Trend Deep-Security-Professional Exam - Topic 1 Question 9 Discussion

Actual exam question for Trend's Deep-Security-Professional exam

Question #: 9
Topic #: 1

[All Deep-Security-Professional Questions]

A Deep Security administrator wishes to monitor a Windows SQL Server database and be alerted of any critical events which may occur on that server. How can this be achieved using Deep Security?

AThe administrator could install a Deep Security Agent on the server hosting the Win-dows Server 2016 database and enable the Integrity Monitoring Protection Module. A rule can be assigned to monitor the Windows SQL Server for any modifications to the server, with Alerts enabled.

BThe administrator could install a Deep Security Agent on the server hosting the Win-dows Server 2016 database and enable the Log Inspection Protection Module. A rule can be assigned to monitor the Windows SQL Server for any critical events, with Alerts enabled.

CThe administrator could install a Deep Security Agent on the server hosting the Win-dows Server 2016 database and enable the Intrusion Prevention Protection Module. A Recommendation Scan can be run and any suggested rule can be assigned to monitor the Windows SQL Server for any vulnerabilities, with Alerts enabled.

DThis can not be achieved using Deep Security. Instead, the administrator could set up log forwarding within Window SQL Server 2016 and the administrator could monitor the logs within the syslog device.

Show Suggested Answer

Suggested Answer: B

by Dominque at Nov 20, 2022, 10:38 PM

Limited Time Offer

25%

Off

Get Premium Deep-Security-Professional Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Gregoria

4 months ago

Just to clarify, does it work with SQL Server 2016 specifically?

upvoted 0 times

...

Lemuel

4 months ago

I disagree with D, Deep Security can definitely handle this.

upvoted 0 times

...

Ruthann

4 months ago

Wait, can Deep Security really do all that? Sounds too good to be true!

upvoted 0 times

...

Laquita

4 months ago

I think A is better for integrity checks, though.

upvoted 0 times

...

Arletta

4 months ago

Option B is the way to go for monitoring critical events!

upvoted 0 times

...

Arleen

5 months ago

I don't think option D is correct. Deep Security should be able to monitor SQL Server events directly, right?

upvoted 0 times

...

Elbert

5 months ago

I feel like we had a practice question that mentioned using the Intrusion Prevention module, but I can't recall if that was specifically for SQL Server.

upvoted 0 times

...

Bette

5 months ago

I'm not entirely sure, but I remember something about Integrity Monitoring being more about file changes rather than event logging.

upvoted 0 times

...

Azalee

5 months ago

I think we discussed using the Log Inspection module for monitoring SQL Server events in class. It seems like a good fit for this scenario.

upvoted 0 times

...

Georgeanna

5 months ago

I'm pretty sure the answer is C, since the question specifically asks about finding a list of inactive sensors, and the Falcon platform should have a report for that.

upvoted 0 times

...

Kasandra

5 months ago

Hmm, I'm not sure. Semantic segmentation could also work to break down the receipt into its different components. I'll have to think this through a bit more.

upvoted 0 times

...

Winfred

5 months ago

This is a solid performance testing question. I'd start by defining the key scenarios, then determine the expected volumes and performance goals. The cloud environment size is an interesting twist, but I think I can work that in as well.

upvoted 0 times

...

Irene

5 months ago

Okay, I think I've got it. The production plan is used to project future cash needs, which is directly related to financial planning. So I'll select option D.

upvoted 0 times

...