IBM
Exam C2150-606
IBM Security Guardium V10.0 Administration
Version: Demo
[ Total Questions: 10 ]
Question No : 1
A Guardium administrator needs to check the traceroute information between one
appliance and its Central Manager. Which CLI command should the administrator run?
A. iptraf
B. support show iptables
C. show network routes operational
D. support must_gather network_issues
Answer: D
Question No : 2
A Guardium administrator needs to monitor an Oracle database on a production database
server.
Which component does the administrator need to install on this database server that will
monitor the traffic?
A. S-TAP
B. Guardium Collector
C. Guardium Installation Manager (GIM)
D. Configuration Auditing System (CAS)
Answer: D
Question No : 3
AGuardium administrator is using the Classification, Entitlement and Vulnerability
assessment features of the product. Which of the following are correct with regards to
these features? (Select two.)
A. Vulnerability Assessment reports are populated to the Guardium appliance via S-TAP.
B. Classification for databases and files use the same mechanisms and patterns to search
for sensitive data.
C. Entitlement reports are predefined database privilege reports and are populated to the
Guardium appliance via S-TAP.
D. Vulnerability Assessment identifies and helps correct security vulnerabilities and threats
in the database infrastructures.
E. The classification feature discovers sensitive assets including credit card numbers or
national card numbers from various data sources.
Answer: D,E
Question No : 4
A company wants to deploy S-TAPs for 2 groups of database servers located in 2 different
data centers. The current set of Collectors are fully utilized. The Aggregators and Central
Manager can handle more load.
What should a Guardium administrator recommend?
A. Deploy 2 new Collectors, 1 in each data center.
B. Connect S-TAPs directly to Aggregators to avoid network latency.
C. Connect S-TAPs directly to the Central Manager to avoid network latency.
D. Deploy 2 new Collectors in the third data center located in between the 2 data centers.
Answer: A
Question No : 5
A Guardium administrator needs to build new appliances with the latest version of
Guardium. How should the administrator obtain the ISO image?
A. Contact IBM Support.
B. Download fromibm.com
C. Download from IBM Fix Central.
D. Download from IBM Passport Advantage.
Answer: D
Question No : 6
A Guardium administrator needs to use CLI commands to maintain the internal database,
clean static orphans, produce static system reports and to monitor live network traffic
filtered by IP addresses and port numbers.
Which combination of commands should the administrator use for these tasks?
A. diagandiptraf
B. diag and trace_route
C. jptrafandsupport must_gather
D. support must_gatherandshow network verify
Answer: C
Question No : 7
A Guardium administrator manages portal user synchronization by using a Central
Manager.
When a change is made on the Central Manager such as, for example, adding a Guardium
user to a Guardium group, how long should be allowed for the update to be synced with the
managed units in a fully working environment?
A. 0minutes
B. 15 minutes
C. 30 minutes
D. 60 minutes
Answer: D
Question No : 8
Which use cases are covered with the File Activity Monitoring feature? (Select two.)
A. Classify sensitive files on mainframe systems.
B. Encrypts database data files on file systems based on policies.
C. Selectively redacts sensitive data patterns in files based on policies.
D. Provides audit trail of access to files, alert and/or block when unauthorized users or
processes attempt access.
E. Identifies files containing Personally Identifiable Information (Pll) or proprietary
confidential information on Linux Unix Windows (LUW) systems.
Answer: A,E
Question No : 9
AGuardium administrator just finished installing the Guardium product to build a Collector.
The administrator wants to make sure the Collector has the licenses needed to provide
functionality for data activity monitoring, masking and blocking (terminate).
Which of the following lists the minimum licenses the administrator needs to install?
A. Base Collector license.
B. None, the licenses required are already installed automatically by the Guardium product
installer.
C. Base Collector license plus IBM Security Guardium Standard Activity Monitor for
Databases (DAM Standard).
D. Base Collector license plus IBM Security Guardium Advanced Activity Monitor for
Databases (DAM Advanced).
Answer: D
Question No : 10
A Guardium administrator is preparing commands to install or upgrade an S-TAP using the
command line method. Which operating system can use the ktap_allow_module_combos
parameter for the installation and upgrade?
A. AIX
B. Linux
C. Solaris
D. HP-UX
Answer: B