[Free] Download New Latest (November) Juniper JN0-141 Actual Tests Topic 1 part 03

Ensurepass

QUESTION 81  (Topic 1)

 

Which element is updated by the Endpoint Security Assessment Plug-In (ESAP)?

 

A.

Statement of Health rule options

B.

virus signature version monitoring

C.

patch management info monitoring

D.

predefined antivirus integrity checks

 

Answer: D

 

 

QUESTION 82  (Topic 1)

 

What kind of security does the UAC solution provide?

 

A.

endpoint security

B.

perimeter security

C.

network security on a per-device basis

D.

network security on a per-network basis

 

Answer: C

 

 

QUESTION 83  (Topic 1)

 

What must be configured to enable the Infranet Controller to respond to a EAP-over- RADIUS request from a network access device?

 

A.

sign-in policy

B.

RADIUS client

C.

location group

D.

network access policy

 

 

 

 

 

Answer: B

 

 

QUESTION 84  (Topic 1)

 

At which point in the enforcement process does the enforcer allow an endpoint to access a protected resource?

 

A.

immediately upon attempting to access the protected resource

B.

when a matching entry for the enforcer is found in the auth table

C.

immediately after the end user authenticates to the Infranet Controller

D.

after the Infranet Controller provides endpoint information for the auth table

 

Answer: D

 

 

QUESTION 85  (Topic 1)

 

At which point in the enforcement process does the enforcer learn the endpoint source address to be used in enforcing the access restrictions of an infranet-auth policy? (Assume that the enforcer is running ScreenOS 6.1 or later.)

 

A.

as the source IP policy is configured on the enforcer

B.

as the end user authenticates to the Infranet Controller

C.

as resource policies are configured on the Infranet Controller

D.

as the Infranet Controller completes the role mapping process and sends an auth table entry to the enforcer

 

Answer: D

 

 

QUESTION 86  (Topic 1)

 

When configuring Coordinated Threat Control, which configuration element differs between a stand-alone IDP sensor and an IDP sensor integrated into an ISG?

 

A.

You must place the integrated sensor into a location group.

B.

You must specify the serial number of the stand-alone sensor.

C.

You must specify specific IDP messages to match on an integrated sensor.

D.

You must specify a range of monitored IP addresses for a stand-alone sensor.

 

Answer: D

 

 

 

QUESTION 87  (Topic 1)

 

You are creating a custom log filter. Which three statements are true? (Choose three.)

 

A.

You must include a filter name.

B.

You must create a custom format.

C.

You can specify a date range to filter.

D.

The filter can contain only a single query variable.

E.

The filter can be applied to any Infranet Controller log.

 

Answer: ACE

 

 

QUESTION 88  (Topic 1)

 

What is an element of the access management framework?

 

A.

user interface

B.

role restriction

C.

network control

D.

resource allocation

 

Answer: B

 

 

QUESTION 89  (Topic 1)

 

For which type of authentication server are you able to configure two backup servers?

 

A.

NIS

B.

LDAP

C.

RADIUS

D.

Active Directory/Windows NT

 

Answer: B

 

 

QUESTION 90  (Topic 1)

 

 

 

 

Which two automatic remediation options can the Infranet Controller perform? (Choose two)

 

A.

Redirect an endpoint to a PatchLink server.

B.

Delete a file matched by a Host Checker rule.

C.

Kill a process matched by a Host Checker rule.

D.

Redirect an endpoint to a Shavlik patch distribution server.

 

Answer: BC

 

Free VCE & PDF File for Juniper JN0-141 Actual Tests

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

This entry was posted in JN0-141 Actual Tests (November) and tagged , , , , , , . Bookmark the permalink.