McAfee MA0-104 - Intel Security Certified Product Specialist Exam
Page: 2 / 14
Total 70 questions
Question #6 (Topic: )
If the SIEM Administrator deploys the Enterprise Security Manager (ESM) using the
Federal Information Processing Standards (FIPS) encryption mode, which of the following
types of user authentication will NOT be compliant with FIPS?
Federal Information Processing Standards (FIPS) encryption mode, which of the following
types of user authentication will NOT be compliant with FIPS?
A. Windows Active Directory
B. Radius
C. Lightweight Directory Access Protocol (LDAP)
D. Local Authentication
Answer: B
Question #7 (Topic: )
In the Default Summary view on the Enterprise Security manager (ESM). which of the
following panels shows the baseline averages?
following panels shows the baseline averages?
A. Event Summary
B. Normalized Event Summary
C. Event Distribution
D. Baseline Average
Answer: C
Question #8 (Topic: )
Which of the following is the minimum number of CPUs required to build a virtual image
Enterprise Security Manager (ESM)?
Enterprise Security Manager (ESM)?
A. Two units
B. Four units
C. Six units
D. Eight units
Answer: D
Question #9 (Topic: )
The ESM supports five Authentication methods. The default login option uses the standard
Username and Password format. Which of the following are the other four methods
available?
Username and Password format. Which of the following are the other four methods
available?
A. RADIUS, TACACS+, Active Directory, LDAP.
B. Active Directory, NTLM, TACACS+, LDAP.
C. LDAP, Active Directory, RADIUS, CAC.
D. CAC, LDAP, RADIUS,TACACS+.
Answer: C
Question #10 (Topic: )
The normalization value assigned to each data-source event allows
A. increased usability via views based on category rather than signature ID
B. more efficient parsing of each event by the McAfee SIEM Receiver.
C. quicker ELM searches
D. the McAfee ESM database to retain fewer events overall.
Answer: A
