Halloween Special Sale - 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: best70

dumpscollection live chat
Page: 1 / 4
Total 40 questions
Exam Code: 250-428                Update: Oct 31, 2025
Exam Name: Administration of Symantec Endpoint Protection 14
Get Full Access Now

Symantec Administration of Symantec Endpoint Protection 14 250-428 Exam Dumps: Updated Questions & Answers (October 2025)

Question # 1

An organization deployed a client install package with incorrect group settings to a set of endpoints.

How can the organization ensure the client is NOT automatically added to the incorrect group upon check-in?

A.

Run the Move Clients utility.

B.

Enable Block New Clients in the Group properties.

C.

Add a new subgroup under the incorrect group.

D.

Create a Location that will move the clients automatically to the correct group.

Question # 2

A Symantec Endpoint Protection (SEP) administrator receives multiple reports that machines are experiencing performance issues. The administrator discovers that the reports happen about the same time as the scheduled LiveUpdate.

Which setting should the SEP administrator configure to minimize I/O when LiveUpdate occurs?

A.

Disable Allow user-defined scans to run when the scan author is logged off

B.

Change the LiveUpdate schedule

C.

Disable Run an Active Scan when new definitions arrive

D.

Change the Administrator-defined scan schedule

Question # 3

A Symantec Endpoint Protection (SEP) administrator performed a disaster recovery without a database backup.

In which file should the SEP administrator add “scm.agent.groupcreation=true” to enable the automatic creation of client groups?

A.

conf.properties

B.

httpd.conf

C.

settings.conf

D.

catalina.out

Question # 4

A company receives a high number of reports from users that files being downloaded from internal web servers are blocked. The Symantec Endpoint Protection administrator verifies that the Automatically trust any file downloaded from an intranet website option is enabled.

Which configuration can cause Insight to block the files being downloaded from the internal web servers?

A.

Virus and Spyware definitions are out of date.

B.

Local intranet zone is configured incorrectly on the Mac clients browser settings.

C.

Intrusion prevention is disabled.

D.

Local intranet zone is configured incorrectly on the Windows clients browser settings.

Question # 5

A Symantec Endpoint Protection administrator must block traffic from an attacking computer for a specific time period.

Where should the administrator adjust the time to block the attacking computer?

A.

In the group policy, under External Communication settings

B.

In the group policy, under Communication settings

C.

In the firewall policy, under Protection and Stealth

D.

In the firewall policy, under Built in Rules

Question # 6

In addition to performance improvements, which two benefits does Insight provide? (Select two.)

A.

Reputation scoring for documents

B.

Zero-day threat detection

C.

Protection against malicious java scripts

D.

False positive mitigation

E.

Blocking of malicious websites

Question # 7

Which action does the Shared Insight Cache (SIC) server take when the whitelist reaches maximum capacity?

A.

The SIC server allocates additional memory for the whitelist as needed.

B.

The SIC server will start writing the cache to disk.

C.

The SIC server will remove the least recently used items based on the prune size.

D.

The SIC server will remove items with the fewest number of votes.

Question # 8

Which two criteria are used by Symantec Insight to evaluate binary executables? (Select two.)

A.

Age

B.

Prevalence

C.

Sensitivity

D.

Confidentiality

E.

Content

Question # 9

Which action should an administrator take to prevent users from using Windows Security Center?

A.

Set Disable antivirus alert within Windows Security Center to Disable

B.

Set Disable Windows Security Center to Always

C.

Set Disable Windows Security Center to Disable

D.

Set Disable antivirus alert within Windows Security Center to Never

Question # 10

After several failed logon attempts, the Symantec Endpoint Protection Manager (SEPM) has locked the default admin account. An administrator needs to make system changes as soon as possible to address an outbreak, but the admin account is the only account.

Which action should the administrator take to correct the problem with minimal impact to the existing environment?

A.

Wait 15 minutes and attempt to log on again

B.

Restore the SEPM from a backup

C.

Run the Management Server and Configuration Wizard to reconfigure the server

D.

Reinstall the SEPM

Page: 1 / 4
Total 40 questions
Get Full Access Now

Most Popular Certification Exams

ZDTA
PAM-DEF
SAA-C03
L5M1
PEGAPCSSA86V1
PL-600
DP-203
SC-200
DMF-1220
HPE2-K45
CSC-110
Nonprofit-Cloud-Consultant
200-901
MCIA-Level-1
AZ-120
HPE6-A70
Marketing-Cloud-Email-Specialist
MCPA-Level-1

Site Map

Help

Payment

       

Contact us

dumpscollection live chat

Site Secure

mcafee secure

TESTED 31 Oct 2025

Copyright © 2014-2025 DumpsCollection. All Rights Reserved