Documentos de Académico
Documentos de Profesional
Documentos de Cultura
0
1. What is the benefit of installing Linux Server Protection in Sensor mode?
It uses apis to integrate runtime threat detections
1. ¿Cuál es el beneficio de instalar Linux Server Protection en modo
Sensor?
Utiliza apis para integrar detecciones de amenazas en tiempo de
ejecución.
4. Which 3 of these features are only available with Intercept X Advanced with XDR?
The answer can be found in the Sophos Central Protection Licenses and Requirements chapter.
Endpoint Isolation
Live Response
Data Lake
6. Where can users view quarantined emails and manage device encryption for their protected
endpoints?
7. TRUE or FALSE: A mixture of Intercept X Essentials and Advanced XDR licenses can be
used within the same estate to provided different levels of protection.
The answer can be found in the Sophos Central Protection Licenses and Requirements chapter.
Falso
falso
8. Which URL address do you use to login to the Sophos Central Admin console?
The answer can be found in the Getting Started with the Sophos Central Dashboard chapter.
central.sophos.com
central.sophos.com
2. The account that the AD Sync Utility uses to connect to the domain requires what level of
access?
Red Access
2. ¿Qué nivel de acceso requiere la cuenta que usa AD Sync Utility para
conectarse al dominio?
Acceso rojo
Si estos son los primeros usuarios que agrega a Sophos Central, ¿cuántos
usuarios se crearán al importar este archivo CSV? ( ingrese un número
valor )
5
2. TRUE or FALSE: You can install a Message Relay without an Update Cache.
False
2. Which Sophos service cannot be running when attempting to remove the Sophos Endpoint
Agent?
Sophos autoupdate
3. Which of the following is a credible reason for disabling Tamper Protection for a single device?
TO REMOVE THE SOPHOS ENDPOINT AGENT
3. ¿Cuál de las siguientes es una razón creíble para deshabilitar la
protección contra manipulaciones para un solo dispositivo?
PARA ELIMINAR EL AGENTE DE SOPHOS ENDPOINT
4. Tamper Protection should be disabled for a single device in which 2 of the following
scenarios?
WHEN RESTORING A WINDOWS DEVICE FROM A SYSTEM RESTORE POINT
WHEN UPGRADING THE OPERATING SYSTEM
7. Policies v4.0
1. Which of the following best describes peripheral control?
It can prevent the use of untrusted devices that may contain malware
2. Which threat protection feature protects you from malicious websites and downloads?
Live protection
deep learning
4. TRUE or FALSE: When enabled, the ‘log web control events’ setting will only record when a
user browses to a site that has been blocked.
This answer can be found in the Getting Started with the Sophos Central Web Control Policy
chapter.
False
5. You have cloned a Base Policy. What do you need to do to ensure the policy is applied?
Enforce the policy
5. Ha clonado una política base. ¿Qué debe hacer para garantizar que
se aplique la política?
Hacer cumplir la política
6. Which of these steps should be completed first when adding a new application to a Locked
Down server?
Dowload the applications installer
7. How can you protect an application whilst excluding the application from specific exploit
scanning?
The answer can be found in the Getting Started with Sophos Central Exclusions chapter.
exploit mitigation exclusión
2. The Sophos Endpoint Agent is not running on a device, what is the expected health status of
the device?
RED
5. TRUE or FALSE: When you mark an alert as resolved, Sophos Central verifies that the threat
to the endpoint or server has been resolved.
FALSE
9. XDR v4.0
1. Which 4 of these Sophos products can contribute information to the Data Lake?
Sophos firewall
Sophos mobile
Sophos email
Sophos phis theat
2. TRUE or FALSE: To search for a Live Discover query you must first select the required
category.
The answer can be found in the Sophos Central XDR Live Discover Query Scheduling and Editing
chapter.
FALSE
2. VERDADERO o FALSO: Para buscar una consulta de Live Discover,
primero debe seleccionar la categoría requerida.
La respuesta se puede encontrar en el capítulo Programación y edición de
consultas de Sophos Central XDR Live Discover.
FALSO
3. TRUE or FALSE: When you delete a Live Discover scheduled query it will delete the schedule
and all associated results.
The answer can be found in the Sophos Central XDR Live Discover Query Scheduling and Editing
chapter.
True
3. VERDADERO o FALSO: cuando elimina una consulta
programada de Live Discover, se eliminará la programación y
todos los resultados asociados.
La respuesta se puede encontrar en el capítulo Programación y edición de
consultas de Sophos Central XDR Live Discover.
verdadero
5. What 2 things must you do to add an additional field into an existing Live Discover query?
Edit the sql in the existing query
5. ¿Qué dos cosas debe hacer para agregar un campo adicional a una
consulta existente de Live Discover?
Edite el sql en la consulta existente
6. How can you review the commands that have been performed during a Live Response
session?
View the audit log
6. ¿Cómo puede revisar los comandos que se han ejecutado durante
una sesión de Live Response?
Ver el registro de auditoría
7. To view Sophos Central XDR detections, which setting must be enabled in Sophos Central?
Data lake uploads
7. Para ver las detecciones de Sophos Central XDR, ¿qué configuración
debe estar habilitada en Sophos Central?
Cargas de lagos de datos
8. TRUE or FALSE: Sophos Central XDR detections identify unusual and suspicious activities
that have not been blocked.
True
8. VERDADERO o FALSO: las detecciones de Sophos Central XDR
identifican actividades inusuales y sospechosas que no se han bloqueado.
verdadero