Partial preview of the text
Download Qualys Patch Management (PM) Examh.pdf and more Exams Marketing Management in PDF only on Docsity!
Qualys Patch Management (PM) Exam (Latest 2023/ 2024) | Questions and Verified Answers| A Grade QUESTION Which of these would you use to identify patchable applications that introduce the most number of vulnerabilities in your subscription? (A) patch catalog (B) patch report (C) prioritized products report (C) prioritized products report Which of the following Qualys applications or services provide the ability to create a patch job? (Select three) (A) EDR (B) PM (C) VMDR (D) Vm Answer: (B) PM (C) VMDR (D) Vm QUESTION VMDR Prioritization Report helps you to: (A) Download patches from Vendor Global CDNs (B) Create tickets for high-risk vulnerabilities (C) Identify patches required to fix high-risk vulnerabilities (D) Identify vulnerabilities that pose the maximum risk to your business (E) Run scans to identify high-risk vulnerabilities (C) Identify patches required to fix high-risk vulnerabilities (D) Identify vulnerabilities that pose the maximum risk to your business QUESTION Which query would you use to identify vulnerabilities that can be patched by Qualys Patch Management? (A)vulnerabilities.vulnerability.qualysPatchable: TRUE (B)Patchable.vulnerabilities.qualys:FALSE (C)vulnerabilities. vulnerability.qualysPatchable:FALSE (D)Patchable.vulnerabilities.qualys: TRUE (A)vulnerabilities.vulnerability.qualysPatchable: TRUE QUESTION Which of these is true? (A) all vulnerabilities have a patch (B) not all vulnerabilities have a patch (B) not all vulnerabilities have a patch QUESTION VMDR Prioritization report automatically prioritizes the high-risk vulnerabilities for the most critical assets. (A) Correct (B) Incorrect QUESTION Which of the following statements about uninstalling patches is true? (A) Not all patches in the Patch Catalog can be uninstalled. (B) Uninstallable patches are shown with a key-shaped symbol (C) All patches in the Patch Catalog can be uninstalled. (A) Not all patches in the Patch Catalog can be uninstalled. QUESTION Using the "Search" field (found in the VULNERABILITIES section of the VM Dashboard), which query will produce a list of "patchable" vulnerabilities? (A)vulnerabilities.vulnerability.qualysPatchable: TRUE (B)vulnerabilities. vulnerability.qualysPatchable:FALSE (C)vulnerabilities. vulnerability.isPatchable:FALSE (D)vulnerabilities. vulnerability.isPatchable: TRUE (D)vulnerabilities.vulnerability.isPatchable: TRUE QUESTION Which of the following conventions can be used to include or assign host assets to a job? (choose 2) (Select all that apply) (A) Asset Name (B) Asset Group (C) Business Unit (D) Asset Tag (A) Asset Name (D) Asset Tag QUESTION The process is responsible for installing and uninstalling patches, included in patch jobs you create. (A) stdeploy.exe (B) Qualys Cloud Agent (C) notify.exe (D) Qualys Cloud Agent UI (B) Qualys Cloud Agent QUESTION What does it mean, when a patch is displayed with a "key-shaped" symbol? (A) The patch is a key requirement for the deployment of other patches. (B) The patch cannot be downloaded by Qualys Cloud Agent. (C) The patch has been deprecated. (D) The patch cannot be uninstalled. (B) The patch cannot be downloaded by Qualys Cloud Agent. QUESTION Within a PM Assessment Profile, what is the minimum value, for patch assessment frequency? (A) 24 hours (B) 4 hours (C) 12 hours (D) 1 hour (A) 24 hours (D) view Progress QUESTION Which of the following are options for prioritizing vulnerabilities, in a VMDR Prioritization Report? (choose 3) (Choose all that apply) (A) Compliance Posture (B) Attack Surface (C) Vulnerability Age (D) Real-Time Threat Indicator (RTI) (B) Attack Surface (C) Vulnerability Age (D) Real-Time Threat Indicator (RTI) QUESTION Which of the following are methods for activating the PM module on a Qualys agent host? (choose 3) (Choose all that apply) (A) Select the "Activate for FIM or IOC or PM" option for a host, in the Cloud Agent application. (B) Deploy the agent with an Activation Key that has the PM module selected. (C) Use the Qualys Cloud Agent API, to activate the PM module for a single agent or agents in bulk. (D) Add agent host assets to a PM Asset Group. (B) Deploy the agent with an Activation Key that has the PM module selected. (C) Use the Qualys Cloud Agent API, to activate the PM module for a single agent or agents in bulk. (D) Add agent host assets to a PM Asset Group. Q TION Patching messages and notifications are managed by the process. (A) Qualys Cloud Agent (B) Qualys Cloud Agent UI (C) stdeploy.exe (D) notify.exe (B) Qualys Cloud Agent UI QUESTION Application and OS patching are available for hosts running the Qualys (A) Passive Sensor (B) Cloud Agent (C) Scanner Appliance (D) Virtual Scanner (B) Cloud Agent QUESTION Which of the following PM setup steps must be completed, before host patch assessments can begin? (choose 3) (Choose all that apply) (A) Assign host to a PM Job (B) Activate PM module on host (C) Assign host to an enabled PM Assessment Profile (D) Assign host to CA Configuration Profile (with PM enabled) (B) Activate PM module on host (C) Assign host to an enabled PM Assessment Profile (D) Assign host to CA Configuration Profile (with PM enabled) QUESTION To consume a patching license, one or more host must be added to the "Licenses" tab (within the Patch Management application). (A) Discover patches already installed (B) Install or deploy missing patches (C) Uninstall existing patches (D) Discover missing patches (A) Discover patches already installed (D) Discover missing patches QUESTION Patches can be added to: (choose 3)(Choose all that apply) (A) Recurring jobs that are disabled (B) On Demand jobs that are disabled (C) Recurring jobs that are enabled (D) On Demand jobs that are enabled (A) Recurring jobs that are disabled (B) On Demand jobs that are disabled (C) Recurring jobs that are enabled QUESTION From the PATCHES section in the Patch Management application, which query produces a list of "uninstallable" patches? (A) uninstall:true (B) isRollback:true (C) uninstall:false (D) isRollback:false (B) isRollback:true QUESTION Which query token can be used to display patches that cannot be downloaded by Qualys' Cloud Agent? (A) agentDownload (B) isDownload (C) qualysDownload. (D) downloadMethod (D) downloadMethod. QUESTION When creating a new Deployment Job (in the Patch Management application), which query will produce a list of patches that have not been superseded? (A) notSuperseded: false (B) isSuperseded:false (C) notSuperseded:true (D) isSuperseded:true (B) isSuperseded:false QUESTION When creating a patch job, a "Patch Window" set to the. option, will allow the Cloud Agent as much time as it needs to complete the job. (A) Complete (B) Unlimited (C) None (D) Full (B) Unlimited QUESTION What is the default "Cache size" allocated for Patch Management? (A) 2048 MB (B) 1024 MB (C) 512 MB (D) 256 MB (A) 2048 MB QUESTION PM Work Flow Step 1: Install Cloud Agent on the target host Step 2: Assign target agent host to a CA Configuration Profile that has PM enabled Step 3: Assign PM license to the host Step 4: Configure patch deployment job QUESTION Which of these is true? (A) a patch deployment job can be configured to suppress asset reboot (B) a patch deployment job cannot suppress asset reboot (A) a patch deployment job can be configured to suppress asset reboot QUESTION Which of these is true about patch deployment jobs? (A) by default, all users can edit a patch deployment job (B) by default, only the user who created the patch deployment job can edit it (B) by default, only the user who created the patch deployment job can edit it QUESTION You want to create a deployment job that includes patches based on criteria. For example - security patches with critical severity. Which patch selection option would you use?. (A) manual patch selection (B) automatic patch selection (B) automatic patch selection QUESTION Which of these is true? (A) patch deployment jobs cannot be scheduled; they must run on-demand (B) patch deployment jobs can be scheduled for a future date (B) patch deployment jobs can be scheduled for a future date QUESTION Which of these is true about patch deployment jobs? (A) only some patch jobs can be cloned (B) all patch jobs can be cloned (B) all patch jobs can be cloned QUESTION Which of these can you use to include hosts in a patch deployment job?(Select 2) (D) Before the job begins to run (C) Before the job is enabled QUESTION Additional assets can be added to a(n). job, both before and after it has been enabled. (A) On-Demand (B) Uninstall (C) Recurring (D) Run-Once (C) Recurring QUESTION Which of the following statements about Qualys Patch Management's "patch sources" is false? (A) Patches are originally acquired from Vendor Global CDNs. (B) Digital signatures and hash values are used to validate downloaded patches. (C) A VPN connection to your corporate network is required to download patches. (D) Both operating system and application patches are provided. (C) A VPN connection to your corporate network is required to download patches. QUESTION Which Qualys technology provides a patch download cache, to achieve a more efficient distribution of downloaded patches, to local agent host assets? (A) Qualys Gateway Server (B) Qualys Passive Sensor (C) Qualys Scanner Appliance (D) Qualys Connector (A) Qualys Gateway Server QUESTION Which of the following frequencies, can be used to schedule a Deployment Job? (choose 3) (Choose all that apply) (A) Daily (B) Annually (C) Weekly (D) Monthly Answer: (A) Daily (C) Weekly (D) Monthly QUESTION What is the minimum "Cache size" setting, recommended for Windows Updates? (A) 512 MB (B) 2048 MB (C) 256 MB (D) 1024 MB (B) 2048 MB QUESTION Qualys Patch Management, provides tools and services needed to complete the "Response" phase of the Qualys Lifecycle. (A) WAS (B) PM (©) VM (D) VMDR QUESTION Which of these is a reason for using a Patch Management solution? (A) To monitor logs on the asset (B) To scan for viruses (C) To close open ports and services (D) To address vulnerabilities (D) To address vulnerabilities QUESTION Which of these Qualys solutions would you use to address vulnerabilities on your assets? (A) Vulnerability Management (B) Patch Management (C) Endpoint Detection and Response (D) Policy Compliance (B) Patch Management QUESTION Which of these sensors does Qualys use to deploy patches? (A) Scanner appliances (B) Cloud connectors (C) Passive sensor (D) Cloud agent (D) Cloud agent QUESTION Which of these actions is commonly performed after deploying patches? (A) Asset is decommissioned (B) Asset is scanned (C) Asset is rebooted (D) Asset is reimaged (C) Asset is rebooted QUESTION Which of these is a recommended approach to patching assets? (A) Uninstall old patches and apply new (B) Do not apply patches unless necessary (C) Apply patches on a set of test assets, verify that the patches do not cause issues, and patch the remaining assets (D) Apply patches on all assets right away (C) Apply patches on a set of test assets, verify that the patches do not cause issues, and patch the remaining assets QUESTION Qualys Patch Management correlates missing patches with vulnerabilities. (A) False (B) True (B) True