Summer Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: ecus65

RSA 050-11-CARSANWLN01 - RSA NetWitness Logs & Network Administrator Exam

RSA 050-11-CARSANWLN01 Premium Access     Download Demo    
Page: 1 / 3
Total 71 questions

To add an action to the right-click menu in the Investigation Ul. create a

A.

Right-click action

B.

Profile

C.

Context Hub List

D.

Context Menu Action

Which storage options are available for Archiver storage?

A.

DAC, SAN. and NAS

B.

NAS and SAN

C.

DAS and NAS

D.

JBOD and DAS

To customize your query display in Events View, create

A.

Custom Meta Groups

B.

Custom Column Groups

C.

Profiles

D.

Dashlets

What are the pre-configured roles in RSA NetWitness?

A.

EVENT_ANALYST, INTRUSION_ANALYST SOC-MANAGER, ADMIN, OPERATOR, RESPOND_ADMINlSTRATOR

B.

EVENT_STREAM_ANALYST WAREHOUSE_ANALYST, ARCHIVER_ANALYST, DB_ANALYST ADMINISTRATOR

C.

MALWARE_ANALYST, ESA_ANALYST, REPORT_ANALYST ADMINISTRATOR

D.

ADMINISTRATORS, OPERATORS, ANALYSTS SOC_MANAGERS, MALWARE_ANALYSTS, DATA_PRIVACY_OFFICERS, RESPOND ADMINISTRATOR

In RSA NetWitness. viewing text or image data associated with a session is accessed through a

A.

packet level drill

B.

meta value view

C.

session reconstruction view

D.

decoder analysis view

In order to run Reports against data stored on the Archiver you must

A.

restore data from cold storage to any hot storage device

B.

restore the Archiver data to any Concentrator

C.

add the Archiver to the Reporting Engine's list of configured data sources

D.

add the Archiver to the Concentrator's list of configured data sources

What are the data sources available in RSA NetWitness when creating a Reporting Engine rule?

A.

Short, Long, Truncated

B.

IPDB, ODBC, FileReader

C.

Broker, Concentrator, Decoder

D.

NetWitness DB, Warehouse DB, Respond DB

The NetWitness Trust Model is based on

A.

User ID

B.

User Role

C.

IP address

D.

Hardware address

When storage on the core devices fills to capacity, what happens?

A.

new traffic cannot be ingested

B.

the decoder leverages capacity in the concentrator, and collection continues

C.

the decoder leverages capacity in the broker, and collection continues

D.

the oldest stored sessions are deleted and collection continues

RSA NetWitness services implement what type of access control?

A.

Role-based

B.

Digital Certificate-based

C.

Access Control List (ACL)

D.

Discretionary Access Control (DAC)