The manager of a department suspects someone is trying to break into computers at night. You are asked to find out if this is the case. What logging would you enable?Select one:operating systemWindowsauditsyslog
Question
The manager of a department suspects someone is trying to break into computers at night. You are asked to find out if this is the case. What logging would you enable?Select one:operating systemWindowsauditsyslog
Solution
To find out if someone is trying to break into computers at night, you would enable audit logging. Audit logs record events for security purposes, such as tracking user activities or detecting potential malicious activities. In a Windows environment, this would typically involve enabling security auditing through the Windows Event Viewer.
Similar Questions
You want to use a Microsoft device management tool that can identify problems with applications and analyze log data.Which of the following tools provides these features?answerAzure MonitorEndpoint ManagerWindows DiagnosticsIntune
You want to use a Microsoft device management tool that can identify problems with applications and analyze log data.Which of the following tools provides these features?answerWindows DiagnosticsAzure MonitorIntuneEndpoint Manager
Identify the type of logging that concentrates on identifying and responding to activities such as threats, viruses, malware, and data loss.Group of answer choicesSecurity loggingApplication debug loggingOperational loggingCompliance logging
1.Question 1What is the primary purpose of logs during incident investigation?1 pointTo improve user experienceTo manage alert volumesTo provide a record of event detailsTo identify and diagnose system issues2.Question 2A security analyst wants to determine whether a suspicious login was successful. Which log type would be most useful for this purpose?1 pointAuthenticationNetworkSystem Firewall3.Question 3In the following log, what action does the log entry record?[ALLOW: wikipedia.org] Source: 192.167.1.1 Friday, 10 June 2022 11:36:121 point192.167.1.1SourceALLOWFriday, 10 June 2022 11:36:124.Question 4Fill in the blank: _____ is the process of examining logs to identify events of interest. 1 pointLog analysisLoggingLog forwarderLog file
Karl, a security professional at an organization, while analyzing Windows event logs identified that a threat actor made multiple attempts to gain access to the organization’s network but failed to do so, due to strong security controls deployed on the network. Identify the type of event data discussed in the above scenario.Group of answer choicesFailure auditWarningErrorSuccess audit
Upgrade your grade with Knowee
Get personalized homework help. Review tough concepts in more detail, or go deeper into your topic by exploring other relevant questions.