Transcription
IBM C2150-606IBM Security Guardium V10.0 AdministrationIBM C2150-606 Dumps Available Here m/c2150-606-dumps.htmlEnrolling now you will get access to 55 questions in a unique set ofC2150-606 dumpsQuestion 1A Guardium administrator plans to use the Guardium Installation Manager (GIM) to install and upgradeagents.Where should the administrator manually install the GIM client for the first time?Options:A. CollectorB. AggregatorC. Database serverD. Central ManagerAnswer: CExplanation:You can use the Guardium Installation manager (GIM) to install and maintain Guardium components onmanaged servers.The GIM component includes a GIM server, which is installed as part of the Guardium system, and a GIMclient, which must be installed on servers that host databases that you want to monitor.Reference: HH picsV90/gim intro.htmlQuestion 2A Guardium administrator needs to monitor an Oracle database on a production database server.Which component does the administrator need to install on this database server that will monitor the traffic?Options:A. S-TAPB. Guardium CollectorC. Guardium Installation Manager (GIM)https://www.certification-questions.com
IBM C2150-606D. Configuration Auditing System (CAS)Answer: DExplanation:Configuration Auditing System OverviewDatabases can be affected by changes to the server environment; for example, by changing configurationfiles, environment or registry variables, or other database or operating system components, includingexecutable files or scripts used by the database management system or the operating system. CAS trackssuch changes and reports on them. The data is available on the Guardium system and can be used forreports and alerts.Reference: PHH 9.1.0/com.ibm.guardium91.doc/assess harden/topics/cas.htmlQuestion 3A Guardium administrator is preparing commands to install or upgrade an S-TAP using the command linemethod.Which operating system can use the ktap allow module combos parameter for the installation andupgrade?Options:A. AIXB. LinuxC. SolarisD. HP-UXAnswer: BExplanation:When you are installing InfoSphere Guardium S-TAP on a Linux database server, if the K-TAP loadercannot find a match for your operating system, you might need to get an updated InfoSphere Guardium STAP modules file from IBM Software Support and then rerun the installation script with the --modules optionbefore you can continue with the installation.One step in this process is redo the InfoSphere Guardium S-TAP installation with the --modules option ./guard-stap-os version.sh -- --modules /path/modules-version-identifier.tgz --ktap allow module combosReference: S7B topics/cr install stap linux unsupported kernels.htmlQuestion 4An administrator has a new standalone Guardium appliance that will be placed into production next week.The appliance will monitor traffic from a number of databases with a high volume of traffic. Thehttps://www.certification-questions.com
IBM C2150-606administrator needs to configure the schedule to ensure the appliance internal database does not get fullwith incoming data.Which data management function does the administrator need to configure?Options:A. PurgeB. Data ExportC. Data RestoreD. System BackupAnswer: AExplanation:The quickest way to reduce the DB % Full is to induce a purge of some older data now.Example - If you have "Purge data older than 30 days" set currently, and presuming you have all necessarybackups and Archives of your system and you are happy to attempt to purge off slightly more data nowNote: The DB filling up can be caused by the following - amongst other things* Spikes in the data being captured* A policy setting that allows too much data to be logged in the Internal Database* Keeping too much data on the Internal Database* Collecting data from too many Databases (STAPs)Reference: http://www-01.ibm.com/support/docview.wss?uid swg21511904Question 5A Guardium administrator is setting up a Collector schedule to export data to an Aggregator and Archive itsdata to an Archive storage unit for additional data safety.Given this scenario, which is true regarding the purge schedule?Options:A. The Archive and the Export have independent purge schedules but should not be run at thesame time.B. The Guardium unit would run the Export and Archive before any purge, so you would only seethe lastpurge run each day.C. It would not be possible to configure both on a Collector, the Aggregator should do thearchiving andonly export from the Collector.D. Any time that Data Export and Data Archive are both configured, the purge age must be greaterhttps://www.certification-questions.com
IBM C2150-606thanboth the age at which to export and the age at which to archive.Answer: DExplanation:Any value that is specified for the starting purge date must be greater than the value specified for theArchive data older than value. In addition, if data exporting is active, the starting purge date that is specifiedhere must be greater than the Export data older than valueReference: 9Z 10.0.0/com.ibm.guardium.appmask.doc/adm/archiving data.html?lang enQuestion 6A Guardium administrator needs to check the traceroute information between one appliance and its CentralManager.Which CLI command should the administrator run?Options:A. iptrafB. support show iptablesC. show network routes operationalD. support must gather network issuesAnswer: DExplanation:support must gather network issuesThe command gathers all network information from the appliance and polls hoststhat Guardium interactswith by ping, traceroute, corresponding port probingand other measures. If optional parameter is specified,then it polls only thehost that was specified (if Guardium is configured to do any activity on thishost).Reference: PHH 9.5.0/com.ibm.guardium95.doc/common tools/topics/basic information for ibm support.htmlQuestion 7A Guardium administrator needs to monitor changes to the Oracle configuration file on a production Oracledatabase server.Assuming all valid licenses are applied, which Guardium component does the administrator need to installand where?Options:A. Guardium Installation Manager (GIM) on the Database Server.https://www.certification-questions.com
IBM C2150-606B. Configuration Auditing System (CAS) on the Database Server.C. Configuration Auditing System (CAS) on the Guardium Collector.D. Configuration Auditing System (CAS) on the Database Server and on the Guardium Collector.Answer: DExplanation:CAS is an agent installed on the database server and reports to the Guardium system whenever amonitored entity have changed, either in content or in ownership or permissions. You install a CAS client onthe database server system. Once the CAS client has been installed on the host, you configure the actualchange auditing functions from the Guardium portal.The CAS server is a component of Guardium and runs on the Guardium system.Reference: PHH 9.1.0/com.ibm.guardium91.doc/assess harden/topics/cas.htmlQuestion 8A Guardium administrator manages an environment containing four standalone Collectors. Theadministrator has been asked to provide a weekly report showing all Data Manipulation Language (DML)SQL statements performed by all database administrators on all databases. The administrator does notwant to run the report on each Collector.What should the administrator do to simplify this task and run the report in only one place every week?Options:A. Replace the 4 Collectors with one Aggregator.B. Create an Enterprise Report on one Collector combining the data.C. Add a Guardium Aggregator to the environment. Create and run the report on the Aggregator.D. Install a Configuration Auditing System (CAS) on each Database Server. Configure the CASClient tosend data to a Collector. Create and run the report on the Collector.Answer: CExplanation:Central Manager/Aggregator –The Central Manager is a single point of management for the entire IBMInfoSphere Guardium deployment. With the Central Manager, customers can define enterprise-widepolicies, alerts, queries and reports, install patches, push configuration and perform a variety of otheradministrative tasks from a single console. In addition, data from multiple collectors can be aggregated tothe Aggregation Server to provide holistic views and generate enterprise-level reports.Incorrect:Not D: CAS does not monitor DML SQL Statements.Databases can be affected by changes to the server environment; for example, by changing om
IBM C2150-606files, environment or registry variables, or other database or operating system components, includingexecutable files or scripts used by the database management system or the operating system. CAS trackssuch changes and reports on them. The data is available on the Guardium system and can be used forreports and alerts.Reference: http://www-01.ibm.com/support/docview.wss?uid swg27039720Question 9The Quick Search window does not show up on the GUI of a standalone Collector.What technical feature should the Guardium administrator check first?Options:A. That the Collector has at least 24 GB.B. That the Collector has at least 32 GB.C. That the Collector has at least 64 GB.D. Check the contract and verify whether that feature was purchased.Answer: AExplanation:Guardium Quick Search requires a minimum of 24 GB of RAM and a minimum of 4-core CPU.Reference: http://www-01.ibm.com/support/docview.wss?uid swg27045286Question 10A Guardium administrator needs to upgrade BUNDLE-STAP on a Linux server to the latest version usingGIM.What parameter should the administrator set to ensure the upgrade will not require a reboot of the server?Options:A. KTAP ENABLED 1B. KTAP NO ROLLBACK 1C. KTAP LIVE UPDATE YD. KTAP ALLOW MODULE COMBOS YAnswer: CExplanation:If specifying KTAP LIVE UPDATE Y, no reboot is required.Reference: http://www-01.ibm.com/support/docview.wss?uid swg21644770Would you like to see more? Don't miss our C2150-606https://www.certification-questions.com
IBM C2150-606PDF file ions.com
The Guardium unit would run the Export and Archive before any purge, so you would only see the last purge run each day. C. It would not be possible to configure both on a Collector, the Aggregator should do the archiving and only export from the Collector. D. Any time that Data Export and Data Archive are both configured, the purge age must be .
