1、IBM 000-003
000-003 Fundamentals of Applying Tivoli Security and
Compliance Management Solutions V2
Practice Test
Version 3.0
IBM 000-003: Practice Exam
QUESTION NO: 1
What is another piece of essential in
2、formation, in addition to the list below, which can be used to
create a diagram of the customer organization?
- divisions
- location(s) / geographical information
- reporting chains
A. business units
B. e-mail addresses
C. Help Desk functions
D. whether or not the customer has a dedicated
3、Operations Center
Answer: A
QUESTION NO: 2
Which document describes what needs to be addressed in a security solution for a customer?
A. Installation History
B. Design Specification
C. Interface Specification
D. Requirements Specification
Answer: D
QUESTION NO: 3
4、How can a user bypass the strong authentication mechanism provided by IBM Tivoli Access
Manager for Enterprise Single Sign-On?
A. Get an authorization code from help desk.
B. Access the application using Web Workplace
C. There is no way to bypass strong authentication.
D. Reboot the system di
5、sabling the strong authentication.
Answer: A
QUESTION NO: 4
Which three actions should be taken to improve the performance and availability of IBM Tivoli
Directory Server? (Choose three.)
"Pass Any Exam. Any Time." -
�
2
IBM 000-003: Practice Exam
A. p
6、artition the directory if local applications require access to the full directory content
B. use a cascade replication topology to off-load replication work from the replica server
C. partition the directory if remote applications require access to the full directory content
D. distribute multipl
7、e replicas into other LANs with slow network connections to the master
E. partition the directory if local applications require access to a subset of directory content
F. use a peer-to-peer replication topology if any of the applications perform several updates to the
directory
Answer: D,E,F
8、
QUESTION NO: 5
What is the authoritative source of identity information about a user in an identity federation?
A. the SAML V1.1 protocol
B. the identity provider only
C. the service provider only
D. both the service and identity providers
Answer: B
QUESTION NO: 6
A c
9、ustomer wants to consolidate authentication information for all existing products, such as IBM
WebSphere, IBM Tivoli Access Manager, and IBM Tivoli Identity Manager with a single product.
Which product can be an authentication information server for the customer?
A. IBM DB2
B. Tivoli Data Ware
10、house
C. IBM Tivoli Directory Server
D. IBM Tivoli Directory Integrator
Answer: C
QUESTION NO: 7
With which other IBM product does IBM Tivoli Key Lifecycle Manager work seamlessly?
A. IBM Tivoli Backup Manager
B. IBM Tivoli Storage Manager
C. IBM Tivoli Encryption Manager
11、
"Pass Any Exam. Any Time." -
�
3
IBM 000-003: Practice Exam
D. IBM Tivoli System Storage Archive Manager
Answer: B
QUESTION NO: 8
After meeting with the customer, the following list concerning security is compiled:
- customer business requirements
- cu
12、stomer business requirements
- immediate business/security needs
- customer long-term business/security vision
- customer long-term business/security vision
- customer stated security requirements
- customer stated security requirements
What should also be included in this list?
A.
13、list of products to be deployed
B. recognized security standards
C. existing change control processes
D. company complete organizational chart
Answer: B
QUESTION NO: 9
Which two types of information are needed when creating a document on a customer's IT and
business organizational
14、 structure? (Choose two.)
A. number of business units
B. annual expenditure on IT assets
C. number of employees in IT organization
D. list of divisions within the IT department
E. total number of systems used by the company
Answer: A,D
QUESTION NO: 10
The solution advisor is an
15、alyzing a customer business processes, and focusing on a subset
dealing with cross-enterprise We b transactions, both HTML- and SOAP-based. Which three
"Pass Any Exam. Any Time." -
�4
IBM 000-003: Practice Exam
corresponding security requirements can be addressed by IBM
16、 Tivoli Federated Identity Manager?
(Choose three.)
A. federated (cross-enterprise) Web single sign-on
B. federated (cross-enterprise) provisioning of users
C. federated (cross-enterprise) authorization of access to Web resources (SOAP only)
D. federated (cross-enterprise) authorization of ac
17、cess to Web resources (HTML only)
E. federated (cross-enterprise) authorization of access to Web resources (SOAP and HTML)
F. federated (cross-enterprise) assurance of compliance for both enterprises desktops and servers
Answer: A,B,E
QUESTION NO: 11
What are the two ways of configu
18、ring federation with IBM Tivoli Federated Identity Manager?
(Choose two.)
A. LTPA
B. Browser Post
C. Shared Cookies
D. Credential Cache
E. Artifact Resolution
Answer: B,E
QUESTION NO: 12
Which three IBM products have achieved Common Criteria Evaluation Assurance Level
certifi
19、cation as of July 2009? (Choose three.)
A. IBM Tivoli Directory Server
B. IBM Tivoli Identity Manager
C. IBM Tivoli Directory Integrator
D. IBM Tivoli Security Compliance Manager
E. IBM Tivoli Access Manager for e-business
F. IBM Tivoli Access Manager for Enterprise Single Sign-On
Answer:
20、 A,B,E
QUESTION NO: 13
"Pass Any Exam. Any Time." -
�
5
IBM 000-003: Practice Exam
After a number of interviews with various customer personnel, the term ser productivity ?logon and
transaction experience came up as a business process. Other than
21、 the word logon there is not
much in the way of additional description that gives insight into how that process relates to
security. What is a good list of security (and related) elements that relate most closely to the
process as identified above?
A. firewall, filtering router, and intrusion
22、detection
B. SSL acceleration, content filtering, and pop-up blockers
C. single sign-on, personalization, scalability, and availability
D. identification, public-key infrastructure, and multi-factor authentication
Answer: C
QUESTION NO: 14
What are three featured capabilities of IB
23、M Tivoli Security Policy Manager? (Choose three.)
A. authors, administers, transforms, and distributes security policies
B. imports application roles and integrates with existing identity systems
C. simple authentication capability across all systems, services, and applications
D. delivers mai
24、nframe-class security and auditing in a lightweight, easy-to-use product
E. enforces policies across multiple policy enforcement points using runtime security services
F. centralizes security management and makes it easy and more cost effective to deploy secure
applications
Answer: A,B,E
25、
QUESTION NO: 15
Which three pieces of information should be given to a customer to help them prepare for the long-
range vision and the future direction of their security solutions? (Choose three.)
A. Biometrics should be used for authentication.
B. Public-key infrastructure is the corre
26、ct identity/authentication approach.
C. There must be a continued evolution towards standards-based solutions.
D. End-to-end security is needed, with no security gaps in common scenarios.
E. Integrated security solutions are preferable to point solutions" that are linked together.
F. Plug-in acc
27、ess control enforcement will eventually achieve dominance over proxy solutions.
Answer: C,D,E
"Pass Any Exam. Any Time." -
�
6
IBM 000-003: Practice Exam
QUESTION NO: 16
Which technology needs to be available when managing a nonstandard datab
28、ase with an IBM
Tivoli Identity Manager adapter?
A. SQL
B. JDBC
C. ODBC
D. TCP/IP
Answer: B
QUESTION NO: 17
Which skills are necessary to implement IBM Tivoli Directory Integrator to synchronize data
between different registries and databases?
A. Java, JavaScript, DSML, SQL
29、 and JNDI
B. C/C++, Perl Script, XSL, SSL, and LDAP
C. Java, JavaScript, HTML,SAML, and POP3/IMAP
D. WS-Provisioning, WS-Federation, SAML, and Liberty V1.2
Answer: A
QUESTION NO: 18
A customer has the following requirements:
a) System Administrators are allowed to log in to AIX s
30、ervers any time of the day.
b) Database administrators are only allowed to log in to AIX servers between 6:00 a.m. and 6:00
p.m. local time.
Which IBM Tivoli product is capable of enforcing login policies that will satisfy the above
requirements?
A. IBM Tivoli Identity Manager
B. IBM Tivoli
31、Federated Identity Manager
C. IBM Tivoli Access Manager for Operating Systems
D. IBM Tivoli Access Manager for Enterprise Single Sign-On
Answer: C
QUESTION NO: 19
"Pass Any Exam. Any Time." -
�
7
IBM 000-003: Practice Exam
Which two requirements are
32、addressed by implementing IBM Tivoli Identity Manager? (Choose
two.)
A. authentication of users
B. enterprise single sign-on
C. role-based account provisioning
D. automation of account approvals
E. system-wide security compliance reporting
Answer: C,D
QUESTION NO: 20
Which enc
33、ryption method is used by IBM Tivoli Access Manager (Tivoli Access Manager) for e-
business when Tivoli Access Manager is configured with the FIPS mode enabled?
A. SSLv3
B. TLSv1
C. WPAv2
D. Kerberos
Answer: B
QUESTION NO: 21
Which information should a customer baseline documen
34、t include?
A. proof that thereare no existing orphan accounts
B. the naming convention in place for all current users
C. the customer key business processes related to security
D. a list of all authentication mechanisms used by the customer
Answer: C
QUESTION NO: 22
What is the
35、recommended approach to map custom attributes in the HR Feed to the new IBM
Tivoli Identity Manager (Tivoli Identity Manager) person attributes?
A. Create new LDAP attributes and add them to theinetOrgPerson objectclass.
B. Create new LDAP attributes and add them to the base personclass(erPersonItem).
"Pass Any Exam. Any Time." -
�
浙ICP备2021020529号-1 | 浙B2-20240490 
