The deployed IBM Security Access Manager (ISAM) V9.0 solution in a company already contains a federated LDAP server. However, the dynamic group support is disabled. A deployment professional is required to change the existing federated LDAP server configuration to support the dynamic groups.
How should the deployment professional do this?
A. Re-federate the LDAP server with dynamic group support enabled
B. Manually modify the ldap.conf file and add `dynamic-groups-enabled=yes'
C. Manually modify the activedir.conf file and add `dynamic-groups-enabled=yes'
D. Edit the federated directory configuration using LMI method and select the checkbox "Enable dynamic group"
The IBM Security Access Manager V9.0 deployment professional has enabled the Reverse proxy pdweb, sescache statistic to troubleshoot a problem.
What is the problem?
A. HTTP sessions are being timed our prematurely.
B. HTTP requests are taking longer than expected.
C. User sessions are terminated sooner than expected.
D. Document caching is not as effective as anticipated.
What feature or capability of IBM Security Access Manager V9.0 can be utilized for inserting a static (predefined) HTTP header tag/value pair into the request flowing from WebSEAL to the backend application?
A. HTTP Transformation rule
B. HTTP-Tag_value extended attribute
C. AuthzRule in LMI Policy Administration
D. [header-names] stanza in WebSEAL conf file
The 10.51.140.x/24 IP Address space has been allocated for a new IBM Security Access Manager V9.0 deployment with the option of creating subnets.
What are two correct network configurations for Management and Application interface (Choose two.)
A. Interface 1.1 = => 10.51.140.51/255.255.255.0 [Management Interface 1.1.==> 10.51.141.52/255.255.255.0 [Application]
B. Interface 1.1 = => 10.51.140.51/255.255.255.0 [Management Interface 1.1.==> 10.51.140.52/255.255.255.0 [Application]
C. Interface 1.1 = => 10.51.140.51/255.255.255.0 [Management Interface 1.2.==> 10.51.140.52/255.255.255.0 [Application]
D. Interface 1.1 = => 10.51.140.51/255.255.255.0 [Management Interface 1.2==> 10.51.141.52/255.255.255.0 [Application]
E. Interface 1.1 = => 10.51.140.51/255.255.255.192 [Management Interface 1.3==> 10.51.140.52/255.255.255.192 [Application]
A deployment professional in charge of a large deployment with replicated reverse proxy instances needs to keep junctions, template files, and configuration settings in sync between the instances.
How can this be done?
A. Setup appliance clustering and issue server sync all
B. Setup appliance clustering and issue server cluster sync
C. Setup a master reverse proxy instance and issue server task source-instance sync target-instance
D. Setup a master reverse proxy instance and issue server task target-instance sync source-instance
The IBM Security Access Manager (ISAM) V9.0 deployment professional tries to login to the LMI and discovers user "admin" no longer works, even though the correct password is also provided. The iSAM deployment professional must use "admin@local".
What ISAM application configuration change has occured to cause this behavior?
A. The LMI certificate has expired.
B. The LMI Dashboard was incorrectly configured.
C. Management Authorization has been configured.
D. Management Authentication has been configured.
A deployment professional has configured Federated Single Sign-On using IBM Security Access Manager V9.0 with WebSEAL as point of contact.
Which two things need to be configured to achieve Single Log Out (SLO) in the SAML 2.0 Federation? (Choose two.)
A. The page displayed after pkmslogout is called (logout.html)
B. The creation of user session ID's ([session]) user-session-ids= yes)
C. The passing of session cookies to junctioned servers (-k option in the junction creation)
D. The URIs that receive a single signoff request ([acnt-mgt]) single-signoff-uri =/applications/signoff)
E. The appropriate extended attribute to the Federation junction (HTTP-Tag-Value user_session_id=user_session_id)
A customer has deployed an IBM Security Access Manager V9.0 solution to protect web applications. After the initial authentication between the client and WebSEAL, WebSEAL can build a new Basic Authentication header and use the –b option to provide the authenticated Security Access Manager user name (client's original identity) together with a predefined static password across the junction to the backend server.
Which configuration option will accomplish this?
A. - gso
B. –b filter
C. –b ignore
D. -supply
How should the disk space occupied by the several large support files be reduced?
A. Configure automatic roll over of support files using the LMI
B. Download the support files and delete them from the appliance
C. Download the support files which will also delete them from the appliance
D. Configure support file retention policy using the LMI to restrict, such that files older than a certain date are purged
Which web resource should be used to keep up to date on support flashes, fixpack announcements, and other product related issues?
A. The IBM Support Portal
B. The IBM Security twitter account
C. The LinkedIn IBM Security Access Manager V9.0 Group
D. The IBM devWorks IBM Security Access Manager V9.0 Forum
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only IBM exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your C2150-609 exam preparations and IBM certification application, do not hesitate to visit our Vcedump.com to find your solutions here.