5V0-93.22 Free Questions

  • Home
  • 5V0-93.22 Free Questions

VMware 5V0-93.22 Real Exam Questions

The questions for 5V0-93.22 were last updated at Nov 19,2024.
  • Exam Code: 5V0-93.22
  • Exam Name: VMware Carbon Black Cloud Endpoint Standard Skills
  • Certification Provider: VMware
  • Latest update: Nov 19,2024
Question #1

The administrator has configured a permission rule with the following options selected:

– Application at path: C:Program Files**

– Operation Attempt: Performs any operation

– Action: Bypass

What is the impact, if any, of using the wildcards in the application at path field?

  • A . Executable files in the "Program Files" directory and subdirectories will be ignored.
  • B . Executable files in the "Program Files" directory will be blocked.
  • C . Executable files in the "Program Files" directory will be logged.
  • D . Executable files in the "Program Files" directory will be subject to blocking rules.

Reveal Solution Hide Solution

Correct Answer: A
Question #2

An administrator needs to use an ID to search and investigate security incidents in Carbon Black Cloud.

Which three IDs may be used for this purpose? (Choose three.)

  • A . Threat
  • B . Hash
  • C . Sensor
  • D . Event
  • E . User
  • F . Alert

Reveal Solution Hide Solution

Correct Answer: B, C, D
Question #3

An administrator has just placed an endpoint into bypass.

What type of protection, if any, will VMware Carbon Black provide this device?

  • A . VMware Carbon Black will be uninstalled from the endpoint.
  • B . VMware Carbon Black will place the machine in quarantine.
  • C . VMware Carbon Black will not provide any protection to the endpoint.
  • D . VMware Carbon Black will apply policy rules.

Reveal Solution Hide Solution

Correct Answer: C
Question #4

An organization has the following requirements for allowing application.exe:

– Must not work for any user’s D: drive

– Must allow running only from inside of the user’s TempAllowed directory

– Must not allow running from anywhere outside of TempAllowed

For example, on one user’s machine, the path is C:UsersLorieTempAllowedapplication.exe.

Which path meets this criteria using wildcards?

  • A . C:Users?TempAllowedapplication.exe
  • B . C:Users*TempAllowedapplication.exe
  • C . *:Users**TempAllowedapplication.exe
  • D . *:Users*TempAllowedapplication.exe

Reveal Solution Hide Solution

Correct Answer: B
Question #5

Which VMware Carbon Black Cloud integration is supported for SIEM?

  • A . SolarWinds
  • B . LogRhythm
  • C . Splunk App
  • D . Datadog

Reveal Solution Hide Solution

Correct Answer: C
Question #6

What connectivity is required for VMware Carbon Black Cloud Endpoint Standard to perform Sensor Certificate Validation?

  • A . TCP/443 to GoDaddy OCSP and CRL URLs (crl.godaddy.com and ocsp.godaddy.com)
  • B . TCP/80 to GoDaddy OCSP and CRL URLs (crl.godaddy.com and ocsp.godaddy.com)
  • C . TCP/443 to GoDaddy CRL URL (crl.godaddy.com and ocsp.godaddy.com)
  • D . TCP/80 to GoDaddy CRL URL (crl.godaddy.com and ocsp.godaddy.com)

Reveal Solution Hide Solution

Correct Answer: A