HP0-A100 Online Practice Questions and Answers

Which component performs the data collection and normalization?

A. Data monitors

B. FSM manager

C. Smart Connectors

D. Correlation engine

In which phase are functions from the ESM Console (such as NS lookup, Ping, Port info, Trace route and who is) performed?

A. Workflow

B. Analysis

C. Trending

D. Correlation

Which database management system technology is utilized by the Arc Sight ESM 6.5c?

A. DB2

B. CORR-Engine

C. SQL Server Express Edition

D. Oracle 10g

What is the extension used to deliver and install CIPs?

A. aup

B. cab

C. cip

D. arb

What is the main purpose of using Identity View within an ESM environment?

A. To correlate identity information maintained by the Identity Management System with events generated m the network

B. To model network architecture within the ESM environment to perform advanced correlation on Asset and User events

C. To extract user and asset information from events in a logger environment to perform correlation analysis on them

D. To forward LDAP and active directory events to ESM Server

How does a CIP help an organization? (Select two.)

A. Reduces deployment times of ArcSight components in the organization

B. Contributes to establishing a strong IT governance program and reducing costs

C. Shares, uploads, or downloads connectors within your Arc Sight community

D. Helps to meet regulatory compliance requirements

E. Helps to define high availability scenarios for ArcSight components

Which type of ESM resources are imported from an external Identity Management System by using IdentityView?

A. Actors

B. Asset Categories

C. Users

D. Customers

Which events schema group describes the sensor that sends events the Smart Connector?

A. Source

B. Agent

C. Device

D. Root

What is the name of the process that parses raw events and stores them into the corresponding data fields in the ESM event schema?

A. Batching

B. Aggregation

C. Normalization

D. Filtering

What does the ArcSight ESM prioritize?

A. Every event

B. Correlated events only

C. Forwarded events only

D. Every event exclusive of audit and monitor events