Symantec Email Security Cloud TA Technical Assessment — Question 1

Which action should a DLP administrator take to secure communications between an on-premises Enforce server and detection servers hosted in the Cloud?

Answer options

• A. Use the built-in Symantec DLP certificate for the Enforce Server, and use the ג€sslkeytoolג€ utility to create certificates for the detection servers.
• B. Use the built-in Symantec DLP certificate for both the Enforce server and the hosted detection servers.
• C. Set up a Virtual Private Network (VPN) for the Enforce server and the hosted detection servers.
• D. Use the ג€sslkeytoolג€ utility to create certificates for the Enforce server and the hosted detection servers.

Correct answer: A

Explanation

The correct answer is A because it specifically mentions using the built-in Symantec DLP certificate for the Enforce Server while generating separate certificates for the detection servers using 'sslkeytool', which is essential for secure communication. Option B is incorrect as it suggests using the same certificate for both servers, which may not provide the necessary security. Options C and D do not address the specific requirement of using the built-in certificate and 'sslkeytool' together.