Name: IBM C2150-614 Exam
Brand: Pass4Success
SKU: C2150-614
Price: 69.00 USD
Availability: InStock
Rating: 4.7 (73 reviews)

Disscuss IBM C2150-614 Topics, Questions or Ask Anything Related

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!

Free IBM C2150-614 Exam Actual Questions

The questions for C2150-614 were last updated On 24-02-2017

Question #1

A Deployment Professional is asked to help create a virtual QRadar SIEM deployment containing a dedicated IBM Security QRadar Console, IBM Security QRadar Risk Manager, and 1 each of IBM Security QRadar SIEM Event and Flow Processors. It needs to handle 20,000 EPS/ 300,000 FPM.

What are the total minimum specs (CPU/RAM) to accomplish this goal?

A28 processors and 72GB RAM

B32 processors and 56GB RAM

C36 processors and 32GB RAM

D40 processors and 192GB RAM

Reveal Solution

Correct Answer: D

xx28 collectors and processors use 28 processors and 128 GB of RAM.

xx05 collectors and processors use 12 processors and 64 GB of RAM.

Pair xx28 collectors and processors with the QRadar 3128 (Console) to increase performance.

Note: The IBM Security QRadar 3128 with an upgrade license has the capacity of 300,000 FPM and 15,000 EPS.

References: http://www.ibm.com/support/knowledgecenter/SS42VS_7.2.8/com.ibm.qradar.doc/c_qradar_comps2_deployment_guide.html

Question #2

What is the procedure to configure basic system settings on an IBM Security QRadar V7.2.7 system once the System Configuration panel is accessed under the Admin Tab?

A1. System Settings > (Configure Settings) > Save 2. Admin Tab > Advanced > Deploy Changes

B1. Configure Settings > Save 2. Admin Tab > Advanced > Deploy Changes

C1. System Settings > (Configure Settings) > Save 2. Admin Tab > Advanced > Deploy Full Configuration

D1. Configure Settings > Save 2. Admin Tab > Advanced > Deploy Full Configuration

Reveal Solution

Correct Answer: C

Procedure to configure system settings.

References: http://www.ibm.com/support/knowledgecenter/fr/SS42VS_7.2.1/com.ibm.qradar.doc_7.2.1/t_qradar_adm_conf_sys_setting.html

Question #3

A Deployment Professional is investigating why a rule has stopped triggering. The rule is configured to monitor certain events from a specific syslog based Log Source. Upon investigation, the Deployment Professional observes that no events are being received by that Log Source in the Log Activity Tab.

The customer has recently reconfigured the sending system but demonstrates that events are still being sent to the QRadar Event Processor. After running a tcpdump on the Event Processor, events are indeed observed coming from the IP address of the sending system.

How can the Deployment Professional find an event in the QRadar GUI to discover which Log Source the events are being processed?

ALog Activity Tab -> Add Filter -> ''Parameter Field'' enter ''Hostname'' and enter a hostname

BNetwork Activity Tab -> Advanced Search -> ''Parameter Field'' select ''Hostname'' and enter a hostname

CLog Activity Tab -> Add Filter -> ''Parameter Field'' select ''PayLoad Contains'' and enter a unique identifier based off the tcpdump data

DNetwork Activity Tab -> Add Filter -> ''Parameter Field'' select ''Payload Contains'' and enter a unique identifier based off the tcpdump data

Reveal Solution

Correct Answer: A

The Network Activity tab allows you to investigate flows being sent to Qradar Network Anomaly Detection in real-time, perform powerful searches, and view network activity using configurable time-series charts. A flow is a communication session between two hosts. Viewing flow information allows you to determine how the traffic is communicated, what is communicated (if the content capture option is enabled), and who is communicating. Flow data also includes details such as protocols, ASN values, IFIndex values, and priorities.

Question #4

What are the minimum bandwidth and latency parameters required for a high availability IBM Security QRadar SIEM V7.2.7 cluster to assure consistency of data if a company has disaster recovery in another city?

A1 Gpbs of bandwidth and less than 2 milliseconds of latency

B2 Gbps of bandwidth and less than 5 milliseconds of latency

C4 Gbps of bandwidth and less than 2 milliseconds of latency

D10 Gbps of bandwidth and less than 5 milliseconds of latency

Reveal Solution

Correct Answer: A

To configure high-availability (HA), you must consider the bandwidth and latency between the primary and secondary HA hosts.

If your HA cluster is using disk synchronization, the following conditions must be met:

* The connection between the primary and secondary HA host has a minimum bandwidth of 1 gigabits per second (Gbps).

* The latency between the primary and secondary HA host is less than 2 milliseconds (ms).

References: http://www.ibm.com/support/knowledgecenter/SS42VS_7.2.7/com.ibm.qradar.doc/c_qradar_ha_link_band_latency.html

Question #5

A Deployment Professional is working with a new customer that wishes to deploy IBM Security QRadar SIEM V7.2.7 using a cloud solution.

Which two providers are officially supported for this functionality? (Choose two).

AIBM cloud

BSoftLayer

CMicrosoft Azure

DAmazon Web Services

EDigitalOcean Droplets

Reveal Solution

Correct Answer: A, B

A: IBM QRadar on Cloud allows you to enjoy the benefits and customer support of IBM Security QRadar, but in a hosted deployment.

B: QRadar on Cloud has all the capabilities of IBM Security QRadar SIEM hosted in IBM SoftLayer.

References: http://www.ibm.com/support/knowledgecenter/SSKMKU/com.ibm.qradar.doc_cloud/c_qradar_hosted_overview.html

Unlock all C2150-614 Exam Questions with Advanced Practice Test Features:

Select Question Types you want
Set your Desired Pass Percentage
Allocate Time (Hours : Minutes)
Create Multiple Practice tests with Limited Questions
Customer Support

Get Full Access Now