IBM C2150-606 Exam Practice Test Instant Access

Question 1

A Guardium administrator needs to use CLI commands to maintain the internal database, clean static orphans, produce static system reports and to monitor live network traffic filtered by IP addresses and port numbers.

Which combination of commands should the administrator use for these tasks?

Adiag and iptraf

Bdiag and trace_route

Cjptraf and support must_gather

Dsupport must_gather and show network verify

Answer : C

Question 2

An administrator just installed the Guardium product using the Guardium ISO image. Which step must the administrator perform as part of the initial set-up of the new appliance?

AGenerate the GUI certificate request.

BConfigure network settings on the appliance.

CRestart the sniffer process from the CLI command prompt.

DObtain the passwords for the databases to be monitored by the appliance.

Answer : B

Question 3

A Guardium administrator needs to monitor changes to the Oracle configuration file on a production Oracle database server. Assuming all valid licenses are applied, which Guardium component does the administrator need to install and where?

AGuardium Installation Manager (GIM) on the Database Server

BConfiguration Auditing System (CAS) on the Database Server.

CConfiguration Auditing System (CAS) on the Guardium Collector.

DConfiguration Auditing System (CAS) on the Database Server and on the Guardium Collector.

Answer : D

Question 4

A Guardium administrator is creating a policy to alert on actions by users that are stored on an LDAP server. How can the administrator populate a group to use in the policy?

ASchedule the LDAP user import into the group.

BSchedule the LDAP user import from accessmgr and run portal user sync.

CSchedule the LDAP user import from accessmgr and populate the group from a query.

DPopulate the group from a query in access domain with a condition on the LDAP server as the Server IP.

Answer : C

Question 5

AGuardium administrator must configure a policy to ignore all traffic from an application with a known client IP. Due to the high amount of traffic from this application, performance of the S-TAP and sniffer is a concern.

What action should the administrator use in the rule?

AIgnore Session

Bignore S-TAP Session

Cignore SQL per Session

Dignore Responses per Session

Answer : B

Question 6

A Guardium administrator must configure real time policy alerts to be sent to a remote SIEM for every SQL statement run on a sensitive object. There is no requirement for the data to be viewed or reported on in the Guardium appliance.

Which policy action would achieve that task and store the least amount of data in the Guardium internal database?

ALog Only

BAlert Only

CAlert Daily

DAlert Per Match

Answer : C

Question 7

AGuardium administrator is checking the scheduled jobs exceptions report on a standalone Collector The following error is repeating every 15 minutes.

java.lang.NumberFormatException: empty String

The administrator also notices that the anomaly detection polling interval is 15 minutes.

What should the administrator do next to contribute troubleshooting the problem?

APause all scheduled jobs and check if the exception comes back.

Bidentify the alert that is causing the problem by deactivating one alert at a time.

CCheck in the alert builder to see which alerts have accumulation interval of 15 minutes.

Din the CLI run support must_gather aggjssues and send the file to IBM support.

Answer : B

IBM C2150-606 IBM Certified Administrator - Security Guardium V10.0 Exam Practice Test