IBM Tivoli Federated Identity Manager V6.2.2 Implementation Set 2

Question - 15 Maximum mark : - 29

Home
All Exams
IBM Tivoli Federated Identity Manager V6.2.2 Implementation Online Mock Tests
IBM Tivoli Federated Identity Manager V6.2.2 Implementation Set 2

What are the roles defined by OAuth 2.0?

Client application, resource owner, resource server ✘ User, client application, resource owner, resource server ✘ User, resource owner, resource server, authorization server ✘ Client application, resource owner, resource server, authorization server ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

Using a browser traffic capture tool, a capture of the HTTP interactions between Internet Explorer and a federation endpoint was recorded. The IBM Tivoli Federated Identity Manager V6.2.2 deployment was configured with WebSEAL as the point of contact server. When looking through the trace, which cookie indicates that a session has been established with IBM Tivoli Access Manager?

JSESSIONID ✘ PD-ID-SESSION ✘ PD-S-SESSION-ID ✘ AMWEBJCT-SESSION ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

When configuring an OpenID Relying Party' federation in IBM Tivoli Federated Identity Manager V6.2.2 (TFIM), the two parameters OPENID. DiscoveredInformationExpirationSeconds and OPENID.skipclaimedIdDiscovery can have a positive performance impact in some scenarios. How are these values configured?

Values for these two parameters can be set by directly adding them to the runtime custom variables for the TFIM domain. ✘ Values for these two parameters can be set using the TFIM Management Console OpenID configuration wizard, or via options for the rnanageitfimPartnercommand. ✘ Values for these two parameters can be set using the TFIM Management Console OpenID configuration wizard, or via options for the manageitfimFederationcommand. ✘ Values for these two parameters can be set by directly editing the Self section for the relying party federation configuration in the file /itfim//etc/feds.xml. ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

Which statement is true regarding SAML 1.1 Single Sign-On?

Service provider (SP)-initiated mode is not supported. ✘ The SP must redirect the user to the identity provider (IdP) in the first step of the protocol flow. ✘ IdP-initiated flows must use HTTP-POST to return the identity assertion to the SP. ✘ The IdP must contact the SP through a back channel to send the identity assertion. ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

When creating a partner for an IBM Tivoli Federated Identity Manager V6.2.2 SAML 2.0 identity provider, the Default Post-Authentication Target URL is the location the user is redirected to under which condition?

after the partner validates the identity assertion if the partner does not provide a TARGET URL when the Single Sign-On protocol is initiated ✘ after the partner validates the identity assertion if the partner does not provide a DEFAULT URL when the Single Sign-On protocol is initiated ✘ after the Identity Provider validates the identity assertion if the partner does not provide a TARGET URL when the Single Sign-On protocol is initiated ✘ after the Identity Provider authenticates the user and prior to assertion validation if the partner does not provide a TARGET URL when the Single Sign-Onprotocol is initiated ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

When configuring a SAML 1.1 partner using Browser/POST, how can the assertion from the IBM Tivoli Federated Identity Manager V6.2.2 (TFIM) Identity Provider (IdP) be tested using a browser capture tool (such as Fiddler) to ensure correct values are being sent?

An HTTP POST can be issued to the Service Provider (SP) login endpoint with the query string parameters IDP_PROVIDER_ID and TARGET. After the HTTP 302 redirect to the IdP, the ROT13 encoded SAML response can be extracted from the HTML form in the HTTP 200 response. After decoding, the SAML response may be examined. ✘ An HTTP POST can be issued to the SP login endpoint with the query string parameters idp_provider_id and target. After the HTTP 302 redirect to the IdP, theBase64 encoded SAML response can be extracted from the HTML form in the HTTP 200 response. After decoding, the SAML response may be examined. ✘ An HTTP GET can be issued to the IdP login endpoint with the query string parameters SP_PROVIDER_ID and target. The Base64 encoded SAML responsecan be extracted from the HTML form in the HTTP 200 response. After decoding, the SAML response may be examined. The SP does not need to be functional or accessible to perform the test. ✘ An HTTP GET can be issued to the IdP login endpoint with the query string parameters IDP_PROVIDER_ID and target. The Base64 encoded SAML responsecan be extracted from theHTML form in the HTTP 200 response. After decoding, the SAML response may be examined. The SP does not need to be functional or accessible to perform the test. ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

Which IBM Tivoli Federated Identity Manager V6.2.2 User Self Care operations are predefined?

enrollment, user ID reconciliation, captcha ✘ enrollment, forgotten password, profile management ✘ forgotten password, role management, profile management ✘ forgotten password, user ID reconciliation, profile management ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

What does this XSL code do?

Sets the commonName attribute to the value of the Principal name. ✘ Sets the commonName attribute to the name value that was provided in the SAML assertion. ✘ Sets the commonName attribute to the name value that was provided by the Secure Token Service. ✘ Sets the commonName attribute to the value that was retrieved from the IBM Tivoli Access Manager credential attribute service. ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

Which IBM Tivoli Federated Identity Manager V6.2.2 (TFIM) configuration step is always required for the Alias Service, assuming SSL is used for the connection to the directory server?

Selecting port 389 for the directory server port. ✘ Configuring the directory server trust store with the default TFIM SSL certificate. ✘ Creating a self-signed certificate and install the certificate on the directory server. ✘ Selecting the trusted keystore that contains the directory server certificate or CA certificate. ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

10.

What does this XSL code do?

It sets the AuthenticationMethod attribute to Password for a SAML assertion. ✘ It sets the AuthenticationMethod attribute to Secure Remote Password for a SAML assertion. ✘ It sets the AuthenticationMethod attribute to Password for a SAML assertion only if the local user was authenticated with a user ID and password. ✘ It sets the AuthenticationMethod attribute to Secure Remote Password for a SAML assertion only if the local user was authenticated with a user ID andpassword. ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

Prev Next

Congratulations

you have successfully completed the test

Back to Question View Result

Detail Form

We will send your result on your email id and phone no. please fill detail

Name

Email ID Note: Report will be send to the above Email ID

Phone No

IBM Tivoli Federated Identity Manager V6.2.2 Implementation Set 2

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

COMPANY

Products

OTHERS

Partner