File Info
| Exam | IBM Security QRadar SIEM V7.2.7 Deployment |
| Number | C2150-614 |
| File Name | IBM.C2150-614.PracticeTest.2018-08-01.35q.tqb |
| Size | 687 KB |
| Posted | Aug 01, 2018 |
| Download | IBM.C2150-614.PracticeTest.2018-08-01.35q.tqb |
How to open VCEX & EXAM Files?
Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.
Coupon: MASTEREXAM
With discount: 20%
Demo Questions
Question 1
A custom with IBM Security QRadar SIEM V7.2.7 is using Active Directory to authenticate users. After a crash, the authentication servers are down and some users tried to log in before the authentication servers came back up.
What will happen to these users?
- Local users are able to log in with their local password.
- Active Directory users are able to log in with their password.
- Administrative and non-administrative users are unable to log in with their password until authentication servers come back online.
- Logging on is restricted to administrative users and non-administrative will needed to wait until the authentication server comes back online.
Correct answer: D
Explanation:
QRadar provides authentication options for both local and external authentication methods, such as Active Directory or LDAP. The QRadar Administrative roles have both the external and local authentication methods available in case the external authentication method fails. If the remote authentication fails, the Administrative users can login using the local password. References: http://www-01.ibm.com/support/docview.wss?uid=swg21959344 QRadar provides authentication options for both local and external authentication methods, such as Active Directory or LDAP.
The QRadar Administrative roles have both the external and local authentication methods available in case the external authentication method fails. If the remote authentication fails, the Administrative users can login using the local password.
References: http://www-01.ibm.com/support/docview.wss?uid=swg21959344
Question 2
Which CLI command should be used to change the default password from PASSWORD to S3cure for the username USERID?
- /opt/ibm/toolscenter/asu/asu set IMM. Password S3cure --ksu
- /opt/ibm/toolscenter/asu/asu set IMM. Password.1 S3cure --ksu
- /opt/ibm/toolscenter/asu/asu64 set IMM. Password S3cure -- ksu
- /opt/ibm/toolscenter/asu/asu64 set IMM.Password.1 S3cure -- ksu
Correct answer: D
Explanation:
To reset the IMM password use the following command:/opt/ibm/toolscenter/asu64 set IMM.Password.1 NewPassword --kcs References: http://www-01.ibm.com/support/docview.wss?uid=swg21964070 To reset the IMM password use the following command:
/opt/ibm/toolscenter/asu64 set IMM.Password.1 NewPassword --kcs
References: http://www-01.ibm.com/support/docview.wss?uid=swg21964070
Question 3
A Deployment Professional is performing a new deployment, and the customer wants to monitor network traffic by sending raw data packets from a network device to IBM Security QRadar SEAM V7.2.7.
Which method should be used?
- AGP card
- Napatech card
- SFlow protocol
- NetFlow protocol
Correct answer: B
Explanation:
You can monitor network traffic by sending raw data packets to a IBM QRadar QFlow Collector 1310 appliance. The QRadar QFlow Collector uses a dedicated Napatech monitoring card to copy incoming packets from one port on the card to a second port that connects to a IBM Security QRadar Packet Capture appliance. References: http://www.ibm.com/support/knowledgecenter/SSKMKU/com.ibm.qradar.doc/t_qflow_forward_pcap.html You can monitor network traffic by sending raw data packets to a IBM QRadar QFlow Collector 1310 appliance. The QRadar QFlow Collector uses a dedicated Napatech monitoring card to copy incoming packets from one port on the card to a second port that connects to a IBM Security QRadar Packet Capture appliance.
References: http://www.ibm.com/support/knowledgecenter/SSKMKU/com.ibm.qradar.doc/t_qflow_forward_pcap.html
