Security Management System (SMS) Lesson 4: Features and Configuration

Questions and Answers

What is one of the key features of TippingPoint SMS mentioned in the text?

Geo/Location Filtering (correct)

Email Filtering

MAC Address Filtering

Social Media Filtering

How does TippingPoint SMS provide enhanced context and reporting on the traffic of a particular user?

By monitoring web browsing history

By tracking social media activity

By integrating with Active Directory (AD) (correct)

By analyzing email content

Which components of a user's information are tracked and available for forensics, reporting, and filtering results by TippingPoint SMS?

Social media activity, IP history, user group

MAC Address, domain, machine

User name, domain, machine (correct)

IP address, user group, web history

What can administrators see with TippingPoint SMS regarding the IP history of a particular AD user?

IP history

What type of data can be exported for visualization and analysis with TippingPoint SMS?

Network flow data statistics

How does TippingPoint SMS integrate with third-party security solutions?

Using APIs

What does TippingPoint SMS provide visibility, enhanced context, and reporting on?

Network traffic

What can TippingPoint SMS be configured to detect and block based on within a geographic region or country?

Network traffic based on a computer’s IP address and host name

What is the purpose of Quarantine Protection in the Security Management System?

To automate response to security events

What does the Advanced Security Policy Definition in the Security Management System allow IT administrators to do?

Define security policies using different parameters

How does the Threat Digital Vaccine (Threat DV) service enhance security policies in the Security Management System?

By adjusting security policies based on reputation tags

What is one of the uses of the Threat Insights Portal in the SMS?

Providing threat insights for IT administrators

In what circumstances can a user be migrated to a secure VLAN in the Security Management System?

Only if they receive a high Reputation Score tag

What does the ‘Quarantine Protection' feature enable IT administrators to do?

Specify an action in response to a security event

How are IPS security policies defined in the Security Management System?

Based on various parameters including physical segments, VLAN, and reputation tags

What is the main function of the Security Management System Appliance's Quarantine Protection?

To automate response to detected security events

What are the three predefined basic roles in the Security Management System (SMS)?

Superuser, admin, operator

Can the predefined system roles be modified in the SMS?

No, they cannot be modified

When creating a new role in the SMS, can you select a base system role to initialize it?

Yes, you can select any predefined system role as a base

What happens when you create a new role in the SMS based on an existing system role?

The new role inherits all capabilities from the existing role

What is the purpose of user groups in the SMS?

To define user access permissions at a granular level

How does the SMS define the superuser group?

It's a group with full administrative access to the SMS

What is the primary purpose of allowing user roles to be expanded or limited?

To adapt user permissions according to changing organizational needs

Why are predefined user roles used as starting points when initializing new roles?

To ensure consistency in role capabilities across the system

Can user groups in the SMS be customized according to specific requirements?

Yes, user groups can be fully customized based on organizational structure