完全版は2024年最新のNSK200試験問題集テストガイドはトレーニング専門問題 [Q18-Q42]

18、You want to prevent a document stored in Google Drive from being shared externally with a public link. What would you configure in Netskope to satisfy this requirement?

Threat Protection policy

API Data Protection policy

Real-time Protection policy

Quarantine

19、You are creating an API token to allow a DevSecOps engineer to create and update a URL list using REST API v2. In this scenario, which privilege(s) do you need to create in the API token?

Provide read and write access for the “/events” endpoint.

Provide read and write access for the “/urllist” endpoint.

Provide only read access for the “/urllist” endpoint.

Provide only write access for the “/urllist” endpoint.

20、Review the exhibit.

You are asked to restrict users from accessing YouTube content tagged as Sport. You created the required real-time policy; however, users can still access the content Referring to the exhibit, what is the problem?

The website is in a steering policy exception.

The policy changes have not been applied.

The YouTube content cannot be controlled.

The traffic matched a Do Not Decrypt policy

21、You are comparing the behavior of Netskope’s Real-time Protection policies to API Data Protection policies.
In this Instance, which statement is correct?

All real-time policies are enforced, regardless of sequential order, while API policies are analyzed sequentially from top to bottom and stop once a policy Is matched.

Both real-time and API policies are analyzed sequentially from top to bottom and stop once a policy Is matched.

All API policies are enforced, regardless of sequential order, while real-time policies are analyzed sequentially from top to bottom and stop once a policy Is matched.

Both real-time and API policies are all enforced, regardless of sequential order.

22、You want to reduce false positives by only triggering policies when contents of your customer database are uploaded to Dropbox. Your maximum database size is 2 MB. In this scenario, what are two ways to accomplish this task? (Choose two.)

Upload the .csv export lo the Netskope tenant DLP rules section to create an exact match hash.

Use the Netskope client to upload the .csv export to the Netskope management plane DLP container.

Send the .csv export to Netskope using a support ticket with the subject, “create exact match hash”.

Use a Netskope virtual appliance to create an exact match hash.

23、You want to allow both the user identities and groups to be imported in the Netskope platform. Which two methods would satisfy this requirement? (Choose two.)

Use System for Cross-domain Identity Management (SCIM).

Use Manual Entries.

Use Directory Importer.

Use Bulk Upload with a CSV file.

24、Your company has many users thatare remote and travel often. You want to provide the greatest visibility into their activities, even while traveling. Using Netskope. which deployment method would be used in this scenario?

Use proxy chaining.

Use a Netskope client.

Use an IPsec tunnel.

Use a GRE tunnel.

25、Your company asks you to use Netskope to integrate with Endpoint Detection and Response (EDR) vendors suchas CrowdStrike. In this scenario,what is a requirement for a successful Integration and sharing of threat data?

API Client ID

device classification

custom log parser

user endpoint

26、Recently your company implemented Zoom for collaboration purposes and you are attempting to inspect the traffic with Netskope. Your initial attempt reveals that you are not seeing traffic from the Zoom client that is used by all users. You must ensure that this traffic is visible to Netskope.
In this scenario, which two steps must be completed to satisfy this requirement? (Choose two.)

Create a steering exception for Zoom to ensure traffic is reaching Netskope.

Create a Do Not Decrypt SSL policy for the Zoom application suite.

Remove the Zoom certificate-pinned application from the default steering configuration.

Remove the default steering exception for the Web Conferencing Category.

27、Your company needs to keep quarantined files that have been triggered by a DLP policy. In this scenario, which statement Is true?

The files are stofed remotely In your data center assigned In the Quarantine profile.

The files are stored In the Netskope data center assigned in the Quarantine profile.

The files are stored In the Cloud provider assigned In the Quarantine profile.

The files are stored on the administrator console PC assigned In the Quarantine profile.

28、Netskope support advised you to enable DTLS for belter performance. You added firewall rules to allow UDP port 443 traffic. These settings are part of which configuration element when enabled in the Netskope tenant?

Real-time Protection policies

SSL decryption policies

steering configuration

client configuration

29、What is the purpose of the filehash list in Netskope?

It configures blocklist and allowlist entries referenced in the custom Malware Detection profiles.

It provides the file types that Netskope can inspect.

It is used to allow and block URLs.

It providesClient Threat Exploit Prevention (CTEP).

30、Review the exhibit.

You want to discover new cloud applications in use within an organization.
Referring to the exhibit, which three methods would accomplish this task? (Choose three.)

Set up API-enabled Protection instances for SaaS applications.

Deploy an On-Premises Log Parser (OPLP).

Use forward proxy steering methods to direct cloud traffic to Netskope

View “All Apps” within the Cloud Confidence Index (CCI) In the Netskope Ul.

Upload firewall or proxy logs directly into the Netskope platform.

31、Review the exhibit.

What is the purpose ofthe configuration page shown Iithe exhibit?

to provision a Netskope client using SCCM

to allow users to authenticate against the proxy

to onboard Active Directory users to a Netskope tenant

to enforce administrative role-based access

32、Your customer currently only allows users to access the corporate instance of OneDrive using SSO with the Netskope client. The users are not permitted to take their laptops when vacationing, but sometimes they must have access to documents on OneDrive when there is an urgent request. The customer wants to allow employees to remotely access OneDrive from unmanaged devices while enforcing DLP controls to prohibit downloading sensitive files to unmanaged devices.
Which steering method would satisfy the requirements for this scenario?

Use a reverse proxy integrated with their SSO.

Use proxy chaining with their cloud service providers integrated with their SSO.

Use a forward proxy integrated with their SSO.

Use a secure forwarder integrated with an on-premises proxy.

33、Review the exhibit.

You receive a service request from a user who indicates that theirNetskope client is in a disabled state. The exhibit shows an excerpt (rom the affected client nsdebuglog.log.
What is the problem in this scenario?

User authentication failed during IdP-based enrollment.

The Netskope client connection is being decrypted.

Custom installation parameters are incorrectly specified

The user’s account has not been provisioned into Netskope.

34、Your learn is asked to Investigate which of the Netskope DLP policies are creating the most incidents. In this scenario, which two statements are true? (Choose two.)

The Skope IT Applications tab will list the top five DLP policies.

You can see the top Ave DLP policies triggered using the Analyze feature

You can create a report using Reporting or Advanced Analytics.

The Skope IT Alerts tab will list the top five DLP policies.

35、Your organization has a homegrown cloud application. You are required to monitor the activities that users perform on this cloud application such as logins, views, and downloaded files. Unfortunately, it seems Netskope is unable to detect these activities by default.
How would you accomplish this goal?

Enable access to the application with Netskope Private Access.

Ensure that the cloud application is added as a steering exception.

Ensure that the application is added to the SSL decryption policy.

Create a new cloud application definition using the Chrome extension.

36、Your customer has some managed Windows-based endpoints where they cannot add any clients or agents. For their users to have secure access to their SaaS application, you suggest that the customer use Netskope’s Explicit Proxy.
Which two configurations are supported for this use case? (Choose two.)

Endpoints can be configured to directly use the Netskope proxy.

Endpoints must have separate steering configurations in the tenant settings.

Endpoints must be configured in the device section of the tenant to interoperate with all proxies.

Endpoints can be configured to use a Proxy Auto Configuration (PAC) file.

37、To which three event types does Netskope’s REST API v2 provide access? (Choose three.)

application

alert

client

infrastructure

user

38、Review the exhibit.

You are at the Malware Incident page. A virus was detected by the Netskope Heuristics Engine. Your security team has confirmed that the virus was a test data file You want to allow the security team to use this file Referring to the exhibit, which two statements are correct? (Choose two.)

Click the “Add To File Filter button to add the IOC to a file list.

Contact the CrowdStrike administrator to have the file marked as safe.

Click the ”Lookup VirusTotal” button to verify if this IOC is a false positive.

Create a malware detection profile and update the file hash list with the IOC.

39、Your customer is concerned aboutmalware in their AWS S3 buckets. What two actions would help with this scenario? (Choose two.)

Create a real-time policy to block malware uploads to their AWS instances.

Enable Threat Protection (Malware Scan) for all of their AWS instances to Identify malware.

Create an API protection policy to quarantine malware in their AWS S3 buckets.

Create a threatprofile to quarantine malware in their AWS S3 buckets.

40、You are given an MD5 hash of a file suspected to be malware by your security incident response team. They ask you to offer insight into who has encountered this file and from where was the threat initiated. In which two Skope IT events tables would you search to find the answers to these questions? (Choose two.)

Application Events

Network Events

Alerts

Page Events

41、Review the exhibit.

You want to create a custom URL category to apply a secure Web gateway policy combining your own list of URLs and Netskope predefined categories.
In this scenario, which task must be completed?

Add the URL list to the Client configuration.

Add the URL list to a Custom category.

Add the URL list to a Steering configuration.

Add the URL list to a Real-time Protection policy.

42、Review the exhibit.

You are troubleshooting a Netskope clientfor user Clarke which remains in a disabled state after being installed. After looking at various logs, you notice something which might explain the problem. The exhibit is an excerpt from the nsADImporterLog.log.
Referring to the exhibit, what is the problem?

The client was not Installed with administrative privileges.

The Active Directory user is not synchronized to the Netskope tenant.

This is normal; it might take up to an hour to be enabled.

The client traffic is decrypted by a network security device.

完全版は2024年最新のNSK200試験問題集テストガイドはトレーニング専門問題 [Q18-Q42]

コメントを残すコメントをキャンセル

関連認証

NSK200 練習テスト

最近の投稿

アーカイブ

カテゴリー

完全版は2024年最新のNSK200試験問題集テストガイドはトレーニング専門問題 [Q18-Q42]

コメントを残す コメントをキャンセル

関連認証

NSK200 練習テスト

最近の投稿

アーカイブ

カテゴリー

コメントを残すコメントをキャンセル