Name: VMware Carbon Black Portfolio Skills
Brand: ValidExamDumps
SKU: 5V0-91.20
Price: 20 USD
Availability: InStock
Rating: 5.0 (405 reviews)

Free VMware 5V0-91.20 Exam Actual Questions

The questions for 5V0-91.20 were last updated On Nov 20, 2024

Question No. 1

There is a need to ignore all activity at an application path.

Which rule definition should be used to address this need?

AApplication at Path, Performs any operation, Bypass

BApplication at Path, Runs or is Running, Bypass

CApplication at Path, Runs or is Running, Allow & Log

DApplication at Path, Performs any operation, Allow & Log

Show Answer

Correct Answer: A

Question No. 2

An administrator wants to find instances where the binary Is unsigned.

Which term will accomplish this search?

ANOT process_publisher:FILE_SIGNATURE_STATE_SIGNED

BNOT process_publisher_state:FILE_SIGNATURE_STATE_SIGNED

Cprocess_publisher_state:FILE_SIGNATURE_STATE_NOT_SIGNED

Dprocess_publisher:FILE_SIGNATURE_STATE_NOT_SIGNED

Show Answer

Correct Answer: B

Question No. 3

Which reputation is processed with the lowest priority for Endpoint Standard?

ALocal White

BKnown Malware

CTrusted White

DCommon White

Show Answer

Correct Answer: B

Question No. 4

The security operations group is complaining that they are getting multiple App Control alerts for specific malicious files after they have banned the file.

Which step is necessary to prevent future alerts on these files?

AEdit the Malicious File Detected Alert. Select the criteria: Ignore already banned files and Ignore already approved files.

BEdit the Malicious File Detected Alert. Select the criteria: Ignore already banned files.

CDisable the Reminder Mail.

DSet the Alert Status to Disabled.

Show Answer

Correct Answer: C

Question No. 5

Which actions are available for Permissions?

AApprove, Upload, No Upload

BDeny Operation, Terminate Process

CAllow, Allow & Log, Bypass

DPerforms any Operation, Runs or is running

Show Answer

Correct Answer: C