DISA HBSS 201 ADMIN EPO5.1 (2024) QUESTIONS AND ANSWERS WITH SOLUTIONS 2024

DISA HBSS 201 ADMIN EPO5.1 (2024)
QUESTIONS AND ANSWERS WITH
SOLUTIONS 2024
DISA HBSS 201 Admin ePO5.1 (2016 Version) - ANSWER Pull Task



What can be created to prevent interpreting a normal behavior as an attack? - ANSWER Exception



Which executable runs the main HIPS service? - ANSWER Firesvc.exe



How do yo uninstall the HIPS 7.0 client for Windows from a managed system? - ANSWER Remove the
extension from the ePO Server and initiate the McAfee Agent wakeup call.( double check answer)



Assume three IPS policies are applied to a node; 1 default and 2 custom. The default severity level is set
to HIGH; 1 custom severity level is set to LOW and the other custom is set to MEDIUM. What is the
effective severity level outcome for the applied policy? - ANSWER Low

Med

Least Restrictive - testing



Which ePO repository provides all updates to the ePO Master repository? - ANSWER Source



Which is not a type of IPS Signature? - ANSWER Network Signatures



If a connection is in the state table; what action will occur with future traffic for that connection? -
ANSWER Allow



Which ePO component gathers the events from the managed systems and communicates them to the
ePO server? - ANSWER McAfee Agent



What are the four main types of Permission Sets in ePO? - ANSWER Executive Reviewer; Global
Reviewer; Group Admin; Group Reviewer