C2150-609無料問題集「IBM Security Access Manager V9.0 Deployment」

質問 1

An IBM Security Access Manager V9.0 systems deployment professional needs to protect a back-end web applications from SQL injection attacks that match signatures from the IBM X-Force signature database.
Which action needs to be performed?

（A）Web Content Protection must be enabled and a Registered Resource must be specified.

（B）Simulation Mode must be enabled and a Risk Profile must be specified.

（C）Simulation Mode must be enabled and a Registered Resource must be specified.

（D）Web Content Protection must be enabled and a Risk Profile must be specified.

正解：B 解答を投票する

質問 2

A stateful junction /WebApp is added to a Web reverse proxy instance with two backend HTTP servers. When one of the backend server stops responding to the requests, the users are getting the "Third Party Not Responding" error message even though one of the backend server continues to respond.
Which parameter needs to be added to the configuration file so that "Third Party Not Responding" error page is not rendered and the user is connected to the backend server that is responding?

（A）failover-include-session-id = yes

（B）use-same-session = yes

（C）enable-failover-cookie-for-domain = yes

（D）use-new-stateful-on-error = yes

正解：B 解答を投票する

質問 3

A deployment professional has created an Access Control Policy to protect sensitive business information:

Which Policy decision is returned for a user with a risk score of 35 and has consented to registering a device?

（A）Permit with Authentication Consent Register Device

（B）Permit

（C）Deny

（D）Permit with Obligation Register Device

正解：C 解答を投票する

質問 4

The security deployment professional of an IBM Security Access Manager V9.0 solution has been using routing files to customize message logging.
Which aspect of the logging activity can be controlled?

（A）HTML formatting

（B）Size of log file

（C）Delete log files

（D）Log compression

正解：B 解答を投票する

質問 5

A risk officer of an organization discovered that a site protected by the IBM Security Access Manager V9.0 solution might be vulnerable to common attacks like cross-site scripting (XSS) and SQL injection.
Which optional component should be configured to protect against these attacks?

（A）Secure Web Settings

（B）Advanced Access Control

（C）Web Application Firewall

（D）Federation

正解：C 解答を投票する

質問 6

A customer has deployed an IBM Security Access Manager V9.0 solution to protect web applications. After the initial authentication between the client and WebSEAL, WebSEAL can build a new Basic Authentication header and use the -b option to provide the authenticated Security Access Manager user name (client's original identity) together with a predefined static password across the junction to the back-end server.
Which configuration option will accomplish this?

（A）-b filter

（B）-b ignore

（C）-b supply

（D）-b gso

正解：B 解答を投票する

質問 7

A deployment professional is configuring context based access for a protected resource junctioned by WebSEAL.
What must be explicitly set in order to invoke the runtime security services EAS to authorize a request?

（A）Protected Object Policy (POP)

（B）Authorization rule

（C）Policy Information Point (PIP)

（D）Trigger-url

正解：A 解答を投票する

質問 8

What are two key benefits of deploying IBM Security Access Manager V9.0? (Choose two.)

（A）Enhanced Session Recording features

（B）Federated Single Sign On capabilities

（C）Secure user access to web and mobile applications

（D）Session Management Server module

（E）Enhanced user life-cycle management

正解：A、E 解答を投票する

質問 9

The IBM Security Access Manager V9.0 system deployment professional is configuring context-based access to a protected resource, and has configured an Access Control Policy made up of four rules. The Precedence is set to First.
How are the four rules combined to produce an authorization decision?

（A）Access is permitted or denied based on the outcome of the first rule in the policy that can be evaluated against the access request. The rules in the policy are evaluated in the same order they are listed.

（B）Access is permitted or denied based on the outcome of first rule in the policy that can be evaluated against the access request. The order in which the rules are evaluated depends on the request payload.

（C）All the rules are examined, and the order in which the rules are evaluated depends on the request payload. If the first rule in the policy returns deny, the policy returns deny, and if any other rule in the policy returns permit, the policy returns permit.

（D）The rules are examined sequentially in the same order they are listed. If the first rule in the policy returns deny, the policy returns deny, and if any other rule in the policy returns permit, the policy returns permit.

正解：A 解答を投票する

質問 10

A customer has setup IBM Security Access Manager V9.0 hardware appliances (AP. A1, A2) in a cluster. The appliances (A1, A2) that host reverse proxies are labeled as
"restricted" in the cluster. AP is the Primary of the cluster.
There is one reverse proxy in appliance A1 and two in appliance A2. These reverse proxies are being tuned for performance. The appliance A1 and A2 max socket range has been set to 64510.
What is true in this situation?

（A）Both reverse proxies in appliance A2 can have a maximum thread count of 30,000.

（B）The appliance AP cannot be used for running reverse proxies to balance load

（C）The reverse proxy in appliance A1 can have a maximum thread count of 30,000

（D）Appliance A2 with two reverse proxies will perform better than Appliance A1 with one reverse proxy

正解：C 解答を投票する

C2150-609 無料問題集「IBM Security Access Manager V9.0 Deployment」

弊社を連絡する

関連リンク

トップ試験