There are three types of ArcSight SmartConnectors. Which type is used primarily to execute commands on a device to retrieve, modify, or analyze its configuration?
A. Event Connectors
B. Scanner Connectors
C. CounterACT Connectors
D. SNMP Connectors
Which three attributes are used to describe an Asset Model?
A. vulnerabilities, locations, and asset categories
B. locations, asset categories, and threats
C. asset types, asset categories, and locations
D. vulnerabilities, addresses, and threats
What represents the current status in the investigation of a Case?
A. Notifications
B. Cases
C. Annotations
D. Stages
Which statement is true about the ArcSight Web Server?
A. It is not required.
B. It is required if users will be accessing ESM through a web browser.
C. It should always be installed on the same server as the ArcSight Manager.
D. It can be used to create rules and view reports.
Which statement is true about the ArcSight Web interface?
A. Inline filters cannot be used from the ArcSight Web interface.
B. Data Monitors cannot be added to a Dashboard from the ArcSightWebinterface.
C. Reports cannot be formatted from the ArcSight Web interface.
D. Cases cannot be modified from the ArcSight Web interface.
What is an offline partition?
A. a partition that resides within the database
B. a partition that exceeds the online retention threshold and is therefore archived
C. a partition reserved for a future date
D. data that is no longer needed by ESM
Which statements are true about event lifecycle data collection and the event processing phase? (Select two.)
A. Model confidence is determined, based on details provided by the event source.
B. Each line of incoming log data is processed as a separate event.
C. Event severity is determined, based on an Active List of recent severity factors.
D. Values are normalized and entered into the ArcSight Event Schema.
Which Event Schema group contains data fields, which describe the connector reporting an event?
A. Event
B. Device
C. Source
D. Agent
Which statements are true about user groups? (Select two.)
A. They can be based on departments, permission levels, or roles.
B. They control which users are allowed to log in to the Console.
C. They can be nested within other user groups.
D. They are enabled or disabled using Access Control Lists.
At most, a zone can belong to how many networks?
A. 0 (Zones do not belong to networks, zones contain networks.)
B. 1
C. 2
D. as many as needed based on the Network Model
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only HP exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your HP0-A116 exam preparations and HP certification application, do not hesitate to visit our Vcedump.com to find your solutions here.