50 / 50

100%
1. The administrator has installed Network Agent and Kaspersky Endpoint Security
on a workstation, but has not moved it to the Managed devices group. What will
happen in that case?

Events will NOT be delivered from the workstation to Kaspersky Security Center, policies and tasks will
NOT be enforced either

Events will NOT be delivered from the workstation to Kaspersky Security Center, but policies and tasks
will be enforced on it

Events will be delivered from the workstation to Kaspersky Security Center, but policies and tasks will
NOT be enforced on it

2. Which group tasks and policies does the Quick Start wizard create on the
Administration Server when started from the MMC console?El número máximo de
respuestas ha sido seleccionado

A policy for Kaspersky Security Center Network Agent

A policy for Kaspersky Endpoint Security for Windows

An out-of-office policy for Kaspersky Endpoint Security for Windows

An Update task for Kaspersky Endpoint Security for Windows

A Rollback task for Kaspersky Endpoint Security for Windows

A ‘Find vulnerabilities and required updates’ task for Network Agent

A Virus Scan task for Kaspersky Endpoint Security for Windows

3. Which of the following database servers does Kaspersky Security Center 11

support?

Microsoft SQL Server 2005

Microsoft SQL Server 2008 R2

Microsoft SQL Server 2012

Microsoft SQL Server 2014

Microsoft SQL Server 2016

Microsoft SQL Server 2017

4. How can you find out when the Administration Server last polled the network to
discover computers?

In the Administration Server events

In the properties of the "Advanced | Network poll" node

In the properties of the Administration Server node ("Advanced | Administration Server operation
statistics")

In the properties of the "Unassigned devices" node

5. Which of the following remote installation methods can be used in the "Install
Application remotely" task in Kaspersky Security Center 11 when the Network Agent
is not selected to be deployed?El número máximo de respuestas ha sido seleccionado

Using Network Agent

Using operating system tools: Shared folders and remote procedure call (RPC)

Using Logon Scripts in the Active Directory

Using Group Policy Objects (GPO) in the Active Directory

6. You want to organize computers into groups to be able to specify different

protection parameters for them. In which node of Kaspersky Security Center console
are such groups to be created?

Policies

Unassigned devices

Managed devices

Device selections

7. Where are installation logs of Kaspersky Endpoint Security and Network Agent
stored after a remote installation?

In the root of the system drive

In the system %Temp% folder

In the user’s %Temp% folder

In %ProgramData%\Kaspersky Lab
8. There is a standalone package on the Administration Server that installs Kaspersky
Endpoint Security with the default set of components. How to make the package also
install the "BadUSB Attack Prevention" component?

Open the folder where the standalone package is located and edit the installation string in the .kud file

Open the folder where the standalone package is located and edit the list of components in the .kud file

Select the component in the original Kaspersky Endpoint Security package and re-create the standalone
package

Open the properties of the standalone package in the Administration Console and select the necessary
component

9. Which functionality of Kaspersky Endpoint Security for Windows is NOT available

under the KESB Select license?

Adaptive Anomaly Control

Integrity Check

Device Control

File Level Encryption

Full Disk Encryption

10. How will Kaspersky Endpoint Security be installed?

The administrator has selected to "Assign Network Agent installation in the Active
Directory group policies" in the remote installation task that installs Kaspersky Endpoint
Security together with Network Agent. 

If the administrator selects the option "Assign Network Agent installation in the Active Directory group
policies", the task will install only the Network Agent

The task will install Kaspersky Endpoint Security using Network Agent tools after the Agent connects to
the Server

The task will install Kaspersky Endpoint Security using Windows tools, without waiting for the Network
Agent to install

The same way as Network Agent, the task will assign installing the MSI package of Kaspersky Endpoint
Security in the Active Directory policy

11. How many remote installation tasks (minimum) do you need to create to install
Kaspersky Endpoint Security 11.1 on all machines?
A network consists of:

 27 computers running Microsoft Windows Server 2012 R2

  5 computers running Microsoft Windows Server 2008
 130 computers running Microsoft Windows 7 Professional
 70 computers running Microsoft Windows 10.

232

12. Where does Kaspersky Security Center store events of the computers that the
administrator can see in the reports?

In Kaspersky Security Network

In the SQL/MySQL database

In the Windows Event Log

In text event logs

13. Which group tasks and policies does the Quick Start wizard create on the
Administration Server when started from the Web console?

A policy for Kaspersky Security Center Network Agent

A policy for Kaspersky Endpoint Security for Windows

An out-of-office policy for Kaspersky Endpoint Security for Windows

An Update task for Kaspersky Endpoint Security for Windows

A Rollback task for Kaspersky Endpoint Security for Windows

A ‘Find vulnerabilities and required updates’ task for Network Agent

A Virus Scan task for Kaspersky Endpoint Security for Windows

14. Which of the following operating systems does Kaspersky Endpoint Security for
Windows (11.1.0) support?

Microsoft Windows XP

Microsoft Windows Vista

 Microsoft Windows 7

Microsoft Windows 8

Microsoft Windows 8.1

Microsoft Windows 10

15. In which cases does the Administration Server update databases in the installation
packages of Kaspersky Endpoint SecurityEl número máximo de respuestas ha sido
seleccionado

When the package is created

Daily, after databases are updated in the repository

Every time after databases are updated in the repository

When the administrator clicks the button "Update databases" in the package properties

16. You want to publish installation packages in Active Directory via the Kaspersky
Security Center 11 Administration Server. Which installation packages can be
published this way?

Any packages available in the "Installation packages" repository

Packages of Kaspersky Lab products only

Only Kaspersky Network Agent packages

None

17. Consider Kaspersky Security Center 11. In the "Managed devices" group, there is
an "Automatic installation" task that installs the Network Agent. However, you want
to exclude one of the subgroups from automatic installation. Is this possible?

This is not possible for automatic installation of Kaspersky Network Agent

Yes, you can set this up in the "Scope of exclusions" within the task settings

Yes, you can set this up in the "Automatic installation" settings within the group properties

No, because "Automatic installation" tasks don’t have exclusion settings

18. Select the recommended deployment plan:

To deploy protection in a network, you need to:

1. Install Network Agents

 2. Install Kaspersky Endpoint Security
3. Install the Administration Server.

3, 2, 1

3, 1, 2

2, 3, 1

1, 2, 3

19. The administrator starts the Administration Server Quick Start Wizard from the
Web console. In which of the following cases will the wizard create a Send Reports
task?

If the option More than 5000 networked devices has been selected in the installation wizard

If email notification parameters have been specified in the Quick Start Wizard

If the Installation Wizard finds a correctly configured local mail client

The Quick Start wizard does not create the Send reports task

20. Which settings of the "Install applications remotely" task do you need to modify
for the installation to complete successfully?
Following an installation of the Kaspersky Security Center 11, you create a <b>KES
installation</b> group and place network computers into that group. Additionally, you
enable automatic installation of Network Agent and Kaspersky Endpoint Security within
the group properties.

Specify the license key

Specify the list of accounts to be used to run the task

Change the installation method

Nothing is to be changed

21. Which port of the Administration Server do Network Agents connect to under the
default settings?

UDP 15000

TCP 13291

TCP 14000

TCP 13000
22. Select the correct statements about the "KL-AK-<alphanumeric combination>"
account created by the installation wizard of Kaspersky Security Center
Administration Server:El número máximo de respuestas ha sido seleccionado

It cannot be used to log on to the system locally

It has the same permissions as the "BUILTIN\Administrators" group

It is included in the "KLAdmins" group

It is included in the "BUILTIN\Administrators" group

It is included in the "Domain Admins" group

23. How can the administrator enable editing for all settings of the subgroup's policy?
Select all applicable solutions.
A policy of Kaspersky Endpoint Security 11.1 for Windows is configured for group A.
Group A has subgroup B, which contains another policy of Kaspersky Endpoint Security
11.1 for Windows. The administrator has noticed that some of the settings cannot be
changed in the policy of subgroup B.
El número máximo de respuestas ha sido seleccionado

In the policy of group A, exclude subgroup B from the policy scope

Make the group A policy inactive

Clear the "Force inheritance of settings in child policies" check box in the group A policy

Clear the "Inherit settings from upper-level policy" check box in the group B policy

24. What does the Firewall do with a packet that meets conditions of several rules,
including allow and block?

Applies the rule that is lower in the list

Applies the rule that is higher in the list

Blocks the packet

Allows the packet

25. Which component of Kaspersky Endpoint Security 11.1 for Windows except "Web
Threat Protection" takes part in protection against phishing?

File Threat Protection

 Mail Threat Protection

Web Control

None of the above

26. Which function does the Firewall perform in Kaspersky Endpoint Security 11.1
for Windows?

Analyzes email messages and blocks phishing links

Analyzes files downloaded over the network to detect infected objects

Analyzes network activity to detect network attacks

Blocks network packets according to the specified rules

27. How does Host Intrusion Prevention select a trust level for a program?El número
máximo de respuestas ha sido seleccionado

It uses the results of background scanning by the online service "virustotal.com"

It uses the trust levels explicitly specified in the policy

It uses a local heuristic algorithm

It uses information from Kaspersky Security Network

28. The administrator wants to ensure that Kaspersky Endpoint Security 11.1 scans
removable drives upon connection. How to achieve that?

Allow local tasks to be displayed and managed in the policy and ask users to configure a local task to
scan removable drives

Enable scan of removable drives on connection in the policy

Create a group scan task that scans removable drives and schedule it to run upon removable drive
connection

Send an email to all employees asking them to use custom scan on their removable drives upon
connection

29. Where can you find the list of computers blocked by the Network Threat
Protection component?

In Kaspersky Security Center Administration Console, in the properties of the attacked computer, in
the statistics window of the Kaspersky Endpoint Security for Windows application
 In the local interface of Kaspersky Endpoint Security, in the "Network Monitor" window that you can
open from the "Protection Components" window

In the local interface of Kaspersky Endpoint Security, in the "Network Monitor" window that you can
open via the shortcut menu of the Network Threat Protection component

30. Which of the following protocols can be specified in the Firewall rules in
Kaspersky Endpoint Security 11.1 for Windows?El número máximo de respuestas ha
sido seleccionado

SMTP

SNMP

ICMP

UDP

TCP

ARP

31. What does the Firewall do with a packet that meets conditions of several rules,
including an allow rule for packets and a block rule for applications? The block rule
for applications is higher on the list than the allow rule for packets.

Applies the rule that is lower in the list

Applies the rule that is higher in the list

Blocks the packet

Allows the packet

32. How can they do it, supposing they have local administrator rights?
A network is protected with Kaspersky Endpoint Security 11.1 for Windows and managed
by Kaspersky Security Center 11 with the default settings. The administrator disabled
displaying the Kaspersky Endpoint Security interface on clients. Users have discovered the
KES folders on the hard drive and decided to try to get rid of the protection.
El número máximo de respuestas ha sido seleccionado

Stop the service of Kaspersky Endpoint Security

Terminate the process of Kaspersky Endpoint Security

Uninstall Network Agent and then disable automatic startup of Kaspersky Endpoint Security 11.1

Uninstall Kaspersky Endpoint Security

33. Kaspersky Endpoint Security 11.1 for Windows is installed with the default
settings. In which of the following networks are programs belonging to the "Low
restricted" group allowed to exchange packets?

Trusted networks

Local networks

Public networks

None of the above

34. How can you exclude a file from the File Threat Protection scope?

Modify the protection scope of File Threat Protection

Add the certificate with which the file is signed to the computers’ certificate store and configure an
exclusion for this store

Set the file scan time limit to maximum

Add the program that accesses the file to the list of trusted processes

Add the path to the file or folder to the list of exclusions

35. The administrator wants to prohibit notebooks from connecting to Wi-Fi while
using a wired connection. Which component of Kaspersky Endpoint Security can help
to achieve this?

Firewall

Host Intrusion Prevention

Anti-Bridging

36. A workstation is managed remotely through Kaspersky Security Center 11 with

the default settings. Which of the following events invoke pop-up notifications in the
local interface of Kaspersky Endpoint Security 11.1 for Windows?

An application start has been blocked

A network attack has been detected

A suspicious object has been detected

An infected object has been detected

37. What does the Firewall do with a packet if cannot find a matching rule for it
neither among packet rules, nor among rules for applications?
 Allows

Blocks

Prompts the user

The Firewall can always find a matching rule for a packet

38. Which actions can be specified in the Web Control rules of Kaspersky Endpoint
Security 11.1 for Windows?El número máximo de respuestas ha sido seleccionado

Test

Warn

Block

Allow

39. You want to prohibit the users from starting any browser except for Internet
Explorer. You don’t want to block any other kinds of applications. Which of the
components within Kaspersky Endpoint Security 11.1 for Windows is the right tool
for the job?

Adaptive Anomaly Control

Web Control

Device Control

Host Intrusion Prevention

Application Control

40. Which resources, when blocked by the control components of Kaspersky Endpoint
Security 11.1 for Windows, can be temporarily allowed with the help of a special
access key provided by the administrator?

Devices

Software

Web resources

None of the above

41. If the "Block" action is selected for the USB bus in Device Control of Kaspersky
Endpoint Security 11.1 for Windows, and "Allow" for the "Removable drives"
category, will the users be able to access removable drives connected over USB?

No

Yes

Yes, but only the users who have Local Administrator privileges

Yes, but only encrypted drives

42. Consider Kaspersky Security Center 11. The administrator selected the "Path to
folder" parameter as a condition for an application category and specified the
"C:\Program Files\Microsoft\" value. Which executable files will meet this condition?

The files whose path begins with "С:\Program Files\Microsoft\"

The files whose metadata coincides with the metadata of the files located in "С:\Program
Files\Microsoft\" on the Administration Server

The files whose checksums coincide with checksums of files located in "С:\Program Files\Microsoft\"
on the Administration Server. Every time the Administration Server is restarted, the list of checksums is
updated to reflect the current folder contents

The files whose checksums coincide with the checksums of the files that were located in folder
"С:\Program Files\Microsoft\" on the Administration Server when the category was being created

43. Which removable drive access operations can Device Control allow or block in
Kaspersky Endpoint Security 11.1 for Windows?El número máximo de respuestas ha
sido seleccionado

Device Control cannot block specific removable drive access operations

Delete

Write

Execute

Read

44. The administrator wants to configure Device Control settings in the policy of
Kaspersky Endpoint Security 11.1 for Windows, but the control options are not
displayed in the policy. How should the administrator fix this?

Load a Kaspersky Endpoint Security for Business "Advanced" license into Kaspersky Security Center
 Open the Kaspersky Security Center interface settings and select the "Display endpoint control settings"
check box

Run a "Change application components" task and select the "Standard" installation type instead of the
"Basic installation" type

None of the above

CANCELARRESTABLECERANTERIORSIGUIENTEENVIAR

Progreso
50 / 50
100%
45. Select all possible solutions
There are computers with Kaspersky Endpoint Security 10 for Windows and computers
with Kaspersky Endpoint Security 11.1 for Windows in the network. The administrator
wants to receive separate "Threats reports" for them.
El número máximo de respuestas ha sido seleccionado

Place the computers with different Kaspersky Endpoint Security versions into different groups and create
a new "Threats report" template for each group

Create two computer selections for different Kaspersky Endpoint Security versions and create a new
"Threats report" template for each selection

Create two new "Threats report" templates and make the data filtered by the "Application" field in the
template properties

None of the above

46. How can you make the computers’ status normal again?
Several computers have the "Warning" status with the "Many viruses detected" description
in Kaspersky Security Center 11 Administration Console. You have studied the event
history on these computers and decided that the computers are out of danger, because all
threats have been neutralized correctly.

The status will normalize automatically in 24 hours

Delete the infected objects from the "Backup" repository

Carry out the "Reset Virus Counter" command

Delete the virus detection events from the Administration Server database

47. What is the purpose of the klmover.exe utility?

It helps to modify the parameters that Network Agent uses to connect to the Administration Server
 It synchronizes the Network Agent’s settings with the Administration Server

It helps to check the Agent—Server connection

48. Where can you disable installation of unapproved patches for Kaspersky Security
Center 11 Network Agent?

In the Network Agent update task

In the Network Agent policy

In the properties of the “Download updates to the repository” task

In the Administration Server properties

49. With which utility can you check connection between the Network Agent and the
Administration Server and synchronize their settings?

GetSystemInfo.exe

klnagchck.exe

klmover.exe

50. The update task of Kaspersky Endpoint Security for Windows has settings for the
"Local mode" and settings for the "Mobile mode". Under which conditions are
update settings for the "Mobile mode" used?

If all sources specified in the settings for the local mode are inaccessible

If the conditions of switching to the mobile mode (which are specified in the Network Agent policy) are
met, and an out-of-office policy is applied to the computer

If the conditions of switching to the mobile mode (which are specified in the Network Agent policy) are
met

An update task does not have update settings for mobile mode

CANCELARRESTABLECERANTERIORENVIAR