Which tools are used to view events in ArcSight ESM? (Select two.)
A. Active Channel
B. Knowledge Base article
C. Dashboard
D. Annotations
What is the name of the resource you can use to override the default ArcSight mapping of IP addresses to geographic regions?
A. zones
B. destinations
C. locations
D. categories
Which statements are true about reports? (Select two.)
A. Reports can be based on Cases, Trends, Session Lists, and Events.
B. Archived reports must be restored before they can be used again
C. Reports can be scheduled to run yearly, monthly, weekly, daily, or hourly.
D. Reports cannot be based on Session Lists.
E. Only scheduled reports can be archived.
What does Partition Archiving allow you to specify?
A. the number of partitions to keep offline
B. the number of partitions that remain online
C. the compression ratio to be used in partitioning
D. the amount of data to store in a partition
Report run start time, output format for report results, email distribution for report results, and report filters are all examples of what?
A. report parameters
B. report formats
C. report data sources
D. report attributes
What are the three types of Data Monitors?
A. event type, matching conditions, and non-event
B. event-based, correlation, and non-event based
C. event type, correlation, and aggregation matching
D. event-based, event graph, and non-event based
Which command is a valid investigate command?
A. Add [Attribute=Value] to Filter
B. Create [Filter=Value]
C. Add [Value!=Condition] to Filter
D. Add to Filter [List of Related Conditions]
During which process is the first user created for access to ESM?
A. during initial configuration of server-side SSL trust store
B. during the authentication phase of the SmartConnector Installation
C. during installation of the ArcSight Console
D. during installation of the ArcSight Manager
Which role does the Active Channel play in testing a rule?
A. The rule can be replayed and verified against real-time events in the Active Channel.
B. The rule can be replayed against historical events in the Active Channel.
C. The rule cannot be tested with the Active Channel because it will create additional invalid Correlation events.
D. The rule can only be tested with an Active Channel by an administrator.
Which ArcSight Manager directory should be backed up in order to preserve the server.properties file?
A. user directory
B. config directory
C. properties directory
D. jre directory
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only HP exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your HP0-A116 exam preparations and HP certification application, do not hesitate to visit our Vcedump.com to find your solutions here.