HP0-A100 Online Practice Questions and Answers

What is the primary feature of Connector Appliance?

A. Aggregates events to reduce the quantity sent to the manager

B. Long-term storage of data

C. Used to develop the Network Model

D. Supports bulk operations on all Smart Connectors

Which event schema group describes the Smart Connector that reported the event to the manager?

A. Root

B. Agent

C. Source

D. Device

What is an example of a CIP package used for compliance?

A. DOD

B. NSA

C. PCI

D. MOD

What is the main purpose of the ArcSight ESM?

A. To archive raw event data

B. To correlate events and provide real-time threat detection

C. To centrally manage Smart Connector configuration

D. To manage multiple retention policies

What is the extension used to deliver and install CIPs?

A. aup

B. cab

C. cip

D. arb

Which type of ESM resources are imported from an external Identity Management System by using IdentityView?

A. Actors

B. Asset Categories

C. Users

D. Customers

Which component performs event aggregation?

A. ESM Database

B. ESM Manager

C. CORR-Engine

D. Smart Connectors

The ArcSight ESM uses which component to gather events?

A. Nodes

B. Smart Connectors

C. Collectors

D. Adapters

Which function is performed by the ArcSight ESM Manager?

A. Aggregates events

B. Normalizes event data into CEF fields

C. Receives raw events from devices spread throughout the network

D. Prioritizes events

What does the ArcSight ESM prioritize?

A. Every event

B. Correlated events only

C. Forwarded events only

D. Every event exclusive of audit and monitor events