Company ABC has employed a firewall, IDS, Antivirus, Domain Controller, and SIEM. The company's domain controller goes down. From which system would you begin your investigation?
SIEM aggregates the logs if implemented properly. Would house all the necessary data needed for an investigation. If there is a misconfig in the SIEM or missing data, then you would go to the DC. but SIEM first
This section is not available anymore. Please use the main Exam Page.312-49 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Ariel235788
1 year agotemboakaten
1 year, 4 months agoXuanXuan
1 year, 6 months ago