IBM Security Access Manager V7.0 Implementation (C2150-198) Free Practice Test

Question 1

Which option is used to enable FIPS communication with user clients?

A. fips-mode-processing

B. ssl-compliance

C. enable-fips

D. ssl-fips-enabled

Correct Answer: A

Question 2

What command is used to apply necessary ACLs to an ldap suffix in order for Security Access Manager to be able to manage user and group information within that suffix?

A. ivrgy_tool add_acls

B. update_schema

C. pdadmin acl create

D. ivacld -update

Correct Answer: A

Question 3

How can the audit trail facility be enabled for WebSEAL?

A. set A permission in ACL

B. enter logaudit=yes in the WebSEAL configuration file

C. issue pdadmin command to set WebSEAL server audit class

D. update the audit stanza in pd.conf

Correct Answer: B

Question 4

An Administrator wants to restore the amwebbackup.lst_22dec2011.10_22.tar archive file that is stored in the /var/pdbackup directory to the /amwebtest directory. Which command should the administrator run?

A. pd_backup -a restore -f /var/pdbackup/amwebbackup.lst_22dec2011.10_22.tar -p /amwebtest

B. pdbackup -a restore -f /var/pdbackup/amwebbackup.lst_22dec2011.10_22.tar -p /amwebtest

C. pdinfo -a restore -f /var/pdbackup/amwebbackup.lst_22dec2011.10_22.tar -p /amwebtest

D. pdrestore --f /var/pdbackup/amwebbackup.lst_22dec2011.10_22.tar -p /amwebtest

Correct Answer: B

Question 5

Which statement regarding WebSEAL support for multiple backend servers per junction is true?

A. Minimum of 2 backend servers is required.

B. Virtual host, transparent, and standard junctions support multiple backend servers.

C. Only virtual host junctions support multiple backend servers.

D. Maximum of 5 backend servers is supported.

Correct Answer: B

Question 6

For an existing junction on the WebSEAL Gateway Appliance, what method should be used to add an additional backend server?

A. The "Servers" tab in the junction management page.

B. The "Junction" tab in the junction management page.

C. The "Add" tab in the junction management page.

D. The"Add Server" tab in the junction management page.

Correct Answer: A

Question 7

What would the command "ldapsearch -p 389 -D cn=root -w ? -b cn=connections,cn=monitor -s base objectclass=*" return?

A. The current established client connections.

B. The current_workqueue_size.

C. The number of monitor threads available.

D. The auto_connection_cleaner_run.

Correct Answer: A

Question 8

In an organization all customer information is stored in an Active Directory (AD). Special applications for customer contracts and transactions are all connected to this AD. This organization wants to enable customers to see their information online. Therefore, a web environment has been deployed including WebSphere Application Server, IBM Tivoli Directory Server (ITDS) and IBM Security Access Manager. For security reasons the organization decided that this web environment cannot directly connect to Active Directory but should use its own directory, ITDS. A letter will be sent to each customer with its personal login details. What is the least labor intensive way to authenticate a customer online?

A. Configure WebSEAL's EAI to authenticate directly on the AD

B. Use IBM Tivoli Directory Integrator to exchange essential data between the directories

C. Configure the ITDS authorization forwarding to AD

D. Schedule an export of AD into LDIF and load this into ITDS.

Correct Answer: B

Question 9

What POP attribute is necessary to require SSL encryption to access a particular resource?

A. quality of protection set to 'integrity'

B. quality of protection set to 'privacy'

C. quality of protection set to 'ssl'

D. quality of protection set to 'https'

Correct Answer: B

Welcome to TestSimulate

IBM Security Access Manager V7.0 Implementation (C2150-198) Free Practice Test