Independence Day Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: netdisc

McAfee MA0-104 Intel Security Certified Product Specialist Exam Practice Test

Demo: 10 questions
Total 70 questions

Intel Security Certified Product Specialist Questions and Answers

Question 1

Event Aggregation is performed on which of the following fields?

Options:

A.

Signature ID, Destination IP, User ID

B.

Source IP, Destination IP, User ID

C.

Signature ID, Source IP, Destination IP

D.

Signature ID, Source IP, User ID

Question 2

Which of the following is the minimum amount of disk space required to install the McAfee Enterprise Security Manager (ESM) as a virtual machine?

Options:

A.

100 GB

B.

250GB

C.

500 GB

D.

1 TB

Question 3

If there is no firewall at the border of the network, which of the following could be used to simulate the protection a firewall provides?

Options:

A.

Load balancer

B.

Router Access Control List (ACL)

C.

Switch port blocking

D.

An email gateway

Question 4

Where can the ESM event database archive inactive partitions?

Options:

A.

Storage on the hard disk of the ESM itself

B.

Storage on the hard disk of the backup ESM

C.

Storage on the ELM

D.

Remote storage connected to the ESM

Question 5

The Database Event Monitor (DEM) appliance prevents disclosure of Personally Identifiable Information (Pll) by employing which of the following features to those types of information?

Options:

A.

Obfuscation masks

B.

Pll filter masks

C.

Sensitive data masks

D.

Filter masks

Question 6

The McAfee Advanced Correlation Engine (ACE) can t>e deployed in one of two modes which are.?

Options:

A.

Threshold and Anomaly.

B.

Prevention and Detection.

C.

Stateful and Stateless.

D.

Historical and Real-Time.

Question 7

A McAfee Event Receiver (ERC) will allow for how many Correlation Data Sources to be configured?

Options:

A.

1

B.

3

C.

5

D.

10

Question 8

Which of the following two appliances contain Event databases?

Options:

A.

ELM and REC

B.

ESM and ELM

C.

ESM and REC

D.

REC and ADM

Question 9

McAfee's SIEM provides awareness of illicit behavior across multiple internal systems via

Options:

A.

default data-source events.

B.

default correlation events

C.

default alerts.

D.

default reports.

Question 10

When viewing the Policy Tree, what four columns are displayed within the Rules Display pane?

Options:

A.

Action, Seventy, Aggregation, Copy Packet

B.

Action, Seventy, Normalization, Copy Packet

C.

Action, Seventy, Aggregation, Drop Packet

D.

Enable, Severity, Aggregation, Copy Packet

Demo: 10 questions
Total 70 questions