March Sale Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70percent

McAfee MA0-104 Intel Security Certified Product Specialist Exam Practice Test

Demo: 10 questions
Total 70 questions

Intel Security Certified Product Specialist Questions and Answers

Question 1

Which of the following is the default port used to communicate between McAfee SIEM devices?

Options:

A.

22

B.

222

C.

21

D.

211

Question 2

Alarms using field match as the condition type allow for selected Actions to be taken when the Alarm condition is met. Which of the following McAfee ePolicy Orchestrator (ePO) Actions can be selected when creating such Alarm?

Options:

A.

Send Events

B.

Collect and Send Properties

C.

Agent Uninstall

D.

Assign Tag with ePO

Question 3

The McAfee Advanced Correlation Engine (ACE) can t>e deployed in one of two modes which are.?

Options:

A.

Threshold and Anomaly.

B.

Prevention and Detection.

C.

Stateful and Stateless.

D.

Historical and Real-Time.

Question 4

The McAfee Enterprise Log Manager (ELM) offers three levels of compression (Low, Medium, and High). By default, the ELM compression level is set to Low. Which of compression (Low, Medium, and High). By default, the ELM compression level is set to Low. Which of the following is the compression ratio for the Medium level?

Options:

A.

17:1

B.

20:1

C.

10:1

D.

14:1

Question 5

Which options within the Receiver properties should be selected to configure the device to respond to ICMP echo requests?

Options:

A.

Receiver ManagementAUpdate Device

B.

Receiver Configuration\lnterface

C.

Connedion\Status

D.

Key Management Key Device

Question 6

When displaying baseline averages using the automatic time range option, baseline data is correlated by using the same time period that is being used for the current query for which of the following past number of intervals?

Options:

A.

Three

B.

Seven

C.

Five

D.

Ten

Question 7

The configuration of a receiver has recently been modified and issues occur. Which command will collect historical data?

Options:

A.

htop

B.

getstatsdata

C.

snmpget

D.

df

Question 8

A security administrator is configuring the Enterprise Security Manager (ESM) to comply with corporate security policy and wishes to restrict access to the ESM to certain users and machines Which of the following actions would accomplish this?

Options:

A.

Configure the Access Control List and setup user accounts

B.

Define user groups and set permissions based on IP

C.

Assign AD users to computer assignment groups

D.

Setup local accounts based on IP Zones

Question 9

The possibility of both data source Network Interface Cards (NICs) using the shared IP and MAC address at the same time is eliminated by using which of the following?

Options:

A.

iSCSI Adapter

B.

iPMICard

C.

PCI Adapter

D.

SAN Card

Question 10

Which of the following features of the Enterprise Log Manager (ELM) can alert the user if any data has been modified?

Options:

A.

Integrity Check

B.

SNMP Trap

C.

Log Audit

D.

ELM Database Check

Demo: 10 questions
Total 70 questions