C2150-609無料問題集「IBM Security Access Manager V9.0 Deployment」

質問 1

CORRECT TEXT
A customer has expressed the requirement that users accessing online banking application must first authenticate using a userid/password and successfully enter a one-time PIN which is texted to a cell phone.
Which two IBM Security Access Manager (ISAM) V9.0 modules are required to fully implement the solution? (Choose two.)

（A）ISAM Access Manager Platform

（B）ISAM Advanced Control Module

（C）ISAM Federation Module

（D）ISAM PAM Module

（E）ISAM Cloud Module

正解：A、B 解答を投票する

質問 2

A deployment professional wants to ensure traffic from a Reverse Proxy to a junction backend application server goes out over a specific interface.
How can this be accomplished?

（A）Create a new application interface.

（B）Create a static route to the backend server.

（C）Create a new management interface.

（D）Create a new interface in the reverse proxy configuration file.

正解：C 解答を投票する

質問 3

Multiple users are complaining about being denied access to resources they believe they are entitled to see. The IBM Security Access Manager (ISAM) V9.0 deployment professional needs to understand and troubleshoot the various access control constructs in the ISAM protected object space. The deployment professional must also understand the order of evaluation of the three major access control constructs available in the Policy Administration tool.
What is the correct order of evaluation for these constructs?

（A）AuthzRule -> ACL -> POP

（B）POP -> AuthzRule -> ACL

（C）ACL -> POP -> AuthzRule

（D）ACL -> AuthzRule -> POP

正解：C 解答を投票する

質問 4

A deployment professional creates a support file on an IBM Security Access Manager V9.0 appliance.
What is its purpose?

（A）To capture a snapshot of the appliance configuration

（B）To re-image the appliance

（C）For backup and recovery

（D）To help troubleshoot problems with the appliance

正解：B 解答を投票する

質問 5

A customer wants to replace an IBM Security Access Manager V7.0 Session Management Server with the ISAM 9.0 Distributed Session Cache.
Which DSC configuration must be completed to allow SSL communication?

（A）Select "Enable SSL" and choose a certificate in the Session Cache tab of the LMI.

（B）Configure DSC to listen on port 443

（C）Create new replica set

（D）Select "Support internal clients only" in the Session Cache tab of the LMI.

正解：A 解答を投票する

質問 6

There are random network errors occurring so the IBM Security Access Manager V9.0 deployment specialist has decided to enable Packet Tracing and feed the resulting pcap file into Wireshark for analysis.
Which information is required to enable this feature?

（A）Filter

（B）Protocol

（C）Trace file size

（D）Destination IP

正解：B 解答を投票する

質問 7

A deployment professional is configuring IBM Security Access Manager V9.0 for Management Authentication using remote LDAP.
Which configuration field value is optional?

（A）Select Local Database or Remote LDAP Server

（B）Configure Administrative Group DN

（C）Enable SSL to LDAP

（D）Specify whether or not to bind anonymously

正解：B 解答を投票する

質問 8

A company has deployed an IBM Security Access Manager V9.0 solution to protect web resources and now wants to secure access to enterprise resources from mobile devices.
The security deployment professional needs to run a utility to configure the existing WebSEAL with the instance of the appliance that provides the authorization server for Advanced Access Control.
Which utility tool will perform this configuration?

（A）pdadmin

（B）Middleware Configuration Utility

（C）isamcfg

（D）Web Administration Tool (WAT)

正解：C 解答を投票する

質問 9

Which hardware component is included in an IBM Security Access Manager V9.0 hardware appliance?

（A）IPMI port

（B）LCD Panel

（C）InfiniBand port

（D）UPS

正解：B 解答を投票する

質問 10

A customer's IBM Security Access Manager (ISAM) V9.0 environment consists of the appliance embedded LDAP as the Primary LDAP, and a federated Active Directory (AD) which contains all user/group information. The embedded LDAP will only contain information about default ISAM components and a limited number of AD groups. Users will be required to change their own passwords via ISAM.
Which Idap.conf configuration will properly configure the AD into this Federation and meet all customer requirements?

（A）basic-user-support = no
host = test-root.acme.com port = 389
bind-dn = CN=sys_isamadm1OU=SvcAccts,DC=test,DC=acme,DC=com ssl-enabled = no suffix = dc=test-root,dc=com basic-user-principal-attribute = samAccountName bind-pwd
"obfuscated**

（B）basic-user-support = yes host = test-root.acme.com port = 636
bind-dn = CN=sysjsamadm,OU=SvcAccts,DC=test,DC=acme,DC=com ssl-enabled = yes suffix = dc=test-root,dc=com

（C）basic-user-support = no
host = test-rootacme.com ,
port = 636
bind-dn = CN=sysjsamadm(OU=SvcAccts.DC=test,DC=acme,DC=com
ssl-enabled = yes
suffix = dc=test-root,dc=com
basic-user-principal-attribute = samAccountName
bind-pwd = **obfuscated**

（D）basic-user-support = yes
host = test-root.acme.com
port = 389
bind-dn = CN=sysjsamadm,OU=SvcAccts.DC=test,DC=acme,DC=com
ssl-enabled = no
suffix = dc=test-root,dc=com
basic-user-principal-attribute = samAccountName
bind-pwd = **obfuscated**
basic-user-principal-attribute = samAccountNarrae bind-pwd = "obfuscated**

正解：C 解答を投票する

C2150-609 無料問題集「IBM Security Access Manager V9.0 Deployment」

弊社を連絡する

関連リンク

トップ試験