IBM C9510-401 Exam Practice Test Instant Access

Question 1

A system administrator needs to install WebSphere Application Server using response files, so that a silent install can be done. The administrator has ensured that all required prerequisites have already been installed and, has downloaded and expanded the required WebSphere Application Server installation files.

What can the administrator run to install the product?

Ainstall --options responsefile.xml -silent

Binstall --acceptLicense --options responsefile.xml -silent

Cimcl --acceptLicense input responsefile.xml --log logfile.txt

DIBMIM --acceptLicense --input responsefile.xml --log logfile.txt

Answer : C

Example of the use of the response files to install the product.

imcl.exe -acceptLicense

input C:\temp\keyring_response_file.xml

-log C:\temp\keyring_log.xml

References:

Question 2

A system administrator is configuring the security of a new environment. The administrator has been asked to configure one LDAP server that has different sub-trees for business users and administration users.

What should the administrator do to implement the required security configuration?

AInstall and configure a TAI (Trust Association Interceptor)

BConfigure a security domain for the stand-alone LDAP server.

CUse Federated repositories and configure the supported entity types.

DUse Stand-alone custom registry and configure the flat file implementation.

Answer : C

select the type of user registry that you need for your environment:

References: WebSphere Application Server V8.5 Administration and Configuration Guide for the Full Profile (July 2013), page 212

Question 3

How can a system administrator secure a WebSphere Application Server environment to ensure that an application code will not be allowed to access any files in the server's file system?

AConfigure the CSIv2 outbound communications under RMI/IIOP security.

BConfigure the file-based repository and create the fileRegistry.xml file.

CEnable Java 2 security and configure the app.policy and was.policy files.

DUse the AdminTask deleteAuthorizationGroup to remove application access.

Answer : C

When Java 2 security is enabled for a WebSphere Application Server, all the applications that run on WebSphere Application Server undergo a security check before accessing system resources. An application might need a was.policy file if it accesses resources that require more permissions than those granted in the default app.policy file

References: http://www.aiotestking.com/ibm/how-can-a-system-administrator-secure-a-websphere-application-server-environment-to-ensure-that-an-application-code-will-not-be-allowed-to-access-any-files-in-the-servers-file-system/

Question 4

There are many applications deployed in a large WebSphere Application Server cluster. A system administrator is required to give Configurator role access to a developer for a single application deployed in that cluster.

How should the administrator meet this requirement and restrict Configurator role access for a single application?

ACreate a J2C authentication alias for that developer.

BCreate an Administrative user role and provide Configurator access to the developer.

CCreate an Administrative group role and provide Configurator access to the developer.

DCreate an administrative authorization group, scope it only for that application and create an Administrative user or group role to give Configurator access to the developer.

Answer : D

Fine-grained administrative security

In releases prior to WebSphere Application Server version 6.1, users granted administrative roles could administer all of the resources under the cell. WebSphere Application Server is now more fine-grained, meaning that access can be granted to each user per resource.

For example, users can be granted configurator access to a specific instance of a resource only (an application, an application server or a node).

To achieve this instance-based security or fine-grained security, resources that require the same privileges are placed in a group called the administrative authorization group or authorization group. Users can be granted access to the authorization group by assigning to them the required administrative role.

References: http://www-01.ibm.com/support/knowledgecenter/SSEQTP_8.5.5/com.ibm.websphere.base.doc/ae/csec_fineg_admsec.html?cp=SSEQTP_8.5.5%2F1-8-1-30-3-3

Question 5

A customer has enabled LTPA as their authentication mechanism and has web resources that are not secured by proper security constraints. A system administrator is required to ensure that all web resources are secured.

How should the administrator accomplish this?

AEnable ''Authenticate when any URI is accessed''.

BEnable ''Authenticate only when the URI is protected''.Disable ''Use available authentication data when an unprotected URI is accessed''.

CEnable ''Authenticate only when the URI is protected''.Enable ''Use available authentication data when an unprotected URI is accessed''.

DMap the application security roles to the configured user registry's groups.

Answer : A

Authenticate only when the URI is protected

The application server challenges the web client to provide authentication data when the web client accesses a Uniform Resource Identifier (URI) that is protected by a Java Platform, Enterprise Edition (Java EE) role. The authenticated identity is available only when the web client accesses a protected URI.

This option is the default Java EE web authentication behavior that is also available in previous releases of WebSphere Application Server.

References: https://www.ibm.com/support/knowledgecenter/SSAW57_8.5.5/com.ibm.websphere.base.doc/ae/usec_webauth.html

Question 6

Within a WebSphere Application Server Network Deployment cell, a system administrator needs to write a script to determine if a particular server is stopped. It is important that the wsadmin script explicitly return a status of stopped as opposed to just failing.

What wsadmin object should the administrator use to write this script?

AAdminApp

BAdminTask

CAdminConfig

DAdminControl

Answer : D

Use the AdminControl object to invoke operational commands that manage objects for the application server.

Many of the AdminControl commands have multiple signatures so that they can either invoke in a raw mode using parameters that are specified by Java Management Extensions (JMX), or by using strings for parameters. In addition to operational commands, the AdminControl object supports some utility commands for tracing, reconnecting with a server, and converting data types.

References: https://www.ibm.com/support/knowledgecenter/en/SSAW57_8.5.5/com.ibm.websphere.nd.doc/ae/rxml_admincontrol.html

Question 7

A system administrator wants to learn some of the Jython scripting commands for the administration of the environment.

Which product feature should the administrator use?

AThe wsadmin.properties file to load a profile.

BThe AdminTask object to generate wsadmin scripts.

CThe guided activities panel from the Integrated Solutions Console (ISC).

DThe ''Log command assistance commands'' option in the Integrated Solutions Console (ISC).

Answer : D

IBM C9510-401 IBM WebSphere Application Server Network Deployment V8.5.5 and Liberty Profile Exam Practice Test