Product Description
Exam Number/Code: 000-875
Exam name: ibm tivoli fenerated identity manager v6.0 implementation
000-875 test is the important of IBM certification. Only you pass the 000-875 exam you could have the chance to get IBM certification. To help examinee, Exambible publish the Questions and Answers about 000-875 exam. And the 144 simulation exam are all designed by expert from Exambible. Examinees could have an enough prepare by these simulation exercises and pass the 000-875 test successfully.
Exambible also provide free 000-875 Demo, examinees can download and use before buying 000-875 Q&As, then decide if they need to purchase.
More IBM IBM certifications I Resources
Recommended IBM exams
- IBM 000-222 exam: P5 and pSeries Administration and Support for AIX 5L V5.3
- IBM LOT-805 exam: Using Web Services in IBM Lotus Domino 8 Applications
- IBM 000-046 exam: DOORS v9
- IBM 000-236 exam: Aix 5l communications
- IBM 000-700 exam: ibm db2 udb v8.1 family fundametals
- IBM 000-238 exam: p5 and pseries technical sales support
- IBM COG-180 exam: IBM Cognos 8 BI Professional
- IBM 000-432 exam: IBM Tivoli Storage Manager V5.5 Operator
- IBM 000-879 exam: IBM Tivoli Provisioning Mgr Express V4.1 for Software Dist
- IBM 000-330 exam: Power Systems Technical Support for AIX and Linux
- IBM 000-669 exam: SOA Fundamentals (2008)
- IBM 000-252 exam: test 252,ibm websphere apervr v6 netwrk deplovment.core admin
IBM IBM certifications I 000-875 Web Demo
This webdemo is just a demo data, only for reference and learning, there is no other purposes.
1.Click the Exhibit button.
You have started with an EchoApplication.ear that has no WS-Security
configured. When configuring WS-Security on the EchoApplication.ear,
which piece of the configuration indicates that a UsernameToken will be
required for Java Authentication and Authorization Service (JAAS) login?
A. Caller Part
B. Token Consumer
C. Required Confidentiality
D. Required Security Token
Answer: A
3. Which two commands can be used to query the status of WebSEAL servers
on the local machine? (Choose two.)
A. iv status
B. amstatus
C. pdweb status
D. pd_start status
E. webseald -status
Answer: CD
4. What error condition would cause the error message below to appear in
the logs?
FBTLIB204E No federation exists for this principal
A. Consent to federate was not granted.
B. IBM Tivoli Access Manager user account is invalid.
C. The federation being requested by the user has not been enabled.
D. The federation being requested has not been defined for this user.
Answer: A
5. What would result in this error message?
com.tivoli.am.fim.trustserver.sts.STSException: FBTSTM015E The given
TokenType or
AppliesTo({{https://sp.benefitsx.com/demo/FIMDemo/Benefits/protected/accountinfo.jsp};{};{}})
in the request is not supported by this server's configuration for
http://schemas.xmlsoap.org/ws/2004/04/security/trust/Validate
RequestType and Issuer
({{https://idp.myemployerx.com/FIM/sps/wsfed/wsf};{};{}}).
A. An incorrect certificate has been configured at the Service Provider.
B. The resource being requested by the Identity Provider is not
recognised.
C. The clocks on the Identity Provider and Service Provider are out of
sync.
D. The partner realm name at the Service Provider has been configured
incorrectly.
Answer: D
6. Company-A has created a web service application for use by both its
trading partners. The application requires a web services security
request that includes a SAML token identifying both the end-user and
attributes of that user.
The trading partners have agreed to submit a web service request with a
signed SAML token that includes both the user's identity and attributes
of the user. The SAML attributes will vary by partner but the
application requires a consistent set of attributes for example, the
same set of attributes are required for all client requests.
SAML Assertions must be authenticated via validation of the token's
element.
Which scenario satisfies the requirements of the application?
A. A WSSM Partner is configured for each trading partner. Each WSSM
Partner configuration specifies the mapping rules required to transform
the identity & attributes received from the partner into those
required by the application. The signed SAML token of each WSSM partner
will be validated with a key that is unique to that trading partner.
B. A WSSM Partner is configured for each trading partner that is not
already part of a SAML federation for SSO. The mapping rules for all
partners must transform the identity and attributes received from the
partner into those required by the application. The signed SAML token
of each partner will be validated with a key that is unique to that
trading partner.
C. The SAML token submitted by the trading partner is known to be
trustworthy because its element will be validated
by WebSphere. A WSSM Partner is configured for each trading partner and
each configuration specifies the mapping rules required to transform the
attributes received from the partner into those required by the
application.
D. A Web Services Security Management (WSSM) Partner is configured for
each trading partner. The signed SAML token of each WSSM partner is
validated with a key that is unique to that trading partner. Because
all partners submit a SAML token, mapping rules are not required. SAML
is a standard and all elements of a SAML token must comply with that
standard.
Answer: A
7. Which two security tokens may carry user attribute information as
part of the defined token format? (Choose two.)
A. Kerberos
B. X.509 Token
C. SAML Assertion
D. Liberty Assertion
E. Username Token
Answer: CD
8. Under which IBM Tivoli Federated Identity Manager Console main menu
option would you find the settings for logging and tracing?
A. Service Settings
B. Logging and Auditing
C. Service Management
D. Monitoring and Logging
Answer: A
2. Consider the following scenario involving customers of companies
RBTelco and RBBenefits. RBTelco is a large multinational company that
outsources health care benefit management to RBBenefits. RBTelco
employees access RBBenefits resources through an authenticate-able
account at each company.
RBTelco employees are being moved to a federated environment. Employees
will access RBBenefits's resources using Single Sign-On. When Single
Sign-On is enabled, all RBTelco employees will be migrated to the
federated Single Sign-On implementation. RBTelco employees will have
access to RBBenefits's resources based on his or her RBTelco
authentication. After the migration, ALL access to RBBenefits's
resources will be by Single Sign-On from RBTelco direct authentication
to RBBenefits by a RBTelco employee will not be possible.
RBBenefits requires that RBTelco identify each employee with an alias
that is based on a mathematical function using the employee number,
social insurance number, and several other variables (shared between
RBTelco and RBBenefits only). They will use a Liberty ID-FF 1.2
Browser/POST approach for Single Sign-On between companies. The number
of machines required to support this environment when each machine is an
Intel-based processor with 1GB RAM, 10 GB hard drive, and RHEL 30 is:
A. 2 = (TAMeB WebSEAL on one machine) + (remainder TAMeB and all ITFIM
components on one machine)
B. 3 = (TAMeB WebSEAL on one machine) + (remainder TAMeB on one machine)
+ (all ITFIM components on one machine)
C. 3 = (TAMeB WebSEAL on one machine) + (remainder TAMeB and ITFIM
runtime/management on one machine) + (remainder ITFIM on one machine)
D. 2 = (TAMeB WebSEAL and IBM Tivoli Federated Identity Manager (ITFIM)
runtime/management on one machine) + (remainder TAMeB and ITFIM on one
machine)
Answer: C
