IBM Tivoli Federated Identity Manager V6.2.2 Implementation Set 3

Question - 15 Maximum mark : - 30

Home
All Exams
IBM Tivoli Federated Identity Manager V6.2.2 Implementation Online Mock Tests
IBM Tivoli Federated Identity Manager V6.2.2 Implementation Set 3

What is true about the OAuth protocol?

It is an HTTP-based authorization protocol. ✘ It is an HTTP-based authentication protocol. ✘ It is an HTTP-based authentication and authorization protocol. ✘ It is an HTTP-based authentication, authorization, and auditing protocol. ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

An OAuth access token is a string that represents authorization granted to the OAuth client by what?

the OAuth Server ✘ the Resource Server ✘ the Resource Owner ✘ the Authorization Server ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

How is the user registry configured before IBM Tivoli Federated Identity Manager V6.2.2 (TFIM) can be used for a SAML 1.1 federation with WebSEAL as the point of contact?

The cn=itfim suffix must be created. ✘ The schema must be updated with the itfim-secuser.Idif file. ✘ The user registry must be configured for IBM Tivoli Access Manager. ✘ A SSL connection must be configured from TFIM to the user registry and the server validation certificate added to the trusted keystore. ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

Which statement is true when using a SAML 1.1 Browser/Artifact profile for Single Sign-On for an identity provider (IdP) and service provider (SP)?

The IdP returns an artifact value to the SP via HTTP-POST. The SP then accesses the IdP over a SOAP channel and issues a SAML request containing the assertion. The IdP responds with the assertion. ✘ The IdP returns an artifact value to the SP via an HTTP 302 response. The SP then accesses the IdP over a SOAP channel and issues a SAML requestcontaining the artifact value. The IdP responds with the assertion. ✘ The SP creates an artifact value which is contained in the SAML authentication request to the IdP.After creating the assertion, the IdP issues a SAML request to the SP via HTTP-POST which contains both the artifact value and the assertion. ✘ The SP creates an artifact value which is contained in the SAML authentication request to the IdP.After creating the assertion, the IdP issues a SAML request to the SP over a SOAP channel which contains both the artifact value and the assertion. ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

What is the default server port number used by IBM Tivoli Directory Integrator?

1099 ✘ 6099 ✘ 8089 ✘ 8099 ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

What must be performed before users can access IBM Tivoli Federated Identity Manager V6.2.2 User Self Care?

change browser configuration settings ✘ create user accounts within the directory server ✘ deploy an ActiveX plug-in in the user's browser ✘ create a User Self Care federation for the managed user registry ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

Assume a SAML 2.0 Identity Provider (IdP) Single Sign-On federation is defined in IBM Tivoli Federated Identity Manager V6.2.2 (TFIM), and a Service Provider (SP) is defined as a partner to this federation. Which step is always required?

The partner must provide a metadata file for their SP configuration which can be imported to define the SP partner to TFIM. ✘ A metadata file for the IdP configuration must be provided to the partner which can be imported to define the IdP in their configuration. ✘ The partner must provide a metadata file for their SP configuration to the IdP, and a metadata file for the IdP configuration must be provided to the partner andimported to generate the respective partnering configurations. ✘ The partner may optionally provide a metadata file for their SP configuration which can be imported to define the SP partner to TFIM. If a metadata file is notprovided, the configuration values may be individually entered in the partner creation dialogue. ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

When configuring WebSEAL as the IBM Tivoli Federated Identity Manager V6.2.2 (TFIM) point of contact with ACLD, how does TFIM in a service provider role create the user credential?

TFIM uses the the IBM Tivoli Access Manager (TAM) Java Runtime GetAuthnHeaders method to create the appropriate headers and the WebSEAL EAI mechanism to return the headers in the HTTP response. This triggers WebSEAL to create a TAM credential (IVCred) for the user. ✘ TFIM accesses the authorization server through the TAM Java Runtime to create the appropriate headers and uses the WebSEAL EAI mechanism to return theheaders in the HTTP response. This triggers WebSEAL to create a TAM credential (IVCred) for the user. ✘ TFIM uses the TAM Java Runtime CreatelVCred method to create the TAM credential (IVCred) and uses the WebSEAL EAI mechanism to return the credentialby a header in the HTTP response. This triggers WebSEAL to use the provided credential directly for the authenticated user session. ✘ TFIM accesses the authorization server through the TAM Java Runtime to create the TAM credential (IVCred) and uses the WebSEAL EAI mechanism toreturn the credential by a header in the HTTP response. This triggers WebSEAL to use the provided credential directly for the authenticated user session. ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

Which statement is true regarding an IBM Tivoli Federated Identity Manager V6.2.2 (TFIM) Business Gateway installation?

Only SAML 1.1 federations are supported. ✘ The OAuthEAS plug-in will be used instead of WebSEAL ✘ The default registry attribute entitlement service configuration will be used with the standard set of attributes. ✘ IBM Tivoli Access Manager for e-business must already be installed or it will not be used as the point of contact. ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

10.

Using WebSEAL as the identity provider (IdP) point of contact for a SAML 1.1 Single Sign-On federation, a partner is not being prompted to log in and is instead receiving an error response. What is a possible cause of the problem?

It is likely that the service provider (SP) did not pass the Authenticate=yes parameter in the login request over the SOAP channel. ✘ It is likely that the SP did not pass the Authenticate=yes parameter in the authn request over the SOAP channel. ✘ It is likely that the correct ACL is not attached to the login endpoint object. Either the tfimcfg utility may not have been executed for this federation, or the ACLconfiguration was modified afterwards. ✘ It is likely that the correct ACL is not attached to the authn endpoint object. Either the tfimcfg utility may not have been executed for this federation, or the ACLconfiguration was modified afterwards. ✔

Answer & Solution Discuss in Board Save for Later

Answer & Solution

Answer: Option B

Solution:

It provides fallback for IE8.

Prev Next

Congratulations

you have successfully completed the test

Back to Question View Result

Detail Form

We will send your result on your email id and phone no. please fill detail

Name

Email ID Note: Report will be send to the above Email ID

Phone No

IBM Tivoli Federated Identity Manager V6.2.2 Implementation Set 3

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Answer & Solution

Answer: Option B

Solution:

Congratulations

COMPANY

Products

OTHERS

Partner