HP0-A100 Online Practice Questions and Answers

What is the major benefit of ArcSight Logger?

A. Correlation of raw events

B. Long-term storage of events

C. Storage of connectors

D. Real-time threat detection

What is the primary feature of Connector Appliance?

A. Aggregates events to reduce the quantity sent to the manager

B. Long-term storage of data

C. Used to develop the Network Model

D. Supports bulk operations on all Smart Connectors

How many ESM event schema groups are there?

A. 5

B. 17

C. 300

D. 400

Which database management system technology is utilized by the Arc Sight ESM 6.5c?

A. DB2

B. CORR-Engine

C. SQL Server Express Edition

D. Oracle 10g

Which event lifecycle phase discovers the relationships between events, infers the significance of those relationships, prioritizes them, and provides a framework to take action?

A. Correlation evaluation

B. Priority evaluation and network model lookup

C. Workflow

D. Data collection and event processing

What is a function of a Connector Appliance?

A. To provide a Smart Connector management facility in logger-only environments

B. To provide a secure web-based console to ESM

C. To profile common attack patterns on the network

D. To perform advanced correlation evaluation

What is IAM an acronym for?

A. Intrusion and Access Management

B. Identity and Access Management

C. Incident Account Management

D. Identity Account Management

How are CIPs licensed?

A. CIPs are included as standard in Logger

B. CIPs are additional, paid for components.

C. CIPs are included as standard in Connector Appliance

D. CIPs are included as standard in ESM

For its correlation and automated event analysis capabilities, which ESM component is considered the brain of the HP ArcSight SIEM platform?

A. web server

B. ESM manager

C. ESM console

D. CORR-E database

Which component is customer-built?

A. Nodes

B. Adapters

C. Flex Connectors

D. Collectors