Weekend Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = simple70

Pass the McAfee Other Certification MA0-102 Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.
Exam MA0-102 Premium Access

View all detail and faqs for the MA0-102 exam

Go to Exam

453 Students Passed

90% Average Score

92% Same Questions
Viewing page 1 out of 3 pages
Viewing questions 1-10 out of questions
Questions # 1:

When creating a User Defined signature, Rule Definitions can be based on which of the following criteria? (Select the three that apply)

Options:

A.

Windows and UNIX Files and Directories

B.

Windows Registry Keys

C.

Windows Registry Hive

D.

Windows Services

E.

Windows and UNIX ports

Questions # 2:

Why is it recommended lo change the agent-to-server and console-to-server communication ports from their default values during installation?

Options:

A.

These ports are commonly subjected to malicious exploitation

B.

The default values are in the common domain

C.

The default ports may already be in use inside of the network

D.

To avoid technical issues with port allocation

Questions # 3:

When applying a patch or service pack to systems on the network, what is the recommended HIPs protection policy that is used for enforcement?

Options:

A.

Adaptive Mode

B.

Warning

C.

Basic Protection

D.

Enhanced Protection

Questions # 4:

Which of the following statements about Adaptive Mode are correct?

Options:

A.

Adaptive Mode triggers IPS events

B.

Adaptive Mode blocks all activity

C.

Adaptive Mode blocks all activity except malicious exploits

D.

Adaptive Mode triggers IPS alerts

Questions # 5:

Which of the following are the accepted methods of creating exceptions? (Select the two that apply)

Options:

A.

Evasion tool

B.

ClientException utility

C.

Manually

D.

Adaptive Mode

E.

Learn Mode

Questions # 6:

Which of the following operating systems does HIPs for Windows not support?

Options:

A.

Windows XPSP 3 32-bit

B.

Windows XPSP 3 64-bit

C.

Windows 7 64-bit

D.

Windows 2008 64-bit

Questions # 7:

Which of the following files is appended under each managed with disabled event information?

Options:

A.

EvtFiltr.ini

B.

Agent_Event.xml

C.

EvtForward.ini

D.

AgentEvent.log

Questions # 8:

Which of the following policy categories are considered to be mufti-slot policies? (Select the two that apply)

Options:

A.

Trusted Application

B.

IPS Rules

C.

Firewall Rules

D.

IPS Protection

E.

IPS Options

Questions # 9:

n order to tighten a system's intrusion prevention when using Host IPS, when should Adaptive Mode be disabled?

Options:

A.

Adaptive Mode should never be disabled

B.

Adaptive Mode should be disabled after the tuning period is over

C.

Adaptive Mode should be disabled during the tuning period

D.

Adaptive Mode should be disabled before the pilot period has begun

Questions # 10:

Which of the following are the listed signature severity levels within HIPs? (Select the four that apply)

Options:

A.

High

B.

Major

C.

Medium

D.

Minor

E.

Low

F.

Informational

Viewing page 1 out of 3 pages
Viewing questions 1-10 out of questions
TOP CODES

TOP CODES

Top selling exam codes in the certification world, popular, in demand and updated to help you pass on the first try.

2V0-11.25
ADM-201
Agentforce-Specialist
CMMC-CCP
Data-Cloud-Consultant
PCNSE
PDI
PSE-Strata-Pro-24
Secure-Software-Design
Sharing-and-Visibility-Architect
Workday-Pro-Integrations
ZDTA