VMware 5V0-93.22 Real Exam Questions
The questions for 5V0-93.22 were last updated at Nov 20,2024.
- Exam Code: 5V0-93.22
- Exam Name: VMware Carbon Black Cloud Endpoint Standard Skills
- Certification Provider: VMware
- Latest update: Nov 20,2024
The administrator has configured a permission rule with the following options selected:
– Application at path: C:Program Files**
– Operation Attempt: Performs any operation
– Action: Bypass
What is the impact, if any, of using the wildcards in the application at path field?
- A . Executable files in the "Program Files" directory and subdirectories will be ignored.
- B . Executable files in the "Program Files" directory will be blocked.
- C . Executable files in the "Program Files" directory will be logged.
- D . Executable files in the "Program Files" directory will be subject to blocking rules.
An administrator needs to use an ID to search and investigate security incidents in Carbon Black Cloud.
Which three IDs may be used for this purpose? (Choose three.)
- A . Threat
- B . Hash
- C . Sensor
- D . Event
- E . User
- F . Alert
An administrator has just placed an endpoint into bypass.
What type of protection, if any, will VMware Carbon Black provide this device?
- A . VMware Carbon Black will be uninstalled from the endpoint.
- B . VMware Carbon Black will place the machine in quarantine.
- C . VMware Carbon Black will not provide any protection to the endpoint.
- D . VMware Carbon Black will apply policy rules.
An organization has the following requirements for allowing application.exe:
– Must not work for any user’s D: drive
– Must allow running only from inside of the user’s TempAllowed directory
– Must not allow running from anywhere outside of TempAllowed
For example, on one user’s machine, the path is C:UsersLorieTempAllowedapplication.exe.
Which path meets this criteria using wildcards?
- A . C:Users?TempAllowedapplication.exe
- B . C:Users*TempAllowedapplication.exe
- C . *:Users**TempAllowedapplication.exe
- D . *:Users*TempAllowedapplication.exe
Which VMware Carbon Black Cloud integration is supported for SIEM?
- A . SolarWinds
- B . LogRhythm
- C . Splunk App
- D . Datadog
What connectivity is required for VMware Carbon Black Cloud Endpoint Standard to perform Sensor Certificate Validation?
- A . TCP/443 to GoDaddy OCSP and CRL URLs (crl.godaddy.com and ocsp.godaddy.com)
- B . TCP/80 to GoDaddy OCSP and CRL URLs (crl.godaddy.com and ocsp.godaddy.com)
- C . TCP/443 to GoDaddy CRL URL (crl.godaddy.com and ocsp.godaddy.com)
- D . TCP/80 to GoDaddy CRL URL (crl.godaddy.com and ocsp.godaddy.com)