NSK200 Exam Dumps - PDF Questions and Testing Engine [Q13-Q28]

NEW QUESTION 13
You are using the Netskope DLP solution. You notice flies containing test data for credit cards are not triggering DLP events when uploaded to Dropbox. There are corresponding page events. Which two scenarios would cause this behavior? (Choose two.)

The Netskope client Is not steering Dropbox traffic.

The DLP rule has the severity threshold set to a value higher than the number of occurrences.

The credit card numbers in your test data are Invalid 16-dlglt numbers.

There is no API protection configured for Dropbox.

NEW QUESTION 14
You are using the Netskope DLP solution. You notice that valid credit card numbers in a file that you just uploaded to an unsanctioned cloud storage solution are not triggering a policy violation. You can see the Skope IT application events for this traffic but no DLP alerts.
Which statement is correct in this scenario?

Netskope client is not enabled.

You have set the severity threshold to a higher value.

Netskope client is enabled, but API protection for the SaaS application is not configured.

Credit card numbers are entered with a space or dash separator and not as a 16-digit consecutive number.

NEW QUESTION 15
Your company has Microsoft Azure ADFS set up as the Identity Provider (idP). You need to deploy the Netskope client to all company users on Windows laptops without user intervention.
In this scenario, which two deployment options would you use? (Choose two.)

Deploy the Netskope client with SCCM.

Deploy the Netskope client with Microsoft GPO.

Deploy the Netskope client using IdP.

Deploy the Netskope client using an email Invitation.

NEW QUESTION 16
Review the exhibit.

You want to discover new cloud applications in use within an organization.
Referring to the exhibit, which three methods would accomplish this task? (Choose three.)

Set up API-enabled Protection instances for SaaS applications.

Deploy an On-Premises Log Parser (OPLP).

Use forward proxy steering methods to direct cloud traffic to Netskope

View “All Apps” within the Cloud Confidence Index (CCI) In the Netskope Ul.

Upload firewall or proxy logs directly into the Netskope platform.

NEW QUESTION 17
You want to prevent a document stored in Google Drive from being shared externally with a public link. What would you configure in Netskope to satisfy this requirement?

Threat Protection policy

API Data Protection policy

Real-time Protection policy

Quarantine

NEW QUESTION 18
You are asked to grant access for a group of users to an application using NPA. So far, you have created and deployed the publisher and created a private application using the Netskope console.
Which two steps must also be completed to enable your users access to the application? (Choose two.)

Create an inbound firewall rule to permit network traffic to reach the publisher

Enable traffic steering for private applications.

Create a Real-time Protection policy that allows your users to access the application.

Define an application instance name in Skope IT.

NEW QUESTION 19
Netskope support advised you to enable DTLS for belter performance. You added firewall rules to allow UDP port 443 traffic. These settings are part of which configuration element when enabled in the Netskope tenant?

SSL decryption policies

client configuration

Real-time Protection policies

steering configuration

NEW QUESTION 20
You are integrating Netskope tenant administration with an external identity provider. You need to implement role-based access control. Which two statements are true about this scenario? (Choose two.)

The roles you want to assign must be present in the Netskope tenant.

You do not need to define the administrators locally in the Netskope tenant after It Is integrated with IdP.

You need to define the administrators locally in the Netskope tenant.

Once integrated withIdP. you must append the “locallogin” URL to log in using IdP

NEW QUESTION 21
Your customer currently only allows users to access the corporate instance of OneDrive using SSO with the Netskope client. The users are not permitted to take their laptops when vacationing, but sometimes they must have access to documents on OneDrive when there is an urgent request. The customer wants to allow employees to remotely access OneDrive from unmanaged devices while enforcing DLP controls to prohibit downloading sensitive files to unmanaged devices.
Which steering method would satisfy the requirements for this scenario?

Use a reverse proxy integrated with their SSO.

Use proxy chaining with their cloud service providers integrated with their SSO.

Use a forward proxy integrated with their SSO.

Use a secure forwarder integrated with an on-premises proxy.

NEW QUESTION 22
You are troubleshooting an issue with Microsoft where some users complain about an issue accessing OneDrive and SharePoint Online. The configuration has the Netskope client deployed and active for most users, but some Linux machines are routed to Netskope using GRE tunnels. You need to disable inspection for all users to begin troubleshooting the issue.
In this scenario, how would you accomplish this task?

Create a Real-time Protection policy to isolate Microsoft 365.

Create a Do Not Decrypt SSL policy for the Microsoft 365 App Suite.

Create a steering exception for the Microsoft 365 domains.

Create a Do Not Decrypt SSL policy for OneDrive.

NEW QUESTION 23
What are three methods to deploy a Netskope client? (Choose three.)

Deploy Netskope client using SCCM.

Deploy Netskope client using REST API v2.

Deploy Netskope client using email invite.

Deploy Netskope client using REST API v1.

Deploy Netskope client using IdP.

NEW QUESTION 24
Review the exhibit.

You want to create a custom URL category to apply a secure Web gateway policy combining your own list of URLs and Netskope predefined categories.
In this scenario, which task must be completed?

Add the URL list to the Client configuration.

Add the URL list to a Custom category.

Add the URL list to a Steering configuration.

Add the URL list to a Real-time Protection policy.

NEW QUESTION 25
Which statement describes how Netskope’s REST API, v1 and v2, handles authentication?

Both REST API v1 and v2 require the use of tokens to make calls to the API

Neither REST API v1 nor v2 require the use of tokens.

REST API v2 requires the use of a token to make calls to the API. while API vl does not.

REST API v1 requires the use of a token to make calls to the API. while API v2 does not.

NEW QUESTION 26
Your customer is migrating all of their applications over to Microsoft 365 and Azure. They have good practices and policies in place (or their inline traffic, but they want to continuously detect reconfigurations and enforce compliance standards.
Which two solutions would satisfytheir requirements? (Choose two.)

Netskope SaaS Security Posture Management

Netskope Cloud Confidence Index

Netskope Risk Insights

Netskope Continuous Security Assessment

NEW QUESTION 27
You are comparing the behavior of Netskope’s Real-time Protection policies to API Data Protection policies.
In this Instance, which statement is correct?

All real-time policies are enforced, regardless of sequential order, while API policies are analyzed sequentially from top to bottom and stop once a policy Is matched.

Both real-time and API policies are analyzed sequentially from top to bottom and stop once a policy Is matched.

All API policies are enforced, regardless of sequential order, while real-time policies are analyzed sequentially from top to bottom and stop once a policy Is matched.

Both real-time and API policies are all enforced, regardless of sequential order.

NEW QUESTION 28
Review the exhibit.

A security analyst needs to create a report to view the top five categories of unsanctioned applications accessed in the last 90 days. Referring to the exhibit, what are two data collections in Advanced Analytics that would be used to create this report? (Choose two.)

Alerts

Application Events

Page Events

Network Events

NSK200 Exam Dumps – PDF Questions and Testing Engine [Q13-Q28]

Leave a Reply Cancel reply