Download IBM Security Access Manager V9.0 Deployment.C2150-609.Lead2Pass.2018-12-28.73q.vcex

Vendor: IBM
Exam Code: C2150-609
Exam Name: IBM Security Access Manager V9.0 Deployment
Date: Dec 28, 2018
File Size: 278 KB
Download Exam

How to open VCEX files?

Files with VCEX extension can be opened by ProfExam Simulator.

Download
ProfExam Simulator

Purchase
Coupon: EXAMFILESCOM

Discount: 20%

ProfExam Simulator ProfExam Simulator ProfExam Simulator ProfExam Simulator ProfExam Simulator

Demo Questions

Question 1
The appliance dashboard Reverse Proxy Health widget indicates a problem with the /snoop junction on the Test instance. 
Which log file can be examined to find product errors?
  1. agent.log
  2. referer.log
  3. request.log
  4. msg_webseald-test.log
Correct answer: C
Question 2
A customer has configured the IBM Security Access Manager V9.0 appliance authentication to an external LDAP server. The customer wants to allow support staff with LDAP accounts that are members of the HelpDesk group to view appliance and audit logs. 
Where should the deployment professional configure a new role and map it to the HelpDesk LDAP group for the support staff?
  1. Manage System Settings-> Management Delegation
  2. Manage System Settings-> Administrator Settings
  3. Manage System Settings-> Management Authorization
  4. Manage System Settings-> Management Authentication
Correct answer: B
Explanation:
Question 3
An attacker has compromised the private key associated with a certificate. 
Which two methods can be used to ensure that certificates have not been revoked by the Certification authority that issued it? (Choose two.)
  1. Public Key Information
  2. Online Status Certificate Protocol
  3. Online Certificate Status Protocol
  4. Certificate Rejection List located in LDAP
  5. Certificate Revocation List located in LDAP
Correct answer: AE
Question 4
A large bank has multiple applications protected by two identically configured WebSEAL servers. One junction supports a reporting application that frequently expenses performance issues which slows response time. The worst case results in the entire site becoming unresponsive when all WebSEAL worker threads on all WebSEAL instances are consumed on the junctions to this one reporting application. 
Which configuration change will prevent this situation from occurring without impacting the behavior of any other application (junction), and keeping the entire site up?
  1. Change worker-thread-hard-limit to 75 in WebSEAL configuration file on both WebSEAL servers.
  2. Use the “throttle” option on the “pdadmin server task” command for the reporting application junction on both WebSEAL instances.
  3. Use the –L 75 and –f options on the “pdadmin server task” command for the reporting application junction on both WebSEAL instances.
  4. Create a third WebSEAL instance supporting only this one reporting application and load balance requests across all three WebSEAL instances.
Correct answer: C
Explanation:
Question 5
A company has deployed an IBM Security Access Manager V9.0 solution for protecting web resources and has enabled auditing for monitoring purposes. A security deployment professional has observed that audit records are using large quantities of disk space due to the large number of audit events related to HTTP access. 
Which two strategies will help to reduce the volume of audit events in above scenario? (Choose two.)
  1. Generate audit records for specific groups only
  2. Generate events for unsuccessful HTTP accesses only
  3. Generating selective audit records using authorization rules
  4. Reconfigure WebSEAL to use CARS auditing, instead of native auditing.
  5. Selectively disable the generation of events by using attached protected object policies (POPs)
Correct answer: BE
Explanation:
Reference: http://www-01.ibm.com/support/docview.wss?uid=swg27049642&aid=1 (15)
Reference: http://www-01.ibm.com/support/docview.wss?uid=swg27049642&aid=1 (15)
Question 6
During testing of an application the deployment professional is receiving frequent alerts about high disk utilization. 
What action can be taken to resolve this issue?
  1. Enable log rotation and compression
  2. Resize the virtual disk and extend the active partition
  3. Configure the appliance to store log and trace to a remote server
  4. Enable the appliance background scheduler to clear unused log and trace files on a periodic basis.
Correct answer: C
Explanation:
Question 7
The Distributed Session Cache has been enabled to replace the Session Management Server in a recently migrated IBM Security Access Manager V9.0 environment. Several Reverse Proxies have not yet been migrated from ISAM V7.0. 
The help desk is now receiving user complaints due to multiple logins required for applications protected by the ISAM V7.0 Reverse Proxies. 
Which Distributed Session Cache option should be checked?
  1. enable_sms-functionality
  2. provide_700_attribute_ids
  3. Replicate certificate databases
  4. Support internal and external clients
Correct answer: C
Question 8
In an organization’s testing environment, the IBM Security Access Manager V9.0 deployment professional is required to deploy the virtual appliance on Amazon EC2 with a single reverse proxy instance with a single network interface. 
How should the deployment professional configure the reverse proxy so that end-users can access the reverse proxy without specifying a non-standard port (other than 80 and 443)?
  1. Use port forwarding to map non-standard port to a standard port on appliance using LMI
  2. Use port forwarding to map non-standard port to a standard port on appliance using CLI
  3. Configure appliance management port to listen on non-standard port and set reverse proxy port to listen on standard port using LMI
  4. Configure appliance management port to listen on non-standard port and set reverse proxy port to listen on standard port using CLI
Correct answer: C
Question 9
A company has deployed an IBM Security Manager V9.0 solution to protect web resources and now wants to secure access to enterprise resources from mobile devices. The security deployment professional needs to run a utility to configure the existing WebSEAL with the instance of the appliance that provides the authorization server for Advanced Access Control. 
Which utility tool will perform this configuration?
  1. isamcfg
  2. pdadmin
  3. Web Administration Tool (WAT)
  4. Middleware Configuration Utility
Correct answer: A
Explanation:
Reference: https://www.ibm.com/support/knowledgecenter/SSPREK_9.0.3/com.ibm.isam.doc/config/concept/con_isamcfg.html
Reference: https://www.ibm.com/support/knowledgecenter/SSPREK_9.0.3/com.ibm.isam.doc/config/concept/con_isamcfg.html
Question 10
A customer deployment consists of a large number of virtual host functions definitions. During a troubleshooting session the deployment professional realizes the WebSEAL logs do not distinguish between requests to different virtual hosts. 
How can this be remediated?
  1. Customize the message log to include the relative URL
  2. Customize the request log to include the relative URL
  3. Customize the message log to include the absolute URL
  4. Customize the request log to include the absolute URL
Correct answer: D
Explanation:
CONNECT US
HOW TO OPEN VCE FILES

Use VCE Exam Simulator to open VCE files
Avanaset

HOW TO OPEN VCEX AND EXAM FILES

Use ProfExam Simulator to open VCEX and EXAM files
ProfExam Screen

ProfExam
ProfExam at a 20% markdown

You have the opportunity to purchase ProfExam at a 20% reduced price

Get Now!