IBM C2150-609 Exam Practice Test Instant Access

Question 1

An IBM Security Access Manager V9.0 deployment professional executes the following steps:

1. Navigate to Edit SSL Certificate Database - embedded_ldap_keys

2. Select the embedded LDAP server certificate

3. Click Manage->Export

4. Save the resulting .cer file onto local desktop

Which task was the deployment professional performing?

ARenewing the embedded LDAP server certificate

BReplacing the embedded LDAP server certificate

CCreating a backup of the embedded LDAP server certificate

DPreparing to configure SSL for a local LDAP client to the embedded LDAP server

Answer : B

Question 2

A deployment professional attempts to log into an appliance which is part of a cluster to run pdadmin commands and receives the following message:

pdadmin> login -a sec_master -p password

2016-03-03-02:04:38.683-06:001------0x1354A420 pdadmin ERROR ivc socket mtsclient.cpp 2376

0x7fc2b7b0c720

HPDCO1056E Could not connect to the server 192.168.254.11, on port 7135.

Error: Could not connect to the server. (status 0x1354a426)

What should the deployment professional check concerning the login target?

ALogin was attempted on a special node

BLogin was attempted on a restricted node

CLogin was attempted on a secondary master that has not been promoted to the primary

DLogin was attempted on a non-primary master of a cluster and the primary policy server is down

Answer : A

Question 3

The IBM Security Access Manager V9.0 deployment professional has recently discovered an entire deployment of over 100 junctions was performed incorrectly.

How can a repair operation be scripted for this, and future deployment personnel?

AUse the CLI SSH interface, navigating to isam->admin and authenticating as sec_master.

BUse a text editor and create the correct junction XML files, then import them using the LMI.

CUse the LMI Secure Web Settings -> Reverse Proxy -> Manage -> Junction Management interface.

DUse the REST API interface https://{appliance_hostname}/isam/pdadmin, JSON files and the CURL utility.

Answer : B

Question 4

A company has a large number of users who use mobile applications. The company wants to implement context-aware access controls for these resources.

Which module of IBM Security Access Manager V9.0 should the company enable to support this requirement?

AFederation module

BProtocol Analysis module

CMobile Access Control modulo

DAdvanced Access Control module

Answer : A

Question 5

The IBM Security Access Manager V9.0 Advanced Access Control module can perform Context-Based Authorization based on the contents of a POST parameter.

Which two configuration steps need to be performed to do this? (Choose two.)

AAttach an appropriate Access Control List to the required URL

BAttach an appropriate Access Control Policy to the required URL

CAttach an appropriate Protected Information Point to the required URL

DAdd an entry to the [user-agents) stanza in the reverse proxy configuration file.

EAdd an entry to the [user-attribute-definitions] stanza in the reverse proxy configuration file

Answer : D, E

Question 6

The appliance dashboard Reverse Proxy Health widget indicates a problem with the /snoop junction on the Test instance.

Which log file can be examined to find product errors?

Aagent.log

Breferer.log

Crequest.log

Dmsg___webseald-Test.log

Answer : C

Question 7

A company is using the embedded LDAP server to store IBM Security Access Manager V9.0 user dat

a. However, there is a requirement to create another suffix to hold a set of user data.

Which two suffix elements are supported when creating a top level entry for the suffix? (Choose two.)

Cdn

Dst

Ecn

Answer : B, E

IBM Security Access Manager V9.0 Deployment C2150-609 Exam Practice Test