RSA Exam 050-11-CARSANWLN01 Topic 5 Question 55 Discussion

Actual exam question for RSA's 050-11-CARSANWLN01 exam

Question #: 55
Topic #: 5

When NetWitness receives a log from an event source that does not currently exist in the Admin. Event Sources list, what does it do?

AWrites the log to the Archiver but not the Decoder

BParses the log to the Decoder, but in transient mode only

CAdds the new Event Source to the existing list of Event Sources

DIgnores the log altogether

Show Suggested Answer

Suggested Answer: C

by Lettie at Mar 30, 2023, 11:09 AM

Limited Time Offer

25%

Off

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!