250-561 Endpoint Security Complete – Administration R1 exam is a hot Symantec certification exam, Exam4Training offers you the latest free online 250-561 dumps to practice. You can get online training in the following questions, all these questions are verified by Symantec experts. If this exam changed, we will share new update questions.
Which two (2) steps should an administrator take to guard against re-occurring threats? (Select two)
A . Confirm that daily active and weekly full scans take place on all endpoints
B. Verify that all endpoints receive scheduled Live-Update content
C. Use Power Eraser to clean endpoint Windows registries
D. Add endpoints to a high security group and assign a restrictive Antimalware policy to the group
E. Quarantine affected endpoints
Answer: C,E
An administrator is evaluating an organization’s computers for an upcoming SES deployment.
Which computer meets the pre-requisites for the SES client?
A . A computer running Mac OS X 10.8 with 500 MB of disk space, 4 GB of RAM, and an Intel Core 2 Duo 64-bit processor
B. A computer running Mac OS X 10.14 with 400 MB of disk space, 4 GB of RAM, and an Intel Core 2 Duo 64-bit processor
C. A computer running Windows 10 with 400 MB of disk space, 2 GB of RAM, and a 2.4 GHz Intel Pentium 4 processor
D. A computer running Windows 8 with 380 MB of disk space, 2 GB of RAM, and a 2.8 GHz Intel Pentium 4 processor
Answer: C
Which Anti-malware technology should an administrator utilize to expose the malicious nature of a file created with a custom packet?
A . Sandbox
B. SONAR
C. Reputation
D. Emulator
Answer: A
What is the frequency of feature updates with SES and the Integrated Cyber Defense Manager (ICDm)
A . Monthly
B. Weekly
C. Quarterly
D. Bi-monthly
Answer: B
Which SES security control protects against threats that may occur in the Impact phase?
A . Device Control
B. IPS
C. Antimalware
D. Firewall
Answer: D
An administrator must create a custom role in ICDm.
Which area of the management console is able to have access restricted or granted?
A . Policy Management
B. Hybrid device management
C. Agent deployment
D. Custom Dashboard Creation
Answer: C
Which technique randomizes the e memory address map with Memory Exploit Mitigation?
A . SEHOP
B. ROPHEAP
C. ASLR
D. ForceDEP
Answer: C
Which Endpoint > Setting should an administrator utilize to locate unmanaged endpoints on a network subnet?
A . Discover Endpoints
B. Endpoint Enrollment
C. Discover and Deploy
D. Device Discovery
Answer: A
After editing and saving a policy, an administrator is prompted with the option to apply the edited policy to any assigned device groups.
What happens to the new version of the policy if the administrator declines the option to apply it?
A . The policy display is returned to edit mode
B. The new version of the policy is deleted
C. An unassigned version of the policy is created
D. The new version of the policy is added to the "in progress" list
Answer: A
What must an administrator check prior to enrolling an on-prem SEPM infrastructure into the cloud?
A . Clients are running SEP 14.2 or later
B. Clients are running SEP 14.1.0 or later
C. Clients are running SEP 12-6 or later
D. Clients are running SEP 14.0.1 or late
Answer: D