A security administrator is configuring the Enterprise Security Manager (ESM) to comply with corporate
security policy and wishes to restrict access to the ESM to certain users and machines
Which of the following actions would accomplish this?
A. Define user groups and set permissions based on IP
B. Setup local accounts based on IP Zones
C. Configure the Access Control List and setup user accounts
D. Assign AD users to computer assignment groups
正解:C
質問 2:
Which of the following are the three default users defined within the Users and Groups option in the ESM properties?
A. NGCP, SYSTEM, REPORT
B. NGCP, BACKUP, REPORT
C. ADMIN, POLICY, REPORT
D. NGCP, POLICY, REPORT
正解:A
質問 3:
Which of the following are the Boolean logic functions that can be used to create Correlation Rules?
A. AND and SET
B. OR and SET
C. NOR and AND
D. OR and AND
正解:B
質問 4:
Alarms using field match as the condition type allow for selected Actions to be taken when the Alarm
condition is met. Which of the following McAfee ePolicy Orchestrator (ePO) Actions can be selected when
creating such Alarm?
A. Collect and Send Properties
B. Send Events
C. Assign Tag with ePO
D. Agent Uninstall
正解:C
質問 5:
Which of the following security technologies sits inline on the network and prevents attacks based on
signatures and behavioral analysis that can be configured as a data source within the SIEM?
A. Network Intrusion Prevention System
B. Email Gateway
C. Host Intrusion Prevention System
D. Firewall
正解:A
質問 6:
The McAfee SIEM solution satisfies which of the following compliance requirements?
A. Personally Identifiable Information (PII) protection
B. Payment Card Industry/ Data Security Standard {PCI/ DSS) protection
C. Continuous monitoring, Log retention
D. Patch management automation
正解:C
質問 7:
How often does the configuration and policy data from the primary Enterprise Security Manager (ESM)
get synchronized with the redundant ESM?
A. This is based on manual selection
B. Every 10 minutes
C. Every 2 minutes
D. Every 5 minutes
正解:D
Kamiyama -
短期間の学習では超楽の難易度となっていながらもみごとにMA0-104合格いたしました。Pass4Testさんほんとうにすごい