IBM C1000-156 IBM Security QRadar SIEM V7.5 Administration Online Training
IBM C1000-156 Online Training
The questions for C1000-156 were last updated at Dec 24,2024.
- Exam Code: C1000-156
- Exam Name: IBM Security QRadar SIEM V7.5 Administration
- Certification Provider: IBM
- Latest update: Dec 24,2024
When configuring a log source, which protocols are used when receiving data into the event ingress component?
- A . SFTR HTTP Receiver, SNMP
- B . Syslog, HTTP Receiver, SNMP
- C . Syslog, FTP Receiver, SNMP
- D . Syslog, HTTP Receiver, JDBC
Which User Management option manages the QRadar functions that the user can access?
- A . Security Profile
- B . Admin Role
- C . Security Options
- D . User Role
Which is a benefit of a lazy search?
- A . Getting results that are limited to a specific range
- B . Providing every result no matter the quantity of the search results
- C . Finding lOCs quickly
- D . Searching across domains for any configured user
Which profile database does the Server Discovery function use to discover several types of servers on a network?
- A . Flow profile database
- B . Network profile database
- C . Domain profile database
- D . Asset profile database
Which command does an administrator run in QRadar to get a list of installed applications and their App-ID values output to the screen?
- A . opt/qradar/support/deployment_info.sh
- B . /opt/qradar/support/recon ps
- C . /opt/qradar/support/recon connect 1005
- D . /opt/qradar/support/threadTop.sh
From which two (2) resources can an administrator download QRadar security content?
- A . QRadar Application Repository
- B . IBM Applications Database
- C . IBM Fix Central
- D . IBM App Central
- E . IBM Security App Exchange
Which authentication type in QRadar encrypts the username and password and forwards the username and password to the external server for authentication?
- A . RADIUS authentication
- B . Two-factor authentication
- C . TACACS authentication
- D . System authentication
In which QRadar section can the administrator view the license giveback rate?
- A . Admin tab > system settings
- B . Log Activity tab > AQL query in the Advanced Search "select LicenseGiveback from license"
- C . Admin tab > License pool management
- D . Log Activity tab by searching for the term "giveback" in the Quick Filter
In the QRadar GUI. you notice that no new offenses were generated today.
A review of the notifications shows:
MPC: Unable to create new offense. The maximum number of active offenses has been reached.
What is the default value of the maximum number?
- A . 3500
- B . 1500
- C . 5000
- D . 2500
What Iwo things are required for an administrator to deobfuscate data in QRadar?
- A . Public key and the password for the key that is used to obfuscate data
- B . Private key and the password for the key that is used to obfuscate data
- C . Private key and public key that is used to obfuscate data
- D . Public key and the password for the private key that is used to obfuscate data