runs a policy-based, on-demand scan on a system and notices that after the scan, a threat event was created for what appears to be a false positive. Joe wants to submit the file for analysis to McAfee Labs; but every time he accesses the file, it is detected. In which of the following default locations can Joe find the backups of the detected files?

Options:

A.

%ProgramData%\McAfee\Common Framework\AgentEvents

B.

C:\Quarantine

C.

C:\Windows\Temp\Quarantine

D.

%deflogfir%\Quarantine

Buy Now
Questions 10

When planning for a policy migration, in which of the following circumstances should automatic migration be used, rather than manual migration?

Options:

A.

When fine-tuning assignments

B.

When migrating smaller environments

C.

When migrating settings to single-platform policies

D.

When using multiple custom policies

Buy Now
Exam Code: MA0-107
Exam Name: McAfee Certified Product Specialist - ENS
Last Update: Dec 22, 2024
Questions: 70

PDF + Testing Engine

$134.99

Testing Engine

$99.99

PDF (Q&A)

$84.99