Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

BCS CISMP-V9 Exam - Topic 2 Question 86 Discussion

Actual exam question for BCS's CISMP-V9 exam
Question #: 86
Topic #: 2
[All CISMP-V9 Questions]

One traditional use of a SIEM appliance is to monitor for exceptions received via syslog.

What system from the following does NOT natively support syslog events?

Show Suggested Answer Hide Answer
Suggested Answer: B

Syslog is a standard for message logging and allows devices to send event notification messages across IP networks to event message collectors - also known as Syslog servers or SIEM (Security Information and Event Management) systems. Native support for syslog is commonly found in various network devices and Unix/Linux-based systems.

Enterprise Wireless Access Points,Linux Web Server Appliances, andEnterprise Stateful Firewallstypically have built-in capabilities to generate and send syslog messages to a SIEM system for monitoring and analysis.

Windows Desktop Systems, on the other hand, do not natively support syslog because Windows uses its own event logging system known as Windows Event Log.While it is possible to configure Windows systems to send logs to a SIEM appliance, this usually requires additional software or agents to translate Windows Event Log messages into syslog format before they can be sent1.


by Pamella at Sep 13, 2024, 09:49 PM

Limited Time Offer

25%

Off

Get Premium CISMP-V9 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Staci
6 months ago
I thought all firewalls supported syslog events. Interesting!
upvoted 0 times
...
Laurel
6 months ago
Enterprise Wireless Access Points usually handle syslog too.
upvoted 0 times
...
Launa
6 months ago
Wait, are you sure about that? I thought they could be configured for it.
upvoted 0 times
...
Terrilyn
7 months ago
Totally agree, it's definitely not built-in.
upvoted 0 times
...
Dana
7 months ago
Windows Desktop Systems don't natively support syslog.
upvoted 0 times
...
Ty
7 months ago
I vaguely recall that enterprise wireless access points might not support syslog out of the box, but I’m not completely confident.
upvoted 0 times
...
Floyd
7 months ago
I’m leaning towards the Windows Desktop Systems as the answer, but I could be mixing it up with something else.
upvoted 0 times
...
Nikita
7 months ago
I practiced a similar question where we had to identify which devices support syslog, and I feel like firewalls usually do.
upvoted 0 times
...
Zachary
8 months ago
I think I remember that Windows systems can log events, but I'm not sure if they use syslog natively.
upvoted 0 times
...
Tori
8 months ago
I'm pretty confident the answer is B. Windows Desktop Systems don't natively support syslog, while the other options like Linux servers and network devices typically do. This seems like a straightforward question.
upvoted 0 times
...
Desire
8 months ago
Okay, let's see. Enterprise Wireless Access Points, Windows Desktop Systems, and Linux Web Server Appliances all seem like they would support syslog. I'm guessing the Enterprise Stateful Firewall is the one that doesn't natively support it.
upvoted 0 times
...
Carlee
8 months ago
Hmm, I'm a bit unsure about this one. I know syslog is a common logging protocol, but I'm not sure which of these systems wouldn't support it natively. I'll have to think this through.
upvoted 0 times
...
Britt
8 months ago
This looks like a straightforward question about syslog support. I'll think through the options carefully and choose the one that doesn't natively support syslog.
upvoted 0 times
...
Rosio
8 months ago
This looks tricky, but I'm going to give it my best shot. I'll start by considering the purpose and behavior of each string method.
upvoted 0 times
...
Lauran
2 years ago
I'm going with D) Enterprise Stateful Firewall. Those things are so complex, I bet they have their own proprietary logging system.
upvoted 0 times
...
Francoise
2 years ago
Enterprise Wireless Access Point? Come on, even my grandma's router has syslog these days. That's gotta be the easy one.
upvoted 0 times
...
Nakita
2 years ago
Haha, Windows not supporting syslog? That's like a fish not swimming. Gotta be the right answer!
upvoted 0 times
Mitzie
2 years ago
C) Linux Web Server Appliances.
upvoted 0 times
...
Anjelica
2 years ago
B) Windows Desktop Systems.
upvoted 0 times
...
Kenny
2 years ago
C) Linux Web Server Appliances.
upvoted 0 times
...
Barb
2 years ago
B) Windows Desktop Systems.
upvoted 0 times
...
Kris
2 years ago
A) Enterprise Wireless Access Point.
upvoted 0 times
...
Skye
2 years ago
A) Enterprise Wireless Access Point.
upvoted 0 times
...
...
Annett
2 years ago
That makes sense, Windows Desktop Systems are not typically used for syslog monitoring.
upvoted 0 times
...
Royal
2 years ago
I disagree, I believe the answer is B) Windows Desktop Systems because they do not natively support syslog events.
upvoted 0 times
...
Annett
2 years ago
I think the answer is A) Enterprise Wireless Access Point.
upvoted 0 times
...
Lashandra
2 years ago
Hmm, I'm not so sure about that. I thought all enterprise-grade systems would have syslog support these days. Maybe the firewall is the odd one out here.
upvoted 0 times
...
Sharen
2 years ago
I'm pretty sure the answer is B) Windows Desktop Systems. Syslog is a Linux/Unix-based logging protocol, so Windows desktops wouldn't natively support it.
upvoted 0 times
Glendora
2 years ago
That's correct, Linux Web Server Appliances do support syslog events.
upvoted 0 times
...
Ahmed
2 years ago
C) Linux Web Server Appliances.
upvoted 0 times
...
Nickolas
2 years ago
I agree, Windows Desktop Systems do not natively support syslog events.
upvoted 0 times
...
Johnna
2 years ago
D) Enterprise Stateful Firewall.
upvoted 0 times
...
Viki
2 years ago
C) Linux Web Server Appliances.
upvoted 0 times
...
Carma
2 years ago
B) Windows Desktop Systems.
upvoted 0 times
...
Aimee
2 years ago
Good to know for monitoring exceptions with a SIEM appliance.
upvoted 0 times
...
Coletta
2 years ago
A) Enterprise Wireless Access Point.
upvoted 0 times
...
Louvenia
2 years ago
So, the correct answer is B) Windows Desktop Systems.
upvoted 0 times
...
Ruby
2 years ago
That makes sense, syslog is more commonly used in Linux/Unix environments.
upvoted 0 times
...
Viki
2 years ago
I think you're right, Windows Desktop Systems don't natively support syslog.
upvoted 0 times
...
...

Save Cancel