IBM C1000-026 IBM Security QRadar SIEM V7.3.2 Fundamental Administration Exam Practice Test

Page: 1 / 14
Total 60 questions
Question 1

An administrator is tasked to reduce data volumes in the asset database and reduce stale data contributing to asset growth deviation.

How can the administrator tune the configuration of the Asset Profiler?



Answer : B


t_qradar_adm_asset_tuning_ip_retention.html

Question 2

An administrator would like to add a new managed host which uses an existing Network Address Translation (NAT).

Which parameters have to be provided if ''Host is NATed'' is chosen while adding a managed host?



Answer : B


sa=t&rct=j&q=&esrc=s&source=web&cd=1&ved=2ahUKEwihsu3Li5XmAhVYwAIHHeCLDtoQFjAAegQIBhAC

&url=https%3A%2F%2Fwww.ibm.com%2Fdeveloperworks%2Fcommunity%2Fforums%2Fajax%2Fdownload

%2Fd5b20a5b-11bd-4a1d-b294-08ec138eb0e1%2F9d086dd8-eee9-4cbd-912d-26059ffdd0ca%

2FQRadar_721_AdminGuide.pdf&usg=AOvVaw1GO4OmOjWV7uiyCLrdE0FV

Question 3

What happens if QRadar receives events at a higher rate than the license allows?



Answer : A


Question 4

An administrator enters the QRadar web console into a web browser but does not get a response.

Which process is responsible for the QRadar GUI?



Answer : A


Question 5

An administrator needs to develop advanced filters to retrieve information from the QRadar System pertaining

to the top abnormal events of the most bandwidth-intensive IP addresses.

How can the administrator do this?



Answer : B


b_qradar_aql.pdf (21)

Question 6

An administrator needs to add the following networks to a QRadar network hierarchy as a single Classless

Inter-Domain Routin (CIDR) range:

192.168.64.0/24

192.168.65.0/24

192.168.66.0/24

192.168.67.0/24

What is the correct supernet for these subnets?



Answer : B


Question 7

An administrator plans to deploy multiple log sources that share a common configuration.

How many log sources can be added at one time?



Answer : D


t_logsource_bulkadd.html

Page:    1 / 14   
Total 60 questions