HP0-A116 Online Practice Questions and Answers

When can the online partition compression task fail? (Select two.)

A. when the partition being compressed is too old

B. when events are inserted into the partition that is being compressed

C. when the compression task takes more than two hours to complete

D. when the partition compressor does not have the necessary file permissions

Which type of event is displayed in an Active Channel with the following Inline Filter applied?

Category Behavior = /Authentication/Verify

Category Outcome = /Failure

A. Logout events

B. Login Success events

C. Login Failure events

D. Account Locked events

In network modeling, what is a set of nodes with similar characteristics that have IPs enumerated one after the other?

A. IP group

B. asset group

C. asset range

D. IP range

What is the "focus" of a Focus report?

A. events that have been missed based on additional criteria

B. the differences between two similar report outputs

C. a subset of a larger (for example, monthly or quarterly) report

D. high priority Correlation events only

What are the three general types of Data Monitors?

A. event-based, correlation, and non-event based

B. event-based, correlation, and aggregation matching

C. event-based, matching conditions and non-event based

D. event-based, event graph, and non-event based

What do the start and end times associated with a notification destination indicate?

A. the period of time the system will wait for a notification response

B. the period of time during which the destination is expected to respond

C. the period of time during which the notification can be sent

D. the period of time during which the notification can be received

Which access type is provided with ESM Access Control Lists?

A. Specific User read and write access to specific Resource Groups

B. Specific User Group read and write access to a specific Resource

C. Specific User Group read and write access to specific Resource Groups

D. Specific User read and write access to a specific Resource

Which statements are true about assets? (Select two.)

A. Assets can be grouped in folders called asset ranges.

B. Assets require a MAC address to be categorized properly.

C. Assets can include bridges, routers, web servers, or anything with an IP or MAC address.

D. An asset is any endpoint considered significant enough to characterize with details to help with correlation and reporting.

How are baselines established and used in Query Viewers?

A. Baselines are created using rules. After the rule is triggered, the resulting action establishes a baseline against which future rules are evaluated in the Query Viewer.

B. Baselines are created using query results. The baseline from the query is used to create a new field set definition that can be run against future events.

C. Baselines are created using query results. When a query has one or more baselines available, you can compare the current results with the baseline.

D. Baselines are created using query results and fed into the Image Editor for the related Data Monitor.

Which statements are true about reports? (Select two.)

A. Reports can be based on Cases, Trends, Session Lists, and Events.

B. Archived reports must be restored before they can be used again

C. Reports can be scheduled to run yearly, monthly, weekly, daily, or hourly.

D. Reports cannot be based on Session Lists.

E. Only scheduled reports can be archived.