QUESTION: 17

After installing ENS on a server, the server administrator finds that a specific application runs very slow, yet communication flows are still present. Which of the following remediation steps should the administrator take?

Remove an exclusion.
Create a whitelist.
Create an exclusion.
Remove a whitelist.

Answer(s): C

Reveal Solution Next Question

QUESTION: 18

While tuning the firewall policy, the ePO administrator notices unauthorized traffic is being initiated by a file transfer utility application. If this is a recently approved application, in which of the following locations should this be configured to allow FTP traffic only with this application?

Add a new rule within the Access Protection policy to block port 21 and exclude the executable for the software.
Put a new rule in the Exploit Prevention policy to include the executable for the software for additional protection.
Exclude the process associated with the software within the On Access Scan policy's Low-Risk Processes section.
Create an allow rule within the Rules policy for inbound/outbound on port 21 and the executable for the software.

Answer(s): A

Reveal Solution Next Question

QUESTION: 19

An administrator wants to see more details about recent activity on an endpoint than what is shown in the ENS console. In which of the following locations can the administrator view the log files?

%ProgramFiles%\McAfee\Logs
%ProgramFiles%\McAfee\Endpoint Security\Logs
%ProgramData%\McAfee\Endpoint Security\Logs
%ProgramData%\McAfee\Logs

Answer(s): C

Reveal Solution Next Question

QUESTION: 20

A user navigates to a new website that has not been rated by ENS Web Control yet. In which of the following ways will ENS Web Control handle this request by default?

Delete
Block
Allow
Warn

Answer(s): C

Reveal Solution Next Question

Free MA0-107 Exam Braindumps (page: 5)

QUESTION: 17

QUESTION: 18

QUESTION: 19

QUESTION: 20