Download IBM Security Guardium V10.0 Administration.C2150-606.PracticeTest.2017-12-04.55q.vcex

Vendor: IBM
Exam Code: C2150-606
Exam Name: IBM Security Guardium V10.0 Administration
Date: Dec 04, 2017
File Size: 1 MB
Download Exam

How to open VCEX files?

Files with VCEX extension can be opened by ProfExam Simulator.

Download
ProfExam Simulator

Purchase
Coupon: EXAM_HUB

Discount: 20%

ProfExam Simulator ProfExam Simulator ProfExam Simulator ProfExam Simulator ProfExam Simulator

Demo Questions

Question 1
A Guardium administrator plans to use the Guardium Installation Manager (GIM) to install and upgrade agents. 
Where should the administrator manually install the GIM client for the first time?
  1. Collector
  2. Aggregator
  3. Database server
  4. Central Manager
Correct answer: C
Explanation:
You can use the Guardium Installation manager (GIM) to install and maintain Guardium components on managed servers. The GIM component includes a GIM server, which is installed as part of the Guardium system, and a GIM client, which must be installed on servers that host databases that you want to monitor. Reference: http://www-01.ibm.com/support/knowledgecenter/SSMPHH_9.0.0/com.ibm.guardium.software.app.install.doc/topicsV90/gim_intro.html
You can use the Guardium Installation manager (GIM) to install and maintain Guardium components on managed servers. 
The GIM component includes a GIM server, which is installed as part of the Guardium system, and a GIM client, which must be installed on servers that host databases that you want to monitor. 
Reference: http://www-01.ibm.com/support/knowledgecenter/SSMPHH_9.0.0/com.ibm.guardium.software.app.install.doc/topicsV90/gim_intro.html
Question 2
The Quick Search window does not show up on the GUI of a standalone Collector. 
What technical feature should the Guardium administrator check first?
  1. That the Collector has at least 24 GB.
  2. That the Collector has at least 32 GB.
  3. That the Collector has at least 64 GB.
  4. Check the contract and verify whether that feature was purchased.
Correct answer: A
Explanation:
Guardium Quick Search requires a minimum of 24 GB of RAM and a minimum of 4-core CPU. Reference: http://www-01.ibm.com/support/docview.wss?uid=swg27045286
Guardium Quick Search requires a minimum of 24 GB of RAM and a minimum of 4-core CPU. 
Reference: http://www-01.ibm.com/support/docview.wss?uid=swg27045286
Question 3
A Guardium administrator needs to monitor an Oracle database on a production database server. 
Which component does the administrator need to install on this database server that will monitor the traffic?
  1. S-TAP
  2. Guardium Collector
  3. Guardium Installation Manager (GIM)
  4. Configuration Auditing System (CAS)
Correct answer: D
Explanation:
Configuration Auditing System Overview  Databases can be affected by changes to the server environment; for example, by changing configuration files, environment or registry variables, or other database or operating system components, including executable files or scripts used by the database management system or the operating system. CAS tracks such changes and reports on them. The data is available on the Guardium system and can be used for reports and alerts. Reference: https://www-01.ibm.com/support/knowledgecenter/SSMPHH_9.1.0/com.ibm.guardium91.doc/assess_harden/topics/cas.html
Configuration Auditing System Overview  
Databases can be affected by changes to the server environment; for example, by changing configuration files, environment or registry variables, or other database or operating system components, including executable files or scripts used by the database management system or the operating system. CAS tracks such changes and reports on them. The data is available on the Guardium system and can be used for reports and alerts. 
Reference: https://www-01.ibm.com/support/knowledgecenter/SSMPHH_9.1.0/com.ibm.guardium91.doc/assess_harden/topics/cas.html
Question 4
A Guardium administrator needs to upgrade BUNDLE-STAP on a Linux server to the latest version using GIM. 
What parameter should the administrator set to ensure the upgrade will not require a reboot of the server?
  1. KTAP_ENABLED=1
  2. KTAP_NO_ROLLBACK=1
  3. KTAP_LIVE_UPDATE=Y
  4. KTAP_ALLOW_MODULE_COMBOS=Y
Correct answer: C
Explanation:
If specifying KTAP_LIVE_UPDATE=Y, no reboot is required. Reference: http://www-01.ibm.com/support/docview.wss?uid=swg21644770
If specifying KTAP_LIVE_UPDATE=Y, no reboot is required. 
Reference: http://www-01.ibm.com/support/docview.wss?uid=swg21644770
Question 5
A Guardium administrator is preparing commands to install or upgrade an S-TAP using the command line method. 
Which operating system can use the ktap_allow_module_combos parameter for the installation and upgrade?
  1. AIX
  2. Linux
  3. Solaris
  4. HP-UX
Correct answer: B
Explanation:
When you are installing InfoSphere Guardium S-TAP on a Linux database server, if the K-TAP loader cannot find a match for your operating system, you might need to get an updated InfoSphere Guardium S-TAP modules file from IBM Software Support and then rerun the installation script with the --modules option before you can continue with the installation. One step in this process is redo the InfoSphere Guardium S-TAP installation with the --modules option . ./guard-stap-os_version.sh -- --modules /path /modules-version-identifier.tgz --ktap_allow_module_combos Reference: https://www-01.ibm.com/support/knowledgecenter/SS2S7B_2.1.0/com.ibm.datatools.capturereplay.install.doc/topics/cr_install_stap_linux_unsupported_kernels.html
When you are installing InfoSphere Guardium S-TAP on a Linux database server, if the K-TAP loader cannot find a match for your operating system, you might need to get an updated InfoSphere Guardium S-TAP modules file from IBM Software Support and then rerun the installation script with the --modules option before you can continue with the installation. 
One step in this process is redo the InfoSphere Guardium S-TAP installation with the --modules option . 
./guard-stap-os_version.sh -- --modules /path 
/modules-version-identifier.tgz --ktap_allow_module_combos 
Reference: https://www-01.ibm.com/support/knowledgecenter/SS2S7B_2.1.0/com.ibm.datatools.capturereplay.install.doc/topics/cr_install_stap_linux_unsupported_kernels.html
Question 6
An administrator has a new standalone Guardium appliance that will be placed into production next week. The appliance will monitor traffic from a number of databases with a high volume of traffic. The administrator needs to configure the schedule to ensure the appliance internal database does not get full with incoming data. 
Which data management function does the administrator need to configure?
  1. Purge
  2. Data Export
  3. Data Restore
  4. System Backup
Correct answer: A
Explanation:
The quickest way to reduce the DB % Full is to induce a purge of some older data now. Example - If you have "Purge data older than 30 days" set currently, and presuming you have all necessary backups and Archives of your system and you are happy to attempt to purge off slightly more data now Note: The DB filling up can be caused by the following - amongst other things* Spikes in the data being captured * A policy setting that allows too much data to be logged in the Internal Database * Keeping too much data on the Internal Database * Collecting data from too many Databases (STAPs) Reference: http://www-01.ibm.com/support/docview.wss?uid=swg21511904
The quickest way to reduce the DB % Full is to induce a purge of some older data now. 
Example - If you have "Purge data older than 30 days" set currently, and presuming you have all necessary backups and Archives of your system and you are happy to attempt to purge off slightly more data now 
Note: The DB filling up can be caused by the following - amongst other things
* Spikes in the data being captured 
* A policy setting that allows too much data to be logged in the Internal Database 
* Keeping too much data on the Internal Database 
* Collecting data from too many Databases (STAPs) 
Reference: http://www-01.ibm.com/support/docview.wss?uid=swg21511904
Question 7
A Guardium administrator is setting up a Collector schedule to export data to an Aggregator and Archive its data to an Archive storage unit for additional data safety. 
Given this scenario, which is true regarding the purge schedule?
  1. The Archive and the Export have independent purge schedules but should not be run at the same time.
  2. The Guardium unit would run the Export and Archive before any purge, so you would only see the last purge run each day.
  3. It would not be possible to configure both on a Collector, the Aggregator should do the archiving and only export from the Collector.
  4. Any time that Data Export and Data Archive are both configured, the purge age must be greater than both the age at which to export and the age at which to archive.
Correct answer: D
Explanation:
Any value that is specified for the starting purge date must be greater than the value specified for the Archive data older than value. In addition, if data exporting is active, the starting purge date that is specified here must be greater than the Export data older than value Reference: http://www-01.ibm.com/support/knowledgecenter/SSWL9Z_10.0.0/com.ibm.guardium.appmask.doc/adm/archiving_data.html?lang=en
Any value that is specified for the starting purge date must be greater than the value specified for the Archive data older than value. In addition, if data exporting is active, the starting purge date that is specified here must be greater than the Export data older than value 
Reference: http://www-01.ibm.com/support/knowledgecenter/SSWL9Z_10.0.0/com.ibm.guardium.appmask.doc/adm/archiving_data.html?lang=en
Question 8
A Guardium administrator needs to check the traceroute information between one appliance and its Central Manager. 
Which CLI command should the administrator run? 
  1. iptraf
  2. support show iptables
  3. show network routes operational
  4. support must_gather network_issues
Correct answer: D
Explanation:
support must_gather network_issues The command gathers all network information from the appliance and polls hoststhat Guardium interacts with by ping, traceroute, corresponding port probingand other measures. If optional parameter is specified, then it polls only thehost that was specified (if Guardium is configured to do any activity on thishost). Reference: https://www-01.ibm.com/support/knowledgecenter/SSMPHH_9.5.0/com.ibm.guardium95.doc/common_tools/topics/basic_information_for_ibm_support.html
support must_gather network_issues 
The command gathers all network information from the appliance and polls hoststhat Guardium interacts with by ping, traceroute, corresponding port probingand other measures. If optional parameter is specified, then it polls only thehost that was specified (if Guardium is configured to do any activity on thishost). 
Reference: https://www-01.ibm.com/support/knowledgecenter/SSMPHH_9.5.0/com.ibm.guardium95.doc/common_tools/topics/basic_information_for_ibm_support.html
Question 9
A Guardium administrator needs to monitor changes to the Oracle configuration file on a production Oracle database server. 
Assuming all valid licenses are applied, which Guardium component does the administrator need to install and where?
  1. Guardium Installation Manager (GIM) on the Database Server.
  2. Configuration Auditing System (CAS) on the Database Server.
  3. Configuration Auditing System (CAS) on the Guardium Collector.
  4. Configuration Auditing System (CAS) on the Database Server and on the Guardium Collector.
Correct answer: D
Explanation:
CAS is an agent installed on the database server and reports to the Guardium system whenever a monitored entity have changed, either in content or in ownership or permissions. You install a CAS client on the database server system. Once the CAS client has been installed on the host, you configure the actual change auditing functions from the Guardium portal. The CAS server is a component of Guardium and runs on the Guardium system. Reference: https://www-01.ibm.com/support/knowledgecenter/SSMPHH_9.1.0/com.ibm.guardium91.doc/assess_harden/topics/cas.html
CAS is an agent installed on the database server and reports to the Guardium system whenever a monitored entity have changed, either in content or in ownership or permissions. You install a CAS client on the database server system. Once the CAS client has been installed on the host, you configure the actual change auditing functions from the Guardium portal. 
The CAS server is a component of Guardium and runs on the Guardium system. 
Reference: https://www-01.ibm.com/support/knowledgecenter/SSMPHH_9.1.0/com.ibm.guardium91.doc/assess_harden/topics/cas.html
Question 10
A Guardium administrator manages an environment containing four standalone Collectors. The administrator has been asked to provide a weekly report showing all Data Manipulation Language (DML) SQL statements performed by all database administrators on all databases. The administrator does not want to run the report on each Collector. 
What should the administrator do to simplify this task and run the report in only one place every week?
  1. Replace the 4 Collectors with one Aggregator.
  2. Create an Enterprise Report on one Collector combining the data.
  3. Add a Guardium Aggregator to the environment. Create and run the report on the Aggregator.
  4. Install a Configuration Auditing System (CAS) on each Database Server. Configure the CAS Client to send data to a Collector. Create and run the report on the Collector.
Correct answer: C
Explanation:
Central Manager/Aggregator –The Central Manager is a single point of management for the entire IBM InfoSphere Guardium deployment. With the Central Manager, customers can define enterprise-wide policies, alerts, queries and reports, install patches, push configuration and perform a variety of other administrative tasks from a single console. In addition, data from multiple collectors can be aggregated to the Aggregation Server to provide holistic views and generate enterprise-level reports. Incorrect:Not D: CAS does not monitor DML SQL Statements. Databases can be affected by changes to the server environment; for example, by changing configuration files, environment or registry variables, or other database or operating system components, including executable files or scripts used by the database management system or the operating system. CAS tracks such changes and reports on them. The data is available on the Guardium system and can be used for reports and alerts. Reference: http://www-01.ibm.com/support/docview.wss?uid=swg27039720
Central Manager/Aggregator –The Central Manager is a single point of management for the entire IBM InfoSphere Guardium deployment. With the Central Manager, customers can define enterprise-wide policies, alerts, queries and reports, install patches, push configuration and perform a variety of other administrative tasks from a single console. In addition, data from multiple collectors can be aggregated to the Aggregation Server to provide holistic views and generate enterprise-level reports. 
Incorrect:
Not D: CAS does not monitor DML SQL Statements. 
Databases can be affected by changes to the server environment; for example, by changing configuration files, environment or registry variables, or other database or operating system components, including executable files or scripts used by the database management system or the operating system. CAS tracks such changes and reports on them. The data is available on the Guardium system and can be used for reports and alerts. 
Reference: http://www-01.ibm.com/support/docview.wss?uid=swg27039720
CONNECT US
HOW TO OPEN VCE FILES

Use VCE Exam Simulator to open VCE files
Avanaset

HOW TO OPEN VCEX AND EXAM FILES

Use ProfExam Simulator to open VCEX and EXAM files
ProfExam Screen

ProfExam
ProfExam at a 20% markdown

You have the opportunity to purchase ProfExam at a 20% reduced price

Get Now!