Free IBM C1000-055 Exam Actual Questions

The questions for C1000-055 were last updated On Nov 4, 2024

Question No. 1

The deployment professional needs to pull events from an HR system that are recorded in a database. Which protocol would be used to collect the data?

Show Answer Hide Answer
Correct Answer: B

Question No. 2

QRadar is configured to periodically update an IP address list from a 3rd party threat intelligence provider using the Threat Intelligence app. The IP address data is used in a CRE rule to create an offense in case a connection attempt toward any IP address on the list is seen.

Which QRadar component stores the collected IP address data?

Show Answer Hide Answer
Correct Answer: B

Question No. 3

A deployment professional sees that there are occasional spikes in the EPS (Events per second). The host has 1000 EPS allocated but the occasional spikes go up to 1185 EPS.

What happens with the events when they go over the allocated amount?

Show Answer Hide Answer
Correct Answer: B

Question No. 4

A deployment professional is working with a client that develops their own in house applications. The customer would like to log events from these applications. Because these applications are hosted on Windows servers inside of the clients DMZ, the client wants to limit the ports on which they will allow access. All logs are written to a flat file named debugJog in the c:\app\logs folder of the host.

Which option is a developed strategy for integrating these logs with QRadar SIEM?

Show Answer Hide Answer
Correct Answer: A

Question No. 5

A deployment professional configures QRadar auto-update with the automatic install option for all update types where automatic install is available.

Assuming all auto-update installations are successful, which update types will need manual installation?

Show Answer Hide Answer
Correct Answer: D