IBM C2150-606 Free Practice Questions

NEW QUESTION 1
A Guardium administrator is preparing a command to install Configuration Auditing System (CAS) on a Linux server using the command line method. Which parameter is required?

• A. dir
• B. tapip
• C. java-home
• D. sqlguardip

Answer: D

NEW QUESTION 2
A Guardium administrator needs to configure EMC Centera for Archive and/or Backup.
In addition to the server IP address, what else is required to establish connection with an EMC Centera on the network?

• A. ciipID
• B. PEA file
• C. Shared secret
• D. Certificate signed request (CSR)

Answer: B

NEW QUESTION 3
A Guardium administrator manages an environment containing four standalone Collectors. The administrator has been asked to provide a weekly report showing all Data Manipulation Language (DML) SQL statements performed by all database administrators on all databases. The administrator does not want to run the report on each Collector. What should the administrator do to simplify this task and run the report in only one place every week?

• A. Replace the 4 Collectors with one Aggregator.
• B. Create an Enterprise Report on one Collector combining the data.
• C. Add a Guardium Aggregator to the environmen
• D. Create and run the report on the Aggregator.
• E. install a Configuration Auditing System (CAS) on each Database Serve
• F. Configure the CAS Client to send data to a Collecto
• G. Create and run the report on the Collector.

Answer: C

NEW QUESTION 4
A Guardium administrator has rebuilt an appliance, and wants nowto restore a backup image of the entire database, audit data, and all definitions from Data backup.Which CLI command should the administrator use to accomplish this?

• A. restore config
• B. restore system
• C. restore pre-patch-backup
• D. restore certificate sniffer backup

Answer: B

NEW QUESTION 5
Which use cases are covered with the File Activity Monitoring feature? (Select two.)

• A. Classify sensitive files on mainframe systems.
• B. Encrypts database data files on file systems based on policies.
• C. Selectively redacts sensitive data patterns in files based on policies.
• D. Provides audit trail of access to files, alert and/or block when unauthorized users or processes attempt access.
• E. Identifies files containing Personally Identifiable Information (Pll) or proprietary confidential information on Linux Unix Windows (LUW) systems.

Answer: AE

NEW QUESTION 6
AGuardium environment is set up to send daily reports to users. The users are complaining that their report has not been delivered to their inbox for the past week. What is the first action the Guardium administrator should take in order to diagnose the problem?

• A. Open a ticket with IBM Support.
• B. Pause the User Portal Sync process.
• C. Check in the Aggregation/Archive log.
• D. Check in the Scheduled Job Exceptions.

Answer: D

NEW QUESTION 7
A Guardium administrator needs to monitor an Oracle database on a production database server.
Which component does the administrator need to install on this database server that will monitor the traffic?

• A. S-TAP
• B. Guardium Collector
• C. Guardium Installation Manager (GIM)
• D. Configuration Auditing System (CAS)

Answer: D

NEW QUESTION 8
A Guardium administrator needs to install and configure a physical appliance to ensure network redundancy. Which port should the administrator use to configure IP teaming (bonding)?

• A. ethl only
• B. eth2 only
• C. eth3 only
• D. any port

Answer: D

NEW QUESTION 9
The quard_tap.ini of a UNIX S-TAP is configured with the following parameters:


The administrator must create a policy that will terminate the session on the delete statement in the below scenario: A session is started to the monitored database from client IP 9.9.8.7. In the session the user plans to perform a select statement and then a delete statement.
What actions should the administrator configure?

• A. Rule l - S-GATE Attach Rule 2 - S-GATE Detach
• B. Rule l - S-GATE Detach Rule 2 - S-GATE Terminate
• C. Rule l - S-GATE Attach Rule 2 - S-GATE Terminate
• D. Rule l - S-TAP Terminate Rule 2 - S-GATE Terminate

Answer: A

NEW QUESTION 10
Simple Mail Transfer Protocol (SMTP) has recently been configured on a Guardium appliance. How can the administrator confirm the configuration is correct? (Select 2)

• A. Restart the Anomaly detection process
• B. Send a test email with CLI diag command
• C. From the GUI Alerter page, test the SMTP connection
• D. Create a query in access domain to see the sent messages
• E. Obtain the syslog file from fileserver and check for SMTP messages

Answer: BC

NEW QUESTION 11
During a Guardium deployment planning meeting, the team decides to deploy all S-TAP agents on all Unix/Linux database systems. A Unix/Linux system administrator team manager asks a Guardium administrator if there are any differences between Guardium S-TAPs for AIX and Linux systems that the team should be aware of.
What should be the Guardium administrator's response?

• A. A-TAP is required on all AIX DB Servers.
• B. a server reboot is required to capture shared memory traffic from all databases on AIX.
• C. K-TAP is required on the AIX DB server
• D. The exact uname -a output is required to determine the correct K-TAP module for the server.
• E. K-TAP is required on the Linux DB server
• F. The exact uname -a output is required to determine the correct K-TAP module for the server.

Answer: B

NEW QUESTION 12
A Guardium administrator plans to use the Guardium Installation Manager (GIM) to install and upgrade agents. Where should the administrator manually install the GIM client for the first time?

• A. Collector
• B. Aggregator
• C. Database server
• D. Central Manager

Answer: C

NEW QUESTION 13
A Guardium administrator needs to monitor changes to the Oracle configuration file on a production Oracle database server. Assuming all valid licenses are applied, which Guardium component does the administrator need to install and where?

• A. Guardium Installation Manager (GIM) on the Database Server
• B. Configuration Auditing System (CAS) on the Database Server.
• C. Configuration Auditing System (CAS) on the Guardium Collector.
• D. Configuration Auditing System (CAS) on the Database Server and on the Guardium Collector.

Answer: D

NEW QUESTION 14
AGuardium administrator just finished installing the Guardium product to build a Collector. The administrator wants to make sure the Collector has the licenses needed to provide functionality for data activity monitoring, masking and blocking (terminate).
Which of the following lists the minimum licenses the administrator needs to install?

• A. Base Collector license.
• B. None, the licenses required are already installed automatically by the Guardium product installer.
• C. Base Collector license plus IBM Security Guardium Standard Activity Monitor for Databases (DAM Standard).
• D. Base Collector license plus IBM Security Guardium Advanced Activity Monitor for Databases (DAM Advanced).

Answer: D

NEW QUESTION 15
During the initial phase of the Guardium deployment, the Guardium administrator wants to figure out an ideal time period to purge data from the appliance based on the data load.
Which predefined Guardium report(s) allows the administrator to determine the current database disk usage of the Guardium Appliance?

• A. Disk UtiI report
• B. Aggregation/Archive log
• C. DB Server throughput report
• D. Buff Usage Monitor and System Monitor reports

Answer: D

NEW QUESTION 16
A Guardium administrator needs to use CLI commands to maintain the internal database, clean static orphans, produce static system reports and to monitor live network traffic filtered by IP addresses and port numbers.
Which combination of commands should the administrator use for these tasks?

• A. diag and iptraf
• B. diag and trace_route
• C. jptraf and support must_gather
• D. support must_gather and show network verify

Answer: C

NEW QUESTION 17
A Guardium administrator has an issue with Guardium. The administrator has not seen this particular issue before and needs to get it fixed. To get this resolved, what should the administrator do?

• A. Log a PMR and request an answer from IBM Support.
• B. Log a PMR so IBM Support can contact the custome
• C. Then, while waiting, do a search of the Guardium Knowledge Center and Technotes for known issues and resolutions.
• D. Request IBM Support to initiate a remote session and collect what they need to resolve the issue.
• E. Search Guardium Knowledge Center and Technotes for known issues and resolution
• F. Then, if still needed, collect must_gather information and full problem details required for a new PMR so that IBM Support can review the Problem before contacting the customer.

Answer: D

NEW QUESTION 18
An administrator manages a Guardium environment including 4 Collectors exporting data to an Aggregator. The Collectors export their data daily at 2, 3, 4 and 5 am Eastern Standard Time (EST) respectively. The Collectors receive traffic every day. The logs on all the Collectors confirm data is exported daily without errors, and all the exported files always have dat A Session report is run on the Aggregator at noon EST for data from the last day. Which of the following will ensure there is data in the report?

• A. Schedule Data Purge on the Aggregator to run every day after 5 am EST.
• B. Schedule Data Import on the Aggregator to run at any time of the day.
• C. Schedule Data Import in the Aggregator to run every day before 2 am EST.
• D. Schedule Data Import on the Aggregator to run every day at 6 am EST or later.

Answer: C

NEW QUESTION 19
An administrator previously had an issue with a Guardium system. This was resolved with the assistance from the IBM Guardium support team, who provided the shell script, a CLI command and the encrypted key to execute the uploaded shell script.
Which CLI command should the administrator use to review the commands that were previously run?

• A. fjieserver
• B. support execute showlog
• C. show log external state
• D. support must_gather system_db_info

Answer: B

NEW QUESTION 20
A Guardium administrator noticed that while the data activity monitoring is working fine, the Guardium appliance is slower than usual. The administrator wants to check the current CPU load of the Guardium appliance.
Which predefined Guardium report(s) allows the administrator to determine the current system CPU load of the Guardium Appliance?

• A. CPU Util report
• B. CPU Tracker report
• C. Unit summary and CPU Util report
• D. Buff Usage Monitor and System monitor report

Answer: D

NEW QUESTION 21
AGuardium administrator is registering a new Collector to a Central Manager (CM). The registration failed. As part of the investigation, the administrator wants to identify if the firewall ports are open-How can the administrator do this?

• A. Ask the company's network administrators.
• B. Ask IBM technical support to login as root and verify.
• C. Login as CLI and execute telnet <ip address> <port number>
• D. Login as CLI and execute support show port open <ip address> <port number>

Answer: D

NEW QUESTION 22
A Guardium administrator is planning to build an environment that contains an S-TAP with one primary Collector and one failover Collector. What must the administrator ensure when setting up this environment?

• A. Both Collectors are centrally managed.
• B. There is network connectivity between the S-TAP and both Collectors.
• C. Guardium Installation Manager (GIM) is installed on the Database Server.
• D. in the guard_tap.ini file of the S-TAP set participate_in_load_balancing=l

Answer: B

NEW QUESTION 23
A Guardium administrator observes certain changes to the configuration and policies. How would the administrator identify the changes that were made and who made them?

• A. Review the Audit Process Log report.
• B. Review the sniffer buffer usage report.
• C. Review the /var/log/messages log file.
• D. Review the results of 'Detailed Guardium User Activity' report.

Answer: D

NEW QUESTION 24
Auditors request a report of all unsuccessful login attempts to a database monitored by Guardium. How should a Guardium administrator create such a report?

• A. Add a failed login rule to the policy.
• B. Create a failed login query and report using access domain in Guardium.
• C. Create a failed login query and report using exceptions domain in Guardium.
• D. Create a failed login query and report using application data domain in Guardium.

Answer: C

NEW QUESTION 25
......