Sophos Technician Exam Questions and Answers 100% Pass

Sophos Technician Exam Questions and Answers 100% Pass Where can the AD Sync tool be obtained from? - Correct Answer ️️ -Global Settings Which of the following statements is TRUE for a C2/Generic-C detection? - Correct Answer ️️ -The connection was blocked but the root cause has NOT been cleaned up Where in the Endpoint Self Help Tool will show if an endpoint is using a proxy for updating? - Correct Answer ️️ -Update > Update configuration When configuring AD synchronization, what location was defined by default in filters under the User Discovery Filters tab? - Correct Answer ️️ -DC=SOPHOS,DC=LOCAL Enter the command you would use to test IP network connectivity to the address 172.16.2.20. _____ - Correct Answer ️️ -ping 172.16.2.20 Which feature would protect the Sophos installation from becoming disabled by malware? - Correct Answer ️️ -Tamper Protection AD Sync is not working, you have successfully pinged the DC by both name and IP address. Which port do you use with telnet to confirm the LDAP port is accessible? - Correct Answer ️️ -389 Enter the command you would use to remove the currently configured system proxy. - Correct Answer ️️ -netsh winhttp reset proxy Where is the 'SophosCloudInstaller_<time_and_date_stamp>.log' found? - Correct Answer ️️ -%ProgramData%SophosCloudInstallerLogs What is the function of application lockdown in Intercept X? - Correct Answer ️️ -To prevent malicious behavior in software Which of these cleanup tools will scan for root kits? - Correct Answer ️️ -Virus Removal tool What is the minimum type of user required to connect to AD to gather the user and group information? - Correct Answer ️️ -Domain user TRUE or FALSE: Sophos recommends disabling HTTPS inspection for Sophos updating traffic. - Correct Answer ️️ -True On a Windows computer, which component logs information to the 'S' file? - Correct Answer ️️ -Sophos Intercept X The Central Admin Dashboard shows that none of your endpoints are using one of your update caches. When pinging the update cache by name it fails. What command do you use to investigate this further? - Correct Answer ️️ -nslookup What is the third step of the troubleshooting process? - Correct Answer ️️ -Resolve and verify By default, computers get the latest Sophos product updates automatically, where can an admin change this to allow control over updates? - Correct Answer ️️ -Global settings > Controlled Updates In which 3 ways can you allow a quarantined file to be restored? - Correct Answer ️️ - SHA-256 The file paths The certificate When investigating an updating issue on one of your endpoints, you used the telnet command to connect to on port 443. This confirmed that there is a problem using a direct connection. What is most likely to be causing this? - Correct Answer ️️ -Windows client firewall blocking traffic Which 3 of the following are required to perform troubleshooting on an endpoint? Choose three (3). - Correct Answer ️️ -Ability to disable Tamper Protection Administrative rights to the network and AD Administrative rights to the endpoint What permissions does the user need to connect to AD to gat