getcertified4sure.com

C2150-609 Exam

What Realistic C2150-609 Test Preparation Is




Examcollection C2150-609 Questions are updated and all C2150-609 answers are verified by experts. Once you have completely prepared with our C2150-609 exam prep kits you will be ready for the real C2150-609 exam without a problem. We have Down to date IBM C2150-609 dumps study guide. PASSED C2150-609 First attempt! Here What I Did.

Online IBM C2150-609 free dumps demo Below:

NEW QUESTION 1
Users are experiencing authentication failures. They are opening a large number of Help Desk tickets. Which message severity level should a deployment professional be looking for in the message log?

  • A. Error message
  • B. Fatal message
  • C. Notice message
  • D. Warning message

Answer: B

NEW QUESTION 2
The Distributed Session Cache has been enabled to replace the Session Management Server in a recently migrated IBM Security Access Manager V9.0 environment. Several Reverse Proxies have not yet been migrated from ISAM V7.0.
The help desk is now receiving user complaints due to multiple logins required for applications protected by the ISAM V7.0 Reverse Proxies.
Which Distributed Session Cache option should be checked?

  • A. enable-sms-functionality
  • B. provide_700_9ttribute_ids
  • C. Replicate certificate databases
  • D. Support internal and external clients

Answer: A

NEW QUESTION 3
In an organization's testing environment, the IBM Security Access Manager V9.0 deployment professional is required to deploy the virtual appliance on Amazon EC2 with a single reverse proxy instance with a single network interface.
How should the deployment professional configure the reverse proxy so that end-users can access the reverse proxy without specifying a non-standard port (other than 80 and 443)?

  • A. Use port forwarding to map non-standard port to a standard port on appliance using LMI
  • B. Use port forwarding to map non-standard port to a standard port on appliance using CLI
  • C. Configure appliance management port to listen on non-standard port and set reverse proxy port to listen on standard port using LMI
  • D. Configure appliance management port to listen on non-standard port and set reverse proxy port to listen on standard port using CLI

Answer: A

NEW QUESTION 4
A deployment specialist wants to use IBM Security Access Manager V9.0 to protect the back-end web applications from Cross Site Scripting attacks.
Which rfeodule will provide this protection?

  • A. Federation Module
  • B. Policy Server Module
  • C. Protocol Analysis Module
  • D. Advanced Access Control Module

Answer: C

NEW QUESTION 5
Considering the rule precedence, which policy decision is returned for a user with a risk score of 40 and an ipAddress not considered malware?
C2150-609 dumps exhibit

  • A. Deny
  • B. Permit
  • C. Deny after Authentication One-Time-Password
  • D. Permit with Authentication One-Time-Password

Answer: A

NEW QUESTION 6
A deployment professional is developing a script using REST APIs to monitor the status of WebSEAL instances.
Which attribute and value indicates a WebSEAL instance is down?

  • A. Instance "health" with a value of "1"
  • B. Instance "status" with a value of "running"
  • C. Root junction (/) "health" with a value of "1"
  • D. Root junction (/) "status" with a value of "running"

Answer: A

NEW QUESTION 7
The SSL connection from browser to the IBM Security Access Manager V9.0 Reverse Proxy is broken and the deployment professional suspects an expired certificate.
In which location will the "Certificate expired" warning message that contains additional information to isolate the issue be seen?

  • A. LMI Home Dashboard
  • B. Systems message log
  • C. pdweb.debug trace file
  • D. Reverse proxy request log

Answer: A

NEW QUESTION 8
A company is upgrading its existing IBM Security Access Manager (ISAM) environment to ISAM 9.0. Based on the requirements for the upgrade, activation keys have been procured for different ISAM modules.
Which two features require an activation key? (Choose two.)

  • A. REST APIs
  • B. Web Reverse Proxy
  • C. Authorization Server
  • D. Local Management Interface
  • E. Distributed Session Cache

Answer: AD

NEW QUESTION 9
IBM Security Access Manager (ISAM) V9.0 provides an External Authentication Interface (EAI) that enables the extension of the authentication process for WebSEAL The identity information returned by the EAI service is used to generate user credentials. This can be used as one of the methods to implement step-up authentication-How is this authentication information returned from the EAI server?

  • A. HTTP headers
  • B. HTTP parameters
  • C. [step-up] stanza
  • D. [authentication-levels] stanza

Answer: A

NEW QUESTION 10
There are random network errors occurring so the IBM Security Access Manager V9.0 deployment specialist has decided to enable Packet Tracing and feed the resulting pcap file into Wireshark for analysis.
Which information is required to enable this feature?

  • A. Filter
  • B. Protocol
  • C. Destination IP
  • D. Trace file size

Answer: B

NEW QUESTION 11
A deployment professional in charge of a large deployment with replicated reverse proxy instances needs to keep junctions, template files, and configuration settings in sync between the instances.
How can this be done?

  • A. Setup appliance clustering and issue server sync all
  • B. Setup appliance clustering and issue server cluster sync
  • C. Setup a master reverse proxy instance and issue server task source-instance sync target-instance
  • D. Setup a master reverse proxy instance and issue server task target-instance sync source-instance

Answer: AB

NEW QUESTION 12
Which two resources should a deployment professional check to ensure an appliance is at the very latest level (Choose two.)

  • A. IBM Fix Central
  • B. IBM Security YouTube channel
  • C. Google IBM Security Access Manager V9.0 Circle
  • D. Linkedln IBM Security Access Manager V9.0 Group
  • E. Fixes by version for IBM Security Access Manager V9.0

Answer: AE

NEW QUESTION 13
A company has deployed an IBM Security Access Manager V9.0 solution for protecting web resources and has enabled auditing for monitoring purposes. A security deployment professional has observed that audit records are using large quantities of disk space due to the large number of audit events related to HTTP access.
Which two strategies will help to reduce the volume of audit events in above scenario? (Choose two.)

  • A. Generate audit records for specific groups only
  • B. Generate events for unsuccessful HTTP accesses only
  • C. Generating selective audit records using authorization rules
  • D. Reconfigure WebSEAL to use CARS auditing, instead of native auditing
  • E. Selectively disable the generation of events by using attached protected object policies (POPs)

Answer: CD

NEW QUESTION 14
The IBM Security Access Manager V9.0 high-volume database stores data for which component?

  • A. Cluster
  • B. Runtime Server
  • C. Advanced Access Control
  • D. Distributed Session Cache

Answer: C

NEW QUESTION 15
A deployment professional has configured Federated Single Sign-On using IBM Security Access Manager V9.0 with WebSEAL as point of contact.
Which two things need to be configured to achieve Single Log Out (SLO) in the SAML 2.0 Federation? (Choose two.)

  • A. The page displayed after pkmslogout is called (logout.html)
  • B. The creation of user session ID's ([session] user-session-ids = yes)
  • C. The passing of session cookies to junctioned servers (-k option in the junction creation)
  • D. The URIs that receive a single signoff request ([acnt-mgt] single-signoff-uri = /applications/sign off)
  • E. The appropriate extended attribute to the Federation junction (HTTP-Tag-Value user_session_id=user_session_id)

Answer: CD

NEW QUESTION 16
The IBM Security Access Manager (ISAM) V9.0 deployment professional is setting up a new junction. The back-end junctioned server listens on port 443 (S§L), but does not require mutual certificate authentication.
Which keystore does the deployment professional need to update?

  • A. The WebSEAL signer certificate needs to be imported into the keystore used by the back-end server.
  • B. The WebSEAL Test-Only certificate needs to be imported in the keystore used by the back-end server.
  • C. The back-end signer certificate needs to be imported into the WebSEAL keystore on the ISAM appliance.
  • D. The back-end signer certificate needs to be imported into the "lmi_trust_store" keystore on the ISAM appliance.

Answer: C

NEW QUESTION 17
An IBM Security Access Manager (ISAM) V9.0 environment is configured with Primary and Secondary Master servers. The Primary master node becomes unavailable and ISAM deployment professional promotes the Secondary Master node to a Primary Master.
What happens to the original Primary Master when it becomes available and rejoins the network?

  • A. It is automatically removed from the cluster.
  • B. It is automatically demoted to the role of a non-master node.
  • C. It is automatically promoted to the role of a Primary Master node.
  • D. It is automatically demoted to the role of a Secondary Master node.

Answer: C

NEW QUESTION 18
A deployment professional needs to configure a JavaScript into an application before a user can access a resource protected by an IBM Security Access Manager V9.0 Advanced Access Control policy which calculates a Risk Score.
What is the name of this JavaScript?

  • A. info.js
  • B. init_acc.js
  • C. setup_riskscore.js
  • D. dynamic.attributes.js

Answer: A

NEW QUESTION 19
An IBM Security Access Manager (ISAM) V9.0 deployment professional wants to implement some changes to the ISAM object space in the production environment. Before applying the changes, the ISAM object space needs to be exported and saved.
How should the ISAM deployment professional do this export?

  • A. Use the REST API
  • B. Use the LMI export panel
  • C. Use the pdadmin command
  • D. Use the Policy Administration (WPM)

Answer: D

NEW QUESTION 20
What are two capabilities of Security Access Manager Platform of IBM Security Access Manager V9.0? (Choose two.)

  • A. Single Sign On
  • B. Identity mediation
  • C. Credential Lease Management
  • D. Session Recording and Playback
  • E. User Access Management of web, mobile and cloud applications

Answer: AE

NEW QUESTION 21
The IBM Security Access Manager V9.0 deployment professional has recently discovered an entire deployment of over 100 junctions was performed incorrectly.
How can a repair operation be scripted for this, and future deployment personnel?

  • A. Use the CLI SSH interface, navigating to isam->admin and authenticating as sec_master.
  • B. Use a text editor and create the correct junction XML files, then import them using the LMI.
  • C. Use the LMI Secure Web Settings -> Reverse Proxy -> Manage -> Junction Management interface.
  • D. Use the REST API interface https://{appliance_hostname}/isam/pdadmin, JSON files and the CURL utility.

Answer: B

NEW QUESTION 22
......

P.S. Certleader now are offering 100% pass ensure C2150-609 dumps! All C2150-609 exam questions have been updated with correct answers: https://www.certleader.com/C2150-609-dumps.html (137 New Questions)