A newly hired systems administrator is concerned about fileshare access at the company. The administrator turns on DLP for the fileshare and lets it propagate for a week. Which of the following can the administrator perform now?
The correct answer is:
B. Audit the permissions of the fileshare.
Explanation: Since the administrator has enabled Data Loss Prevention (DLP) for the file share and let it propagate for a week, the next logical step would be to audit the permissions to see how the data is being accessed and whether any DLP policies have been triggered. DLP systems are designed to monitor and report on data usage and potential violations of policies (such as access to sensitive data).
DLP is Data Loss Prevention, aka digital monitoring. It has nothing to do with the Physical access to the Physical Fileshare. By using DLP to log which users have access to the fileshare, the sysadmin can now audit the permissions of those users.
They could audit permissions before DLP after the can audit access
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.SK0-005 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Kabbath1986
2 days, 17 hours agoSecNoob27639
7 months, 1 week agotame_rabbit
12 months ago