3 - Event Configuration & Use (34%)

Question 1

What table receives events from monitoring systems in approximately real time including details of the issue?

Answer 1

Events [em_event]

Question 2

What table receives alerts generated from the processing of events?

Answer 2

Alerts [em_alert]

Question 3

What are triggers for action that can be apportioned to devices and processes?

Answer 3

Alerts

Question 4

On a daily basis, events older than ________ days are cleared out of the event table via table rotation.

a) 3
b) 5
c) 7
d) 10

Answer 4

b) 5

Question 5

What three services appear on the Service Operations Workspace once the service is set to Operational?

Answer 5

Mapped Application Service
Dynamic CI Group
Manual Service

Question 6

What are the available states of an event?

Answer 6

Ready
Processed
Ignored
Error

Question 7

What is used for event de-duplication?

Answer 7

Message Key

Question 8

What field is important for getting feedback on the event processing? You can check this field to see how the event was processed.

Answer 8

Processing Notes

Question 9

What field is typically one of the fully qualified domain name (FQDN), IP, or MAC address associated with the event?

Answer 9

Node field

Question 10

What field on the event identifies the monitoring tool generating the event?

Answer 10

Source

Question 11

What field on the event is required and if not populated will cause an error state?

Answer 11

Severity

Question 12

What uniquely identifies the event and determines is an existing alert is updated?

Answer 12

Message Key

Question 13

If an event has no source-provided key, the key is ________________________.

Answer 13

auto-populated in alert