IBM C1000 156
Q: 1
How can you configure a log source to provide events to different domains?
Options
Q: 2
What Iwo things are required for an administrator to deobfuscate data in QRadar?
Options
Q: 3
A ORadar administrator needs to upgrade the system to patch a vulnerability. In what order does the
administrator upgrade the managed hosts?
Options
Q: 4
Which two (2) data sources can be assigned to a domain in the Domain Management function?
Options
Q: 5
In the QRadar GUI. you notice that no new offenses were generated today. A review of the
notifications shows:
MPC: Unable to create new offense. The maximum number of active offenses has been reached.
What is the default value of the maximum number?
Options
Q: 6
Which field is mandatory when you use the DSM Editor to map an event to a OID?
Options
Q: 7
You are using the command line interface (CLI) and need to fix a storage issue. What command do
you use to verify disk usage levels?
Options
Q: 8
From which site can you download software updates for QRadar?
Options
Q: 9
You want to use a quick filter search to look for certain elements:
. 10.100.100.*
• BlueCoat
• TCP_REFRESH_MIS
Which string provides the correct results?
Options
Q: 10
On which managed hosts is QRadar event data stored in the Ariel database?
Options
Question 1 of 10
