What are three protocols that collect flow data from network devices, such as routers, and send this data to IBM Security QRadar SIEM V7.2.8?
A. NetFlow, IPFIX and syslog
B. NetFlow, Packeteer and syslog
C. NetFlow, J-Flow and sFlow
D. NetFlow, rsyslog and sFlow
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
The event pipeline for processing event data before viewing and using event data on the IBM Security QRadar SIEM V7.2.8 console consists of many components, what is one component?
A. Indexing Component
B. Event Data Component
C. Magistrate Component
D. Flow Data Component
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
A retention policy allows an IBM Security QRadar SIEM V7.2.8 Administrator to define how long the system is required to keep certain types of data and what to do when data reaches a certain age. If a 3-month retention policy is defined for all events, then the system will not delete event data until it's on disk timestamp is 3 months in the past.
Which two choices are available in the 'delete data in this bucket'? (Choose two.)
A. When storage space is required
B. When performance is heavily affected
C. When the index is full
D. Immediately after retention period has expired
E. Upon reboot of the system
正解:A,D
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
During the IBM Security QRadar SIEM V7.2.8 installation, which two default user roles are defined? (Choose two.)
A. SuperUser
B. All
C. Any
D. Admin
E. SuperAdmin
正解:B,D
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
How would an Administrator working with IBM Security QRadar SIEM V7.2.8 review all logs?
A. Admin Tab -> System & License Management -> Actions -> Collect Log Files
B. Admin Tab -> System & License Management -> Actions -> Collect All Log Files
C. Admin Tab -> System Configuration -> Actions -> Collect All Log Files
D. Admin Tab -> System Configuration -> Actions -> Collect Log Files
正解:C
質問 6:
An IBM Security QRadar SIEM V7.2.8 Administrator needs to restore a backup archive after a hardware failure.
The Administrator has navigated to the System Configuration tab with the Navigation menu, what are the next steps to restore?
A. System Settings -> select the archive that you want to restore -> On Demand Restoration -> Configure
-> Configure the parameters -> Restore -> OK -> OK
B. System Settings -> upload the backup file that you want to restore -> Configure the parameters -> Restore -> OK
C. Backup and Recovery -> select the archive that you want to restore -> Restore, on the Restore a Backup window -> Configure the parameters -> Restore -> OK -> OK
D. Backup and Recovery -> select the archive that you want to restore -> Configure -> configure the parameters -> Restore -> OK
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 7:
An Administrator working with IBM Security QRadar SIEM V7.2.8 has to add a new host name to a reference set with the name "Allowed Hosts" from the command line interface.
Which command would accomplish this task?
A. ./UtilReferenceSet.sh add "Allowed Hosts" "computer.domain.com"
B. ./ReferenceSetUtil.sh add Allowed\ Hosts computer.domain.com
C. ./ReferenceSetUtil.sh update "Allowed Hosts" "computer.domain.com"
D. ./UtilReferenceSet.sh update Allowed\ Hosts "computer.domain.com"
正解:B
質問 8:
How many dashboards come by default in IBM Security QRadar SIEM V7.2.8?
A. 5
B. 1
C. 10
D. 7
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
水城** -
IBMの問題集は今回も信用して使いさせてもらいました。C2150-624の問題集を購入して翌日にして更新もしてくれて、おかげさまで、試験に無事合格しました。Pass4Testさん、いつもお世話になっております。