Certified Professional: Kaspersky Endpoint Security and Management

(002.11.6)
Total Questions
21 / 50
Evaluation Score
42%
Passing Score
70%
1.Which of the listed below is a known limitation of the Web Control component
in Kaspersky Endpoint Security 11.6 for Windows?
It can’t block content by data type over an https connection
None of the above
Can’t block any website, accessed over an https connection
It works only with the mainstream web browsers, such as Internet Explorer, Mozilla Firefox, Google
Chrome
2.Where can you specify the conditions under which Kaspersky Endpoint
Security 11.6 switches to the out-of-office policy?
In the policy of Kaspersky Endpoint Security
In the Network Agent policy
In the group properties
The conditions are hard-coded and you cannot modify them
In the Administration Server policy
3.If the default settings are used in the package of Kaspersky Endpoint Security
11.6 for Windows, which of the following components will NOT be installed under
Windows Server 2016?
File Threat Protection
Device Control
Adaptive Anomaly Control
Mail Threat Protection
Network Threat Protection
AMSI Protection Provider
Application Control
4.Where does the MMC console show when the Administration Server last polled
the network to discover computers?
In the properties of the Unassigned devices node
In the properties of the Administration Server node (Advanced | Administration Server operation
statistics)
In the properties of the Advanced | Network poll node
In the Administration Server events
5.Select the most correct description for the Host Intrusion Prevention
component:
It monitors file operations and scans files being accessed
It logs actions taken by applications and blocks applications that demonstrate dangerous activity
patterns
It analyzes individual operations performed by applications and prohibits little-known applications
from taking potentially dangerous actions
It intercepts software start attempts and blocks applications according to the rules configured by the
administrator
6.Which operating systems does Kaspersky Endpoint Security 11.6 for Windows
support?
Microsoft Windows 10 Home
All of the above
Microsoft Windows 10 Pro
Microsoft Windows 10 Education
Microsoft Windows 10 Enterprise
7.When configuring a stand-alone installation package of Kaspersky Endpoint
Security 11.6 for Windows for computers that do not have access to the network,
how would you include custom protection settings into the package?
Export the policy of Kaspersky Endpoint Security 11.6 for Windows with the necessary settings to a
file and copy this file into the folder that contains the stand-alone installation package files
Export the policy of Kaspersky Endpoint Security 11.6 for Windows with the configured settings and
specify this file as the configuration file in the properties of the regular installation package prior to
creating a stand-alone package
Export settings from the local Kaspersky Endpoint Security interface and specify this file as the
configuration file in the properties of the regular installation package prior to creating a stand-alone
package
Export settings from the local Kaspersky Endpoint Security interface and copy this file into the folder
where the stand-alone package is located
8.From the offered options select the correct one to complete the procedure: In
the Web Console, open Discovery & Deployment | Deployment & Assignment |
Installation packages, ... How would you create a stand-alone installation package
in Kaspersky Security Center?
Click the button Create stand-alone installation package and select the program from among those
available on the Kaspersky websit
Click the button Create installation package and specify the path to the folder that contains program
installation files, including the description file with the .kpd extension
Click the button Create installation package and specify the path to the folder that contains program
installation files, including the description file with the .kud extension
Select a regular installation package and click the button Deploy; select the installation method
Using a stand-alone package
9.The administrator of Kaspersky Security Center 13 connects the ММС console
to the locally installed Administration Server, creates an automatically filled
application category, and specifies the С:\Program Files\Microsoft\ folder as a
parameter. Which executable files will get into this category?
The files whose MD5 checksum coincides with the checksum of a file located in C:\Program Files\
Microsoft\ on the Administration Server
The files whose metadata coincides with the metadata of a file located in С:\Program Files\Microsoft\
on the Administration Server
The files whose SHA-256 checksum coincides with the checksum of a file located in С:\Program
Files\Microsoft\ on the Administration Server
The files that have the same certificate as a file located in С:\Program Files\Microsoft\ on the
Administration Server
10.Under which conditions does Kaspersky Endpoint Security switch to the out-
of-office mode with the default settings?
None. Conditions are not specified by default
After three unsuccessful synchronizations with the Administration Server or after all networks have
been disconnected
After an unsuccessful synchronization with the Administration Server
11.Which compound objects does File Threat Protection scan under the default
settings?
Archives
Office files
Installation packages
None
12.An NFR license has expired after a proof of concept implemented to
demonstrate the capabilities of Kaspersky Endpoint Security for Windows. Which
functions of Kaspersky Endpoint Security will remain operational?
File Threat Protection and Virus Scan
None of the above
All Kaspersky Endpoint Security features will stay operational, except for updates
Only File Threat Protection and Firewall will keep working
13.Consider Kaspersky Security Center 13. There is an Automatic installation task
that installs the Network Agent in the Managed devices group. However, you want
to exclude one of subgroups from automatic installation. Is this possible?
No, because Automatic installation tasks don’t have exclusion settings
Yes, you can set this up in the Exclusions from task scope section in the task settings
Yes, you can set this up in the Automatic installation section in the group properties
This is not possible for the automatic installation task of the Kaspersky Network Agent
14.Which port do you need to specify in the browser address bar to connect to
Kaspersky Security Center Web Console?
443
8080
8061
8443
15.Which of the following can you specify as the Administration Server
connection address for Kaspersky Network Agents in Kaspersky Security Center
13? 
MAC address
IPv4 address
NetBIOS name
DNS name
IPv6 address
Email address
16.Which of the following database servers can you NOT use for Kaspersky
Security Center?
IBM DB2
Microsoft SQL
Oracle Database
MariaDB
MySQL
PostgreSQL
17.When does Network Agent connect to the Administration Server?
When a packet arrives to the Agent’s UDP port from the Server
Periodically (by default, once every 15 min)
When the user logs on to the system
When there is an event to be sent to the Server
18.Which of the following components of Kaspersky Endpoint Security for
Windows can block executable file start? 
Behavior Detection
Application Control
Device Control
Adaptive Anomaly Control
Host Intrusion Prevention
19.The administrator wants to prohibit laptops from connecting to Wi-Fi while
using a wired connection. Which component of Kaspersky Endpoint Security can
help to achieve this?
Anti-Bridging
Host Intrusion Prevention
Firewall
20.If the administrator mistyped the Administration Server address in the
installation wizard, where can this address be modified in the Administration
Console?
In the properties of the Network Agent installation package
In the properties of the Administration Server node
In the properties of the installation package of Kaspersky Endpoint Security
21.The administrator has deleted a computer account from Active Directory.
When will its record disappear from the Discovery & Deployment | Discovery |
Active Directory page in the Administration Console if discovery is performed
with the default settings?
After the next Active Directory poll
In 7 days
After the next full Windows network poll
In 60 days
22.What does File Threat Protection of Kaspersky Endpoint Security for Windows
do?
Scans files on drives on access
Scans files on drives on demand
Scans all files, regardless of the source and interception method
Controls access to the registry
23.The administrator wants to exclude operations performed by a particular user
from the scan scope of protection components of Kaspersky Endpoint Security
for Windows. Which of the following components support this kind of exclusion?
File Threat Protection
None of the above
Behavior Detection
Web Threat Protection
24.Can the start of group update tasks be randomized in Kaspersky Security
Center 13 to avoid simultaneous connections of all client computers to the
Administration Server?
Yes
Yes, but only if the From 1000 to 5000 computers or More than 5000 computers option was selected
during the installation of the Administration Server
Yes, but only if the computers are organized into several subgroups with update tasks having
different schedules
No
25.Under which conditions does Kaspersky Endpoint Security switch to the out-
of-office mode if Network Agent is configured to Enable out-of-office mode when
Administration Server is not available?
After an unsuccessful synchronization with the Administration Server
After three unsuccessful synchronizations with the Administration Server or after all networks have
been disconnected
After an unsuccessful synchronization, if the client computer cannot resolve the Administration
Server name
After an unsuccessful synchronization, if the client computer does not receive an answer to the
command ping
26.Which function does the Firewall perform in Kaspersky Endpoint Security for
Windows?
Blocks network packets according to the specified rules
Analyzes network activity to detect network attacks
Analyzes files downloaded over the network to detect infected objects
Analyzes email messages and blocks phishing links
27.About which events does Kaspersky Security Center notify the administrator
under the default settings?
About all
About critical events of the Administration Server
About critical events of the Kaspersky Endpoint Security
About none
28.Select the correct statements about tasks in Kaspersky Security Center: 
There are active and inactive tasks
Subgroups’ tasks by default inherit settings of the parent group’s tasks (as far as tasks of the same
type are concerned)
There may not be more than one task for the same application in a group
The administrator can create a task for a set of computers belonging to different groups
The administrator can exclude a subgroup from a task’s scope
To make task settings enforced on the computers, the respective locks must be closed
29.Consider Kaspersky Endpoint Security 11.6 for Windows. When the Behavior
Detection component recognizes dangerous activities, which of the following
actions can it take? 
Disinfect
Terminate the program
Delete the file
Quarantine the file
30.How does the remote installation task of Kaspersky Endpoint Security 11.6 for
Windows behave by default if a third-party protection application is installed on a
computer?
Returns an error and prompts the administrator to uninstall the application manually
Uninstalls the third-party protection application automatically and proceeds with the installation
Installs Kaspersky Endpoint Security, but completes with a warning that the third-party protection
application must be uninstalled
Prompts the user whether to uninstall the third-party protection application
31.Select the correct statements about Web Threat Protection of Kaspersky
Endpoint Security: 
It scans data in outbound connections
It scans data in inbound connections established from outside
It scans HTTP and FTP protocols
It scans data in secure connections (SSL/TLS)
32.The administrator created a stand-alone package on the Administration Server
last week. Now the administrator is at an office computer and wants to copy the
stand-alone package for local installation. How to do it with only the
Administration Server address on hand?
Open the folder \\\KLSHARE\PkgInst from the computer and copy the necessary package
Open https:///pkginst/ in a browser and download the necessary package
Open http://:8060/pkginst/ in a browser and download the necessary package
Open https://:8061/pkginst/ in a browser and download the necessary package
33.On which operating systems can Kaspersky Security Center 13 Administration
Server be installed? 
Windows Server 2008
Windows Server 2008 R2
Windows Server 2012 R2
Windows Server 2016
Windows Server 2019
Windows 10
34.Consider Kaspersky Endpoint Security 11.6 and Kaspersky Security Center 13.
How can you tell which KL category a particular executable file belongs to? 
Consult the Executable files repository in the ММС Administration Console
Consult the Application categories node in the ММС Administration Console
Consult the Application Activity Monitor in the local interface of Kaspersky Endpoint Security 11.6
None of the above
35.On a computer where Administration Server is installed, the hard drive has
failed and the data has been lost. Fortunately, the administrator has a backup
copy of the Administration Server configuration and data, which was created by
standard tools of Kaspersky Security Center 13. How can the administrator start
the recovery procedure?
Use the recovery mode in the installation wizard of the Administration Server
Use the recovery mode in the Quick Start wizard of the Administration Server
Run the “Restore from backup” task in the Administration Console
Use a special utility for backup and restore
36.Which operating systems does Kaspersky Endpoint Security 11.6 for Windows
support? 
Microsoft Windows Server 2003
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016
Microsoft Windows Server 2003 R2
Microsoft Windows Server 2008
37.There is group A with a policy of Kaspersky Endpoint Security 11.6 for
Windows Group A has subgroup B, which also contains a policy of Kaspersky
Endpoint Security 11.6 for Windows. The administrator has noticed that some of
the settings cannot be changed in the policy of subgroup B. What can the
administrator do to enable editing for all settings of the subgroup B policy?
Select all applicable options. 
Clear the Inherit settings from upper-level policy checkbox in the group B policy
Clear the Force inheritance of settings in child policies checkbox in the group A policy
Make the group A policy inactive
In the policy of group A, exclude subgroup B from the policy scope
38.Which operating systems does Kaspersky Endpoint Security 11.6 for Windows
support?
Microsoft Small Business Server 2011
Microsoft Windows Server 2012 R2 Server Core Mode
Microsoft Windows Embedded Enterprise
Microsoft Windows Server 2012 Foundation
39.Where can you approve installation of a Maintenance Release of Kaspersky
Endpoint Security in the Kaspersky Security Center Web Console?
Operations | Patch Management | Software Updates
Operations | Kaspersky Applications | Seamless Updates
Operations | Repositories | Installation packages
In the properties of the Kaspersky Endpoint Security update task
40.How will Web Threat Protection scan https traffic under the default settings if a
web site uses an EV certificate?
The certificate will NOT be replaced and https traffic will NOT be scanned
The certificate will be replaced and https traffic will be scanned
During the first connection, the certificate will be replaced and https traffic will be scanned. During
subsequent connections, the certificate will NOT be replaced and https traffic will NOT be scanned
41.Which connections are High Restricted applications prohibited from
establishing in Trusted networks under the default settings?
None
DNS requests and connections over mail protocols
DNS, email, remote desktop connections, and ICMP protocol
All
42.Where does Kaspersky Security Center store endpoint events that the
administrator can see in the reports?
In text events logs of Kaspersky Security Center
In the Windows event log
In the Kaspersky Security Center database
In Kaspersky Security Network
43.Which of the following database servers does Kaspersky Security Center 13
support? 
Amazon RDS
Amazon Aurora
MariaDB
Microsoft SQL
Microsoft Azure SQL database
MySQL
Oracle Database
PostgreSQL
44.Which of the following operating systems does Kaspersky Security Center 13
NOT support?
Microsoft Windows XP Pro SP2
Microsoft Windows Vista
Microsoft Windows 7 Ultimate SP1
Microsoft Windows 8 Pro
Microsoft Windows 10 Enterprise
45.How to create a new installation package for Kaspersky Endpoint Security in
the Kaspersky Security Center Web Console?
Open the folder with installation packages and make a copy of the directory that contains a
Kaspersky Endpoint Security package
Start the package creation wizard and specify the folder that contains Kaspersky Endpoint Security
installation files, which must include the description file with the *.kud extension
Start the package creation wizard and select a Kaspersky Endpoint Security distribution from the list
of current application versions
Open the list of current application versions in Kaspersky Security Center Administration Console,
select the necessary version of Kaspersky Endpoint Security, and click the button Download and
create installation package
46.A commercial license has expired in an organization, and the money for
purchasing a new license will be allocated only in a month. Which functions of
Kaspersky Endpoint Security 11.6 for Windows will NOT work until the new
license is in place?
Virus Scan tasks
Real-time protection components
Updates
Management via Kaspersky Security Center
47.What does the Firewall do with a packet that meets conditions of several rules,
including allow and block?
Allows the packet
Blocks the packet
Applies the rule that is higher in the list
Applies the rule that is lower in the list
48.You need to prohibit starting executable files from removable drives while
allowing the Read and Write operations. Which component of Kaspersky
Endpoint Security for Windows is the right tool for the job?
Application Control
Host Intrusion Prevention
Device Control
Kaspersky Endpoint Security 11.6 for Windows has no tool to solve this task
Adaptive Anomaly Control
49.Which action is specified for Adaptive Anomaly Control rules by default in the
Kaspersky Endpoint Security policy?
Allow
Block
Notify
Smart
50.After completing the Quick Start wizard of the Kaspersky Security Center 13
Administration Server, the administrator opens the policy of Kaspersky Endpoint
Security 11.6 for Windows to configure Application Control rules. It turns out that
to set up the rules, you need to select application categories from the list, which
is empty. What should the administrator do to be able to create Application
Control rules?
Create application categories in the Application Control settings
Create application categories on the Operations | Third-Party Applications | Application categories
page on the Administration Server
Just wait for the databases to be updated on the Administration Server
Create and run the Inventory task on at least one computer