[Dec 11, 2021] 1V0-81.20 Ultimate Study Guide - Exams-boost [Q19-Q34]

Share

[Dec 11, 2021] 1V0-81.20 Ultimate Study Guide -  Exams-boost

Ultimate Guide to Prepare 1V0-81.20 Certification Exam for VCTA-SEC 2021 in 2021


VMware 1V0-81.20 Exam Syllabus Topics:

TopicDetails
Topic 1
  • Identify endpoint security requirements (Audit & Remediation, EDR, NGAV)
  • Identify network security requirements
Topic 2
  • Explain common cyber-attack mitigation strategies
  • VMware vSphere Architectures and Technologies
Topic 3
  • List the features of Workspace ONE Intelligence: RIsk Score, CVE patch remediation, User experience, Intelligence SDK
  • Describe the benefits and use case for Next Generation Anti-virus
Topic 4
  • Describe the different mechanisms to Allow-list applications to meet business requirements
  • Examine compliance policies in Workspace ONE UEM console
Topic 5
  • Explain how Workspace ONE Intelligence can be used to enforce endpoint security
  • Differentiate between Layer 3 firewalls and Layer 7 firewalls
Topic 6
  • Explain the functionality of NSX gateway firewall and distributed firewall
  • Explain CloudHealth and its role in multi-cloud security solution
Topic 7
  • Identify common vulnerabilities of enterprise systems
  • Identify common vulnerabilities of enterprise systems
Topic 8
  • Explain NSX high level architecture
  • Describe software based attacks
  • Describe hardware based attacks
Topic 9
  • Identify appropriate searches in the VMware Carbon Black Cloud
  • Perform recommended queries in the VMware Carbon Black Cloud
Topic 10
  • Describe the anatomy and attack surfaces of a cyber attack
  • Describe social engineering based attacks
Topic 11
  • Identify physical and virtual requirements for a defense-in-depth security deployment
  • Explain Zero-Trust User and device access
Topic 12
  • Describe the different response capabilities in the VMware Carbon Black Cloud
  • Differentiate between the types of reputations seen in the VMware Carbon Black Cloud

 

NEW QUESTION 19
Which three are components of the NSX-T Software-defined Firewall? (Choose three.)

  • A. NSX Identity Firewall
  • B. NSX Edge Firewall
  • C. NSX Identity Manager
  • D. NSX Intelligence
  • E. NSX Distributed Firewall
  • F. NSX Distributed IDS

Answer: D,E,F

 

NEW QUESTION 20
In VMware Carbon Black Cloud, which two of these statements are true of the Permissions section of the Prevention tab under Policies? (Choose two.)

  • A. take precedence over blocking and isolation
  • B. allows specific operations or applications
  • C. deny or close Applications or Actions
  • D. assigns access rights to specific applications
  • E. assigns access rights to specific individuals

Answer: B,D

 

NEW QUESTION 21
What types of hosts are supported for hosting both NSX-T Data Center managers and host transport nodes?

  • A. vSphere ESXi 6.7U1 or higher, CentOS KVM 7.6, RHEL KVM
  • B. vSphere ESXi 6.5, KVM on RHEL 7.6, Ubuntu 18.04.2 LTS
  • C. vSphere ESXi 6.7U1 or higher, KVM on RHEL 7.6, Ubuntu 18.04.2 LTS
  • D. vSphere ESXi 6.7U1 or higher, KVM on CentOS Linux

Answer: D

 

NEW QUESTION 22
When considering the Device Details page in Workspace ONE UEM, what three sub menus can you check for changes in compliance? (Choose three.)

  • A. Compliance
  • B. Profiles
  • C. Updates
  • D. Troubleshooting
  • E. Status History

Answer: A,B,E

 

NEW QUESTION 23
In Workspace ONE UEM, from which menu would you access Workspace ONE Intelligence?

  • A. Device
  • B. Monitor
  • C. Apps & Books
  • D. General Settings

Answer: B

 

NEW QUESTION 24
What are three core characteristics of VMware's Intrinsic Security solution? (Choose three.)

  • A. centrally managed
  • B. built-in
  • C. integrated
  • D. unified
  • E. extensible
  • F. content-centric

Answer: B,C,D

 

NEW QUESTION 25
Match each Workspace ONE Intelligence Security Risk Module tab on the left with its description on the right by dragging the tab's name into the correct box.

Answer:

Explanation:

 

NEW QUESTION 26
What is the term used to describe a type of social engineering attack aimed at a specific person or specific type of person?

  • A. Spear Phishing
  • B. Whaling
  • C. Phishing
  • D. Tailgating

Answer: C

 

NEW QUESTION 27
Which VMware application enrolls an endpoint into Workspace ONE?

  • A. Workspace ONE Web
  • B. CB Defense Sensor
  • C. VMware Horizon Client
  • D. Workspace ONE Intelligent Hub

Answer: D

 

NEW QUESTION 28
Which would require a Layer 7 Firewall?

  • A. block a specific application
  • B. block a host
  • C. block a subnet range
  • D. block a specific port

Answer: A

 

NEW QUESTION 29
Which three are industry best practices of Zero Trust framework? (Choose three.)

  • A. Employee machines need to have a passcode profile setup
  • B. Employee machines on Internal network are trusted and have access to all internal resources
  • C. Employee machines are checked for compliance before they get access to applications
  • D. Employees get access to only the required resources to get their job done
  • E. Employees are not required to provide MFA to access internal resources over VPN

Answer: A,C,D

 

NEW QUESTION 30
If the Compromised Protection switch is enabled in Workspace ONE UEM, what is the expected behavior on compromised devices in the environment?

  • A. Compromised devices are automatically Enterprise Wiped
  • B. A tag is assigned to the compromised devices and the admin gets notification
  • C. Devices are marked as non-compliant and the admin gets a notification
  • D. A block is set for all network connections except to the VMware servers

Answer: C

 

NEW QUESTION 31
Network Security teams can leverage Micro-Segmentation for which purpose?

  • A. prevent a successful attack to any of the systems attached to the network
  • B. replace the need to leverage traditional network segmentation
  • C. deny attackers the possibility to breach the data center perimeter
  • D. deny attackers the opportunity to move laterally within the internal network

Answer: D

 

NEW QUESTION 32
Which is a common solution to implement for inbound network attacks?

  • A. Proxy
  • B. Firewall
  • C. Reverse Proxy
  • D. Load Balancer

Answer: B

 

NEW QUESTION 33
Refer to the exhibit.

Which statement is true about the firewall rule?

  • A. It is a distributed firewall applied to App-Services, DB-Servers and Web-Servers that rejects traffic on port 22
  • B. It is a gateway firewall applied to a Tier-0 gateway that rejects traffic on port 22
  • C. It is a gateway firewall applied to a Tier-0 gateway that drops traffic on port 22
  • D. It is a distributed firewall applied to App-Services, DB-Servers and Web-Servers that drops traffic on port 22

Answer: C

 

NEW QUESTION 34
......

VCTA-SEC 2021 Fundamentals-1V0-81.20 Exam-Practice-Dumps: https://www.exams-boost.com/1V0-81.20-valid-materials.html