IBM Security Access Manager V9.0 Deployment - C2150-609 Exam Practice Test

Question 1

Multiple hostnames are mapped to a single IP address used by a WebSEAL instance, listening on the default HTTPS port. For each host name requested in the browser, WebSEAL needs to present a different certificate.
What can the deployment professional do to meet this requirement?

A. Enter multiple values for the "webseal-cert-keyfile-label" parameter in the [ssl] stanza of the WebSEAL configuration

B. Configure WebSEAL to use Server Name Indication

C. Configure separate WebSEAL instances for each hostname

D. Configure an additional interface in the WebSEAL configuration file, and add a
"certificate-label" for each hostname

Correct Answer: B

Question 2

A deployment professional in charge of a large deployment with replicated reverse proxy instances needs to keep junctions, template files, and configuration settings in sync between the instances.
How can this be done?

A. Setup appliance clustering and issue server sync all

B. Setup a master reverse proxy instance and issue server task source-instance sync target-instance

C. Setup appliance clustering and issue server cluster sync

D. Setup a master reverse proxy instance and issue server task target-instance sync source-instance

Correct Answer: A,C

Question 3

The Distributed Session Cache has been enabled to replace the Session Management Server in a recently migrated IBM Security Access Manager V9.0 environment. Several Reverse Proxies have not yet been migrated from ISAM V7.0.
The help desk is now receiving user complaints due to multiple logins required for applications protected by the ISAM V7.0 Reverse Proxies.
Which Distributed Session Cache option should be checked?

A. provide_700_9ttribute_ids

B. Replicate certificate databases

C. enable-sms-functionality

D. Support internal and external clients

Correct Answer: C

Question 4

An older, software based deployment has several active Policy Servers set up behind a load-balancer. An IBM Security Access Manager V9.0 appliance cluster supports how many active Policy Servers?

A. 2

B. 1

C. 3

D. 4

Correct Answer: B

Question 5

An IBM Security Access Manager V9.0 deployment professional wants to be alerted by the appliance for events like certificate expiry.
In which two ways can these alert notifications be configured? (Choose two.)

A. Remote Syslog

B. SNMP

C. Desktop Alert

D. SMS text

E. RSS Feed

Correct Answer: D,E

Question 6

An IBM Security Access Manager V9.0 systems deployment professional needs to protect a back-end web applications from SQL injection attacks that match signatures from the IBM X-Force signature database.
Which action needs to be performed?

A. Simulation Mode must be enabled and a Risk Profile must be specified.

B. Simulation Mode must be enabled and a Registered Resource must be specified.

C. Web Content Protection must be enabled and a Registered Resource must be specified.

D. Web Content Protection must be enabled and a Risk Profile must be specified.

Correct Answer: A

Question 7

A customer has configured the IBM Security Access Manager V9.0 appliance authentication to an external LDAP server. The customer wants to allow support staff with LDAP accounts that are members of the HelpDesk group to view appliance and audit logs.
Where should the deployment professional configure a new role and map it to the HelpDesk LDAP group for the support staff?

A. Manage System Settings -> Management Authentication

B. Manage System Settings -> Administrator Settings

C. Manage System Settings -> Management Delegation

D. Manage System Settings -> Management Authorization

Correct Answer: C

IBM Security Access Manager V9.0 Deployment - C2150-609 Exam Practice Test

Latest Update

Useful Links

Contact Us