Once an administrator has successfully instated a Content Update, how is the Content Update applied to endpoint?

Once an administrator has successfully instated a Content Update, how is the Content Update applied to endpoint?A . After Installation on the ESM, an Agent License renewal is required in order to trigger relevant updates.B . After installation on the ESM, relevant updates occur at the next Heartbeat communication from each endpoint.C . Installation...

Which policy can be created to assure that Internet Explorer can only run from the Program Files Internet Explorer directory?

An administrator is concerned about rogue installs of Internet Explorer. Which policy can be created to assure that Internet Explorer can only run from the Program Files Internet Explorer directory?A . An execution path policy to blacklist iexplore.exe, and whitelist entry for %programfiles%iexplore.exeB . An execution path policy to blacklist *iexplore.exe. Trusted signers will...

Which behavior will result?

A customer plans to test the malware prevention capabilities of Traps. It has defined this policy. – Local analysis is enabled – Quarantining of malicious files is enabled – Files are to be uploaded to WildFire No executables have been whitelisted or blacklisted in the ESM Console Hash Control screen. Malware sample A has...

How can an administrator permit powershell.exe to execute ipconfig.exe without altering the rest of the blacklist?

Assume a Child Process Protection rule exists for powershell.exe in Traps v 4.0. Among the items on the blacklist is ipconfig.exe. How can an administrator permit powershell.exe to execute ipconfig.exe without altering the rest of the blacklist?A . add ipconfig.exe to the Global Child Processes Whitelist, under Restriction settings.B . Uninstall and reinstall the...