Produtos e Serviços Programa para Parceiros Vendas Marketing Educação Incentivos

Download as docx, pdf, or txt
Download as docx, pdf, or txt
You are on page 1of 16

PROVA 002.11.

Procurar...
Guilherme Menezes


 Produtos e Serviços
 Programa para Parceiros
 Vendas
 Marketing
 Educação
 Incentivos
 Contatos

002.11.1 - Exam: Kaspersky Endpoint Security and Management [e]>Deployment


Tempo restante:01:09:50
Andamento
0 / 50
0%
1. What does the Administration Server store in the KLSHARE shared folder?

Database of events

Installation packages

Tasks and policies for managed computers

Updates for managed products

Standalone installation packages


2. You want to publish installation packages in Active Directory via the Kaspersky
Security Center 11 Administration Server. Which installation packages can be
published this way?

Any packages available in the "Installation packages" repository

Packages of Kaspersky Lab products only

Only Kaspersky Network Agent packages

None
3. The administrator has selected to "Assign Network Agent installation in
the Active Directory group policies" in a remote installation task. How will the
Network Agent installation files get on the computers?
The Administration Server will copy the files to the computers’ temporary folders
over the network beforehand

Computers will download them from the shared folder on the domain controller

Computers will download them from the shared folder on the Administration Server

Computers will receive them from the domain controller together with the Active
Directory group policy
4. Which of the following database servers does Kaspersky Security Center 11
support?

Microsoft SQL Server 2005

Microsoft SQL Server 2008 R2

Microsoft SQL Server 2012

Microsoft SQL Server 2014

Microsoft SQL Server 2016

Microsoft SQL Server 2017


5. Which group tasks and policies does the Quick Start wizard create on the
Administration Server when started from the MMC console?

A policy for Kaspersky Security Center Network Agent

A policy for Kaspersky Endpoint Security for Windows

An out-of-office policy for Kaspersky Endpoint Security for Windows

An Update task for Kaspersky Endpoint Security for Windows

A Rollback task for Kaspersky Endpoint Security for Windows

A ‘Find vulnerabilities and required updates’ task for Network Agent

A Virus Scan task for Kaspersky Endpoint Security for Windows


6. Which group tasks and policies does the Quick Start wizard create on the
Administration Server when started from the Web console?

A policy for Kaspersky Security Center Network Agent

A policy for Kaspersky Endpoint Security for Windows

An out-of-office policy for Kaspersky Endpoint Security for Windows


An Update task for Kaspersky Endpoint Security for Windows

A Rollback task for Kaspersky Endpoint Security for Windows

A ‘Find vulnerabilities and required updates’ task for Network Agent

A Virus Scan task for Kaspersky Endpoint Security for Windows


7. The administrator has installed Network Agent and Kaspersky Endpoint
Security on a workstation, but has not moved it to the Managed devices group.
What will happen in that case?

Events will NOT be delivered from the workstation to Kaspersky Security Center,
policies and tasks will NOT be enforced either

Events will NOT be delivered from the workstation to Kaspersky Security Center,
but policies and tasks will be enforced on it

Events will be delivered from the workstation to Kaspersky Security Center, but
policies and tasks will NOT be enforced on it
8. How can you achieve this?
A third-party antivirus application has been incorrectly uninstalled on a few computers.
An installation task of Kaspersky Endpoint Security for Windows (11.1.0) finds its
registry keys and returns an error. You want to make the task ignore incompatible
applications.

Clear the check box "Uninstall incompatible applications automatically" in the


properties of the remote installation task

Clear the check box "Uninstall incompatible applications automatically" in the


properties of the installation package of Kaspersky Endpoint Security

Clear the check box "Uninstall incompatible applications automatically" in the


properties of the installation package of Kaspersky Network Agent

You cannot achieve this using the Kaspersky Security Center Administration
Console
9. Where are installation logs of Kaspersky Endpoint Security and Network Agent
stored after a remote installation?

In the system %Temp% folder

In the user’s %Temp% folder

In %ProgramData%\Kaspersky Lab

In the root of the system drive


10. Select the recommended deployment plan:
To deploy protection in a network, you need to:

1. Install Network Agents


2. Install Kaspersky Endpoint Security
3. Install the Administration Server.

3, 2, 1

3, 1, 2

2, 3, 1

1, 2, 3
11. How many remote installation tasks (minimum) do you need to create to install
Kaspersky Endpoint Security 11.1 on all machines?
A network consists of:

 27 computers running Microsoft Windows Server 2012 R2


 5 computers running Microsoft Windows Server 2008
 130 computers running Microsoft Windows 7 Professional
 70 computers running Microsoft Windows 10.

232
12. If the administrator mistyped the Administration Server address in the
installation wizard, where can this address be modified in the Administration
Console?

In the "Administration Server" properties

In properties of the node "Advanced | Remote installation | Installation packages" in


the MMC console

In the properties of the installation package of Kaspersky Endpoint Security

In the properties of the Network Agent installation package


13. Select the correct statements about tasks in Kaspersky Security Center:

To make task settings enforced on the computers, the respective locks must be
closed
By default, subgroups’ tasks inherit settings of the parent group’s tasks (as far as
tasks of the same type are concerned)

The administrator can exclude a subgroup from a task’s scope

The administrator can create a task for a set of computers belonging to different
groups

There may not be more than one task for the same application in a group

There are active and inactive tasks


14. Which of the following task types pertain to Kaspersky Endpoint Security for
Windows (11.1.0)?

Find vulnerabilities and required updates

Uninstall application remotely

Integrity check

Change application components

Install application remotely


15. How does the remote installation task of Kaspersky Endpoint Security for
Windows (11.1.0) behave by default if a third-party protection application is
detected on a computer?

Prompts the user whether to uninstall the third-party protection application

Installs Kaspersky Endpoint Security, but completes with a warning that the third-
party protection application must be uninstalled

Uninstalls the third-party protection application automatically and proceeds with the
installation

Returns an error and prompts the administrator to uninstall the application manually
16. The administrator starts the Administration Server Quick Start Wizard from
the Web console. In which of the following cases will the wizard create a Send
Reports task?

If the option More than 5000 networked devices has been selected in the installation
wizard

If email notification parameters have been specified in the Quick Start Wizard

If the Installation Wizard finds a correctly configured local mail client

The Quick Start wizard does not create the Send reports task
17. How to do it with only the Administration Server address on hand?
The administrator created a standalone package on the Administration Server last week.
Now, the administrator is at an office computer and wants to copy the standalone
package for local installation.

Open https://<Administration Server address>:8061/pkginst/ in a browser and


download the necessary package

Open http://<Administration Server address>:8060/pkginst/ in a browser and


download the necessary package

Open https://<Administration Server address>/pkginst/ in a browser and download


the necessary package

Open the folder \\<Administration Server address>\KLSHARE\PkgInst from the


computer and copy the necessary package
18. Which of the following are Kaspersky Security Center tasks?

Change Administration Server

Synchronize Active Directory structure

Perform Windows Update synchronization

Change Administration group


19. Which of the following virtual platforms does Kaspersky Endpoint Security for
Windows (11.1.0) support?

VMWare Workstation

Oracle VM VirtualBox

KVM

Citrix Provisioning Services

Microsoft Hyper-V

VMware ESXi

Citrix XenDesktop
20. Consider Kaspersky Security Center 11. There is a "Virus scan" task in the
"Managed devices" group, and there is a subgroup named "Servers" for which
you want to change the schedule of anti-virus scanning. How can you achieve this?

A task configured in a parental group always runs in a subgroup


Create another "Virus scan" task with the necessary settings in the "Servers"
subgroup and disable inheritance in its properties

Create another "Virus scan" task with the same name and the necessary settings in
the "Servers" subgroup; it will run instead of the parent group task

Exclude the "Servers" subgroup from the scan scope of the "Virus scan" task
configured in the "Managed devices" group, and create another "Virus scan" task with
the necessary settings in the "Servers" subgroup
21. Which of the following database servers can Kaspersky Security Center 11
NOT work with?

IBM DB2

Microsoft SQL

MySQL

Oracle Database

PostgreSQL
22. How will Kaspersky Endpoint Security be installed?
The administrator has selected to "Assign Network Agent installation in the Active
Directory group policies" in the remote installation task that installs Kaspersky
Endpoint Security together with Network Agent. 

If the administrator selects the option "Assign Network Agent installation in


the Active Directory group policies", the task will install only the Network Agent

The task will install Kaspersky Endpoint Security using Network Agent tools after
the Agent connects to the Server

The task will install Kaspersky Endpoint Security using Windows tools, without
waiting for the Network Agent to install

The same way as Network Agent, the task will assign installing the MSI package of
Kaspersky Endpoint Security in the Active Directory policy
23. Which of the following capabilities are implemented as group tasks in
Kaspersky Endpoint Security for Windows (11.1.0)?

Virus Scan

Update

Network Threat Protection

Change Application Components


CancelarRedefinirPróximoEnviar

Política de Privacidade Notícias
 
Suporte Técnico Contatos
© 2020 AO Kaspersky. All Rights Reserved
   

Procurar...
Guilherme Menezes


 Produtos e Serviços
 Programa para Parceiros
 Vendas
 Marketing
 Educação
 Incentivos
 Contatos

002.11.1 - Exam: Kaspersky Endpoint Security and Management [e]>Protection


management
Tempo restante:01:09:17
Andamento
0 / 50
0%
24. Which parameters do you need to disable in the policy to stop Kaspersky
Endpoint Security from sending extended statistical information and files or their
parts to the KSN cloud?

Use of KSN Proxy

Cloud mode

Extended KSN mode

Kaspersky Security Network


25. What does the Firewall do with a packet that meets conditions of several rules,
including an allow rule for packets and a block rule for applications? The block
rule for applications is higher on the list than the allow rule for packets.

Applies the rule that is lower in the list


Applies the rule that is higher in the list

Blocks the packet

Allows the packet


26. In which of the following cases will Kaspersky Endpoint Security 11.1 for
Windows consider a file to be non-infected?

Signature or heuristic analysis returned the "Clean" verdict, while the KSN database
considers the file to be infected

Signature or heuristic analysis returned the "Infected" verdict, while the KSN
database considers the file to be clean
27. Under which conditions does Kaspersky Endpoint Security switch to the out-
of-office mode with the default settings?

None. The conditions are not specified by default

After an unsuccessful synchronization with the Administration Server

After three successive failed synchronizations with the Administration Server or


after all networks have been disconnected
28. Where can you specify the conditions under which Kaspersky Endpoint
Security 11.1 is to switch to the out-of-office policy?

In the Administration Server policy

In the Network Agent policy

In the group properties

In the policy of Kaspersky Endpoint Security

The conditions are hard-coded and you cannot modify them


29. In which of the following web browsers can’t Web Threat Protection of
Kaspersky Endpoint Security 11.1 for Windows block dangerous objects?

Internet Explorer

Mozilla Firefox

Google Chrome

Microsoft Edge

None of the above (meaning, it can block dangerous objects in all of them)
30. The administrator wants to prohibit notebooks from connecting to Wi-Fi while
using a wired connection. Which component of Kaspersky Endpoint Security can
help to achieve this?

Firewall

Host Intrusion Prevention

Anti-Bridging
31. What CANNOT be hidden from the user?
The network is protected with Kaspersky Endpoint Security 11.1 and managed with
Kaspersky Security Center 11. The administrator has cleared the check box "Display
program interface" in the policy of Kaspersky Endpoint Security 11.1 for Windows.

Kaspersky Endpoint Security shortcut in the "Start" menu

Kaspersky Endpoint Security in the list of installed programs

Started services of Kaspersky Endpoint Security

Started processes of Kaspersky Endpoint Security

Kaspersky Endpoint Security icon in the notification area


32. Which component of Kaspersky Endpoint Security 11.1 for Windows except
"Web Threat Protection" takes part in protection against phishing?

File Threat Protection

Mail Threat Protection

Web Control

None of the above


33. Which of the following does Kaspersky Security Network do?

Protects the files provided by software manufacturers against false positives

Provides detailed description of threats for events and reports of Kaspersky Security
Center

Communicates file reputation (trust level) to the Firewall and Host Intrusion
Prevention

Informs protection components of Kaspersky Endpoint Security whether a file is


malicious
34. The user tries to connect to a website over https. Kaspersky Endpoint Security
installed on the computer is under the policy created by the Quick Start Wizard.
An error occurs when scanning encrypted traffic. What will happen in that case?
The website will be automatically added to the local list of exclusions (domains
with secure connection scan errors). Encrypted traffic will not be scanned for this
website. The user will successfully connect to the website

The https connection to the website will fail and return an error

Kaspersky Endpoint Security will block the https connection to the website. The
user will see the corresponding pop-up notification by Kaspersky Endpoint Security
35. How does Host Intrusion Prevention react by default to the programs that start
before Kaspersky Endpoint Security 11.1?

It automatically moves them to the Low Restricted group

It automatically moves them to the High Restricted group

It does not react


36. Under which conditions does Kaspersky Endpoint Security switch to the out-
of-office mode with the enabled option "Switch to out-of-office policy when
Administration Server is not available"?

After an unsuccessful synchronization, if the client computer fails to resolve the


Administration Server name

After three successive failed synchronizations with the Administration Server or


after all networks have been disconnected

After an unsuccessful synchronization with the Administration Server

After an unsuccessful synchronization, if the client computer does not receive an


answer to the command "ping <Administration Server address>"
37. The administrator is trying to find an optimal schedule for a virus scan task,
but at any moment of time either a large number of computers are off, or the users
ask to disable scanning because it slows down the computer. What would you
advise?

Select the check box "Allow management of group tasks" in the Kaspersky
Endpoint Security policy to enable users start virus scanning manually

Enable the mode "Scan when the computer is idling" in the task

Enable the mode "Concede resources to other applications" in the Kaspersky


Endpoint Security policy

Not to use Virus Scan tasks


CancelarRedefinirAnteriorPróximoEnviar
Política de Privacidade Notícias
 
Suporte Técnico Contatos
© 2020 AO Kaspersky. All Rights Reserved
   

Procurar...
Guilherme Menezes


 Produtos e Serviços
 Programa para Parceiros
 Vendas
 Marketing
 Educação
 Incentivos
 Contatos

002.11.1 - Exam: Kaspersky Endpoint Security and Management [e]>Security Controls


Tempo restante:01:09:00
Andamento
0 / 50
0%
38. Which of the following components of Kaspersky Endpoint Security 11.1 for
Windows can block executable file start?

Adaptive Anomaly Control

Host Intrusion Prevention

Application Control

Behavior Detection

Device Control
39. The administrator of the АВС company needs to prohibit starting several
programs in the network. What is the best way to achieve this?

In Application Control, select the "White list" mode and create allow rules for the
applications whose start is to be prohibited

In Application Control, select the "Black list" mode and create block rules for the
applications whose start is to be prohibited
In Application Control, select the "Black list" mode and create allow rules for the
applications whose start is to be prohibited

In Application Control, select the "White list" mode and create block rules for the
applications whose start is to be prohibited
40. However, access to facebook.com has been blocked for everyone. Why?
In the Web Control of the Kaspersky Endpoint Security 11.1 policy, you created a rule
that prohibits all users from opening facebook.com and a rule that allows the HR
department to access facebook.com.

The default allow rule is disabled

Web Control exclusions are to be specified in the "Trusted zone"

A blocking rule always has priority over allowing rules

The blocking rule is higher than the allowing rule on the list
41. Consider Kaspersky Security Center 11. Which features or components
provide the data that populate the "Executable files" node in the Administration
Console?

Vulnerability Scan task of Kaspersky Endpoint Security

Inventory task of Kaspersky Endpoint Security

Host Intrusion Prevention of Kaspersky Endpoint Security

Kaspersky Security Center Network Agent

Application Control of Kaspersky Endpoint Security


42. Select the best way to test the new rules prior to deploying them (without
disabling those currently implemented).
Consider Kaspersky Security Center 11 and Kaspersky Endpoint Security 11.1 for
Windows. You are using Application Control in the "Black list" mode and have decided
to add a few more rules; however, you are afraid that the new rules may block useful
applications.

In the Application Control window, check every new rule by pressing the "Static
analysis" button

Apply the policy to a small number of computers first

Select the "Test" status for the new rules

Select the "Notify" action in the settings of Application Control


43. Which of the control components permit specifying different limitations for
different users within Kaspersky Endpoint Security 11.1 for Windows?
Adaptive Anomaly Control

Web Control

Device Control

Host Intrusion Prevention

Application Control
44. Which component of Kaspersky Endpoint Security 11.1 for Windows divides
applications into 4 groups: "Trusted", "Low Restricted", "High Restricted", and
"Untrusted"?

Exploit Prevention

Behavior Detection

Host Intrusion Prevention

Application Control
CancelarRedefinirAnteriorPróximoEnviar

Política de Privacidade Notícias
 
Suporte Técnico Contatos
© 2020 AO Kaspersky. All Rights Reserved
   

Procurar...
Guilherme Menezes


 Produtos e Serviços
 Programa para Parceiros
 Vendas
 Marketing
 Educação
 Incentivos
 Contatos

002.11.1 - Exam: Kaspersky Endpoint Security and Management [e]>Maintenance


Tempo restante:01:08:47
Andamento
0 / 50
0%
45. Select all possible solutions
There are computers with Kaspersky Endpoint Security 10 for Windows and computers
with Kaspersky Endpoint Security 11.1 for Windows in the network. The administrator
wants to receive separate "Threats reports" for them.

Place the computers with different Kaspersky Endpoint Security versions into
different groups and create a new "Threats report" template for each group

Create two computer selections for different Kaspersky Endpoint Security versions
and create a new "Threats report" template for each selection

Create two new "Threats report" templates and make the data filtered by the
"Application" field in the template properties

None of the above


46. With which utility can you check connection between the Network Agent and
the Administration Server and synchronize their settings?

GetSystemInfo.exe

klnagchck.exe

klmover.exe
47. What is the purpose of the klmover.exe utility?

It helps to modify the parameters that Network Agent uses to connect to the
Administration Server

It synchronizes the Network Agent’s settings with the Administration Server

It helps to check the Agent—Server connection


48. How can you achieve this?
Many computers have the "Critical" status with the "Not scanned for a long time"
description in Kaspersky Security Center 11 Administration Console. The administrator
thinks that it is not a problem and does not want this condition to influence computer
statuses. 

Modify the status change conditions in the administration groups’ properties

Modify the status change conditions in the Administration Server properties

It is not possible

Modify the status change conditions in the policy of Kaspersky Endpoint Security
for Windows
49. What is the default password in the "Backup of Administration Server data"
task created by the Quick Start wizard of Kaspersky Security Center 11?

kasperskylab

KasperskyLab

KL

There is no default password


50. Can the start of group update tasks be randomized in Kaspersky Security
Center 11 to avoid simultaneous connections of all client computers to the
Administration Server?

Yes

Yes, but only if the "From 1000 to 5000 computers" or "More than 5000
computers" option was selected during the installation of the Administration Server

Yes, but only if the computers are organized into several subgroups with update
tasks having different schedules

No
CancelarRedefinirAnteriorEnviar

Política de Privacidade Notícias
 
Suporte Técnico Contatos
© 2020 AO Kaspersky. All Rights Reserved
   

You might also like