C1000-026無料問題集「IBM Security QRadar SIEM V7.3.2 Fundamental Administration」

質問 1

An administrator would like to categorize discovered assets by port definitions and add this information to a server type building block for further use.
Which QRadar Console functionality should the administrator use?

（A）Assets Tab - Actions - Scan

（B）Admin Tab - Auto Update

（C）Admin - Scheduled Scans

（D）Assets Tab - Server Discovery

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

An administrator is tasked to reduce data volumes in the asset database and reduce stale data contributing to asset growth deviation.
How can the administrator tune the configuration of the Asset Profiler?

（A）On the navigation menu, click Admin, click the Asset Profile Configuration and reduce the retention values for the Asset Profiler Retention Configuration and Save. On the navigation menu, click Admin and from the Advanced menu, click Restart Event Collection Services. Next, deploy the changes into the environment for the updates to take effect.

（B）In the System Configuration section of the Admin, access the Asset Profile Configuration and increase the retention values for the Asset Profiler Retention Configuration and Save. On the navigation menu, click Admin and from the Advanced menu, click Restart Event Collection Services. Next, deploy the changes into the environment for the updates to take effect.

（C）In the System Configuration section of the Admin, access the Asset Profile Configuration and reduce the retention values for the Asset Profiler Retention Configuration and Save. Next, deploy the changes into the environment for the updates to take effect.

（D）In the System Configuration section of the Admin, access the Asset Profile Configuration and increase the retention values for the Asset Profiler Retention Configuration and Save. Next, deploy the changes into the environment for the updates to take effect.

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

An administrator has been tasked to run all health checks at once using the DrQ command before a major event happens, such as an upgrade.
What does the DrQ command do?

（A）It checks all the available drives on the QRadar managed host and writes the results on a txt file.

（B）It runs all available checks in /opt/ibm/si/diagnostiq with the checkup mode and with the summary output mode.

（C）It runs all available checks in /opt/ibm/si/diagnostiq and writes the results in a txt file.

（D）It shows all the available drives on the QRadar managed host.

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

A QRadar administrator added High Availability (HA) to the Event Processor and needs to verify the crossover link status between the primary and secondary hosts.
Which commands can be used to verify the crossover status? (Choose two.)

（A）/opt/qradar/ha/bin/qradar_nettune.pl linkaggr <interface> status

（B）/opt/qradar/ha/bin/qradar_nettune.pl crossover status

（C）/opt/qradar/ha/bin/ha cstate

（D）/opt/qradar/ha/bin/getStatus crossover

（E）cat /proc/drbd

（F）/opt/qradar/ha/bin/ha_getstate.sh

正解：B、E 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

An administrator needs to restore from backup the applications in QRadar.
Which configuration item should the administrator select?

（A）Installed Applications Configuration

（B）Backup Installed Applications

（C）Installed Programs Configuration

（D）Installed Applications Backup Configuration

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

Which of the following dashboards is a QRadar default Dashboard?

（A）Vulnerability Overview

（B）Compliance and Reporting Monitoring

（C）Threat and Security Monitoring

（D）Monitoring Overview

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

C1000-026 無料問題集「IBM Security QRadar SIEM V7.3.2 Fundamental Administration」

弊社を連絡する

関連リンク

トップ試験