Exam4Training

Which of the following statements is false regarding the Log Inspection Protection Module?

Which of the following statements is false regarding the Log Inspection Protection Module?
A . Custom Log Inspections rules can be created using the Open Source Security (OSSEC) standard.
B. Deep Security Manager collects Log Inspection Events from Deep Security Agents at every heartbeat.
C. The Log Inspection Protection Module is supported in both agent-based and agentless environments.
D. Scan for Recommendations identifies Log Inspection rules that Deep Security should implement.

Answer: C

Explanation:

Log Inspection requires running some analysis on the computer and is not supported in Agentless deployments.

Explication: Study Guide – page (310)

Exit mobile version