Total time to complete this test is 70 minutes, you have 70 minutes remaining

Question 1

Consider Kaspersky Security Center 10. Which of the following conditions can make the backup copying
task return an error on the Administration Server?

1. The Administration Server account has no Write permissions for the backup target directory
2. The database server account has no Write permissions for the backup target directory
3. The Download updates to the repository task is running on the server (backup copying cannot
be started until updating is finished)
4. The drive where the backup directory is located lacks free space

Question 2

The update task of Kaspersky Endpoint Security for Windows has Update settings for local mode and
Update settings for mobile mode. Under which conditions are Update settings for mobile mode used?

1. The update task has no update settings for mobile mode

2. If the conditions of switching to the mobile mode (which are specified in the Network Agent
policy) are met
3. If the conditions of switching to the mobile mode (which are specified in the Network Agent
policy) are met, and the out-of-office policy is applied to the computer
4. If all sources specified in the settings for local mode are inaccessible

Question 3

The administrator has installed Network Agent and Kaspersky Endpoint Security on a workstation, but
has not moved it to the Managed devices group. What will happen in that case?

1. Events will be delivered from the workstation to Kaspersky Security Center, but policies and
tasks will NOT be enforced on it
2. Events will NOT be delivered from the workstation to Kaspersky Security Center, but policies and
tasks will be enforced on it
3. Events will NOT be delivered from the workstation to Kaspersky Security Center, policies and
tasks will NOT be enforced either

Question 4

Which of the following installation methods does NOT work if the computer’s shared folders are NOT
accessible over the network?

Remote deployment using Windows resources

Installation from a standalone package

Remote installation using Active Directory

Installation using Network Agent

Question 5

Many computers have the Critical status with the Not scanned for a long time description in Kaspersky
Security Center 10 Administration Console. The administrator thinks that it is not a problem and does
not want this condition to influence computer statuses. How can you achieve this?

It is not possible

Modify the status change conditions in the Administration Server properties

Modify the status change conditions in the administration groups’ properties

Modify the status change conditions in the policy of Kaspersky Endpoint Security 11 for Windows

Question 6

The administrator wants to configure the policy of Kaspersky Endpoint Security 11 for Windows to
prohibit the use of all browsers except Internet Explorer in the company. For this purpose, he or she
creates an application category named Browsers, which coincides with the Web Browsers KL category,
and prohibits its start. How should the administrator configure the exclusion for Internet Explorer?

Create an exclusion for Internet Explorer in the created Browsers category

Create a category for Internet Explorer, create a rule allowing the start of programs of this category and
place it higher on the list than the rule that prohibits Browsers

Create a category for Internet Explorer, create an allow rule for this category, and move it to the bottom
of the list of rules

This scenario cannot be implemented in Kaspersky Endpoint Security 11 for Windows

Question 7

Select the correct statements about the KL-AK- account created by the installation wizard of Kaspersky
Security Center Administration Server:

It is included in the Domain Admins group

It is included in the BUILTIN\Administrators group

It is included in the KLAdmins group

It has the same permissions as the BUILTIN\Administrators group

It cannot be used to log on to the system locally

Question 8

You want the Firewall in Kaspersky Endpoint Security 11 for Windows to allow any packets from
192.168.12.25. How can you achieve this?

Specify a network with address 192.168.12.25/32 and assign the Trusted Network status to it
Create a Network packet rule that allows all inbound and outbound packets to/from the address
192.168.12.25 and place it on top of the rule list

Create an Application control rule that allows all inbound and outbound packets to/from 192.168.12.25,
and specify «*» for the application

Create an exclusion for the address 192.168.12.25 in the Trusted zone

Question 9

You want to publish installation packages in Active Directory group policy via the Kaspersky Security
Center 10 Administration Server. Which packages can be published this way?

Any packages available in the Installation packages repository

Packages of Kaspersky Lab products only

Only Kaspersky Network Agent packages

None

Question 10

A computer running Windows 7 is protected with Kaspersky Endpoint Security 11 for Windows. You
want to prohibit connecting USB scanners to it, but allow removable USB drives. How can you achieve
this?

Block Cameras and scanners in the Device Control

Block multifunctional devices in the Device Control

Block USB bus in the Device Control

USB scanners cannot be blocked by Kaspersky Endpoint Security 11

Question 11

The administrator wants to exclude operations performed by a particular user from the scan scope of
protection components of Kaspersky Endpoint Security 11 for Windows. Which of the following
components support this kind of exclusion?

File Threat Protection

Behavior Detection

Web Threat Protection

None of the above

Question 12

Which of the following components of Kaspersky Endpoint Security 11 for Windows can use the iSwift
technology?

File Threat Protection

Mail Threat Protection

Web Threat Protection

Virus Scan tasks

Question 13

How to make the Network Agent perform an unplanned synchronization from the client side?

Carry out the command klnagchk without parameters

Carry out the command klnagchk -sync

Carry out the command klnagchk -sendhb

It is impossible

Question 14

What happens when the cloud mode is enabled for the protection components?

When the cloud mode is enabled for the protection components, Kaspersky Endpoint Security uses a lite
version of anti-virus databases, but sends more requests to the KSN cloud

When the cloud mode is enabled for the protection components, Kaspersky Endpoint Security sends
extended statistical information to the KSN cloud and uses the full version of anti-virus databases

When the cloud mode is enabled for the protection components, Kaspersky Endpoint Security can send
executable and non-executable files or their parts to the KSN cloud

Question 15

To deploy protection in a network, you need to install Network Agents (1), install Kaspersky Endpoint
Security (2), install the Administration Server (3). Select the recommended deployment plan:

1, 2, 3

2, 3, 1

3, 1, 2

3, 2, 1

Question 16

Which of the following components of Kaspersky Endpoint Security 11 for Windows can block
executable file start?

Behavior Detection

Application Control

Host Intrusion Prevention

Device Control

Question 17

Select the correct statements about how File Threat Protection safeguards a computer with the default
settings:

Scans all file types

Scans potentially dangerous files

Scans only new and changed files

Scans all files, even those that have not been changed

Question 18

Which of the following components can be used under the KESB Select license, but is NOT included in
the Standard installation of Kaspersky Endpoint Security?

IM Anti-Virus

Network Threat Protection

BadUSB Attack Prevention

There are no such components

Question 19

How many concurrent active policies of Kaspersky Endpoint Security 11 for Windows can there be within
a single group?

2 at most

As many as you want

Question 20

On which Windows Server 2012 editions can Kaspersky Security Center 10 Administration Server be
installed?

Standard edition

Enterprise edition

Datacenter edition

None of the above

Question 21
Kaspersky Endpoint Security 11 for Windows is installed with the default settings. In which of the
following networks are programs belonging to the Low restricted group allowed to exchange packets?

Trusted networks

Local networks

Public networks

None of the above

Question 22

Select the correct statements about policies in Kaspersky Security Center:

There are active and inactive policies

There may not be more than one active policy for the same application in a group

The administrator can create a policy for a set of computers belonging to different groups

The administrator can exclude a subgroup from a policy’s scope

Active subgroups’ policies by default inherit the locked settings of the active policy of a parent group (as
far as policies of the same application are concerned)

To make policy settings enforced on the computers, the respective locks must be closed

Question 23

There are computers with Kaspersky Endpoint Security 10 for Windows and computers with Kaspersky
Endpoint Security 11 for Windows in the network. The administrator wants to receive separate Threats
reports for them. Select all possible solutions

Place the computers with different Kaspersky Endpoint Security versions into different groups and
create a new Threats report template for each group

Create two computer selections with different Kaspersky Endpoint Security versions and create a new
Threats report template for each selection

Create two new Threats report templates and make the data filtered by the Application field in the
template properties

None of the above

Question 24

Which of the control components of Kaspersky Endpoint Security 11 for Windows can apply access rules
on schedule?

Host Intrusion Prevention

Application Control

Device Control
Web Control

Question 25

The user downloads an archive with freeware from a website over HTTP. If there is an infected object in
the archive, which component of Kaspersky Endpoint Security 11 for Windows will be the first to detect
it?

Web Threat Protection

Firewall

Virus Scan task

File Threat Protection

Question 26

A trial license has expired after a proof of concept implemented to study the capabilities of Kaspersky
Endpoint Security 11 for Windows. Which functions of Kaspersky Endpoint Security 11 will remain
operational?

File Threat Protection and Virus Scan

All Kaspersky Endpoint Security features will stay operational, except for updates

Only File Threat Protection and Firewall will keep working

None of the above

Question 27

Installation on which of the following operating systems does Kaspersky Endpoint Security for Windows
11 support?

Microsoft Small Business Server 2011

Microsoft Windows Embedded Standard 7

Microsoft Windows Server 2012 R2 (Server Core)

Microsoft Windows Server 2012 Foundation

Question 28

About which events does Kaspersky Security Center notify the administrator under the default settings?

About all

About critical events of the Administration Server

About critical events of the Kaspersky Endpoint Security

About none
Question 29

Installation on which operating systems does Kaspersky Security Center 10 SP3 Administration Server
NOT support?

Microsoft Windows XP Pro SP2

Microsoft Windows Vista

Microsoft Windows 7 Ultimate SP1

Microsoft Windows 8 Pro

Microsoft Windows 10 Enterprise

Question 30

Installation on which of the following operating systems does Kaspersky Endpoint Security for Windows
11 support?

Microsoft Windows XP

Microsoft Windows Vista

Microsoft Windows 7

Microsoft Windows 8

Microsoft Windows 8.1

Microsoft Windows 10

Question 31

ABC Inc. plans to deploy Kaspersky Security Center and Kaspersky Endpoint Security in a network
segment where there is no access to the Internet. How would you advise to activate the products?

With a key file

With an activation code

Any activation method can be used

Question 32

The administrator wants to prohibit the users from starting any browser except for Internet Explorer.
They don’t want to block any other kinds of applications. Which of the components within Kaspersky
Endpoint Security 11 for Windows is the right tool for the job?

Application Control

Host Intrusion Prevention

Device Control
Web Control

Question 33

The Administrator has configured the Kaspersky Endpoint Security 11 installation package to perform a
Basic installation. Which of the following components will be installed on workstations?

Host Intrusion Prevention

Application Control

Device Control

Behavior Detection

Exploit Prevention

Firewall

Remediation Engine

Question 34

Following an installation of the Kaspersky Security Center 10 using the Standard option in the
installation wizard, you create a KES installation group and place network computers in that group.
Additionally you enable the automatic installation of Network Agent and Kaspersky Endpoint Security
within the group properties.

Which settings of the Install applications remotely task would you need to edit for the installation to
complete successfully?

Specify the license key

Specify the list of accounts to be used to run the task

Change the installation method

Nothing is to be changed

Question 35

Kaspersky Security Center 10 Administration Server is protected with a third-party firewall. The
administrator has created a standalone package. Which of the following ports must be opened in the
firewall for the users to be able to download the package using the automatically created http link?

80 and 443

15000

8060 and 8061

13291

Question 36
You are planning to deploy Kaspersky Endpoint Security for Business to implement a centrally managed
network protection. Which applications will you need to install on the network computers?

Kaspersky Security Center Network Agent

Microsoft SQL Server Agent

Kaspersky Endpoint Security for Windows

Kaspersky Endpoint Security for Windows Console

Question 37

What does the File Threat Protection scope include with the default settings?

All removable drives

All hard drives

All network drives

Kernel Memory

Question 38

Which network polling methods are enabled by default in Kaspersky Security Center 10 Administration
Server?

Quick Windows Network Poll

Full Windows Network Poll

Active Directory polling

IP range polling

Question 39

How can you exclude a file from the File Threat Protection scope?

Add the path to the file or folder to the list of exclusions

Add the program that accesses files to the list of trusted processes

Set the maximum file scan time

Add the certificate with which files are signed to the computers’ certificate store and configure an
exclusion for this store

Modify the protection scope of File Threat Protection

Question 40

In which case will Kaspersky Endpoint Security 11 for Windows consider a file to be non-infected?
Signature or heuristic analysis returned the Infected verdict, while the KSN database considers the file to
be clean

Signature or heuristic analysis returned the Clean verdict, while the KSN database considers the file to
be infected

Question 41

Where can you disable installation of unapproved patches for Kaspersky Security Center 10 Network
Agent?

In the Administration Server properties

In the properties of the “Download updates to the repository” task

In the Network Agent policy

In the Network Agent update task

Question 42

Where can you specify the conditions under which Kaspersky Endpoint Security 11 switches to the out-
of-office policy?

In the policy of Kaspersky Endpoint Security

In the group properties

In the Network Agent policy

The conditions are hard-coded and you cannot modify them

In the Administration Server policy

Question 43

There are 1000 computers in the company, approximately 200 of which are servers. During the next
year, the company plans to add about 500 computers to the network (servers and workstations). Now,
all computers are located within the Managed devices group, but the administrator has decided to
group them according to the operating system type. How to do it without wasting time, either now or
later?

Sort the list of computers in the Managed devices group by the operating system type, select servers
and drag them to one group, and other computers into another one; repeat as necessary

Use the Search window to find all computers with server operating systems and use the shortcut menu
to move them to the Servers group; do the same to non-server operating systems; repeat as necessary

Configure a computer relocation rule based on the operating system type

Create a selection of computers running server operating systems and another one for non-servers;
create computer relocation tasks for them

Question 44
Which of the following components of Kaspersky Endpoint Security 11 for Windows do NOT scan files?

Web Threat Protection

Mail Threat Protection

BadUSB Attack Prevention

Network Threat Protection

Question 45

Which access to network do programs get that belong to the Untrusted group on Microsoft Windows 7
protected with standard installation of Kaspersky Endpoint Security 11 under the default settings?

None, because the Host Intrusion Prevention component will block them

Full network access

Access only to trusted networks

Access to trusted and local networks

Question 46

Consider Kaspersky Endpoint Security 11 for Windows. You want to block banners on the web pages
visited by the users. How can you achieve this?

Enable the Anti-Banner component

Enable the option to block banner links in the Web Threat Protection settings

Create a rule in the Web Control settings to block the content category Banners

None of the above

Question 47

Which policy settings are compulsory in Kaspersky Security Center?

Active policy settings

Unlocked policy settings

Locked policy settings

Question 48

Which port of the Administration Server do Network Agents connect to under the default settings?

TCP 13000

TCP 14000

TCP 13291
UDP 15000

Question 49

Consider Kaspersky Endpoint Security 11 for Windows. When the Behavior Detection component
recognizes dangerous activities, which of the following actions can it take?

Disinfect

Terminate the program

Move the file to Quarantine

Delete the file

Question 50

A workstation is managed remotely through Kaspersky Security Center 10 with the default settings.
Which of the following events invoke pop-up notifications in the local interface of Kaspersky Endpoint
Security 11 for Windows?

Threats have been detected

Suspicious object detected

Network attack detected

Application startup prohibited