EnsurePass
2017 Nov IBM Official New Released C2180-317
100% Free Download! 100% Pass Guaranteed!
http://www.EnsurePass.com/C2180-317.html

IBM WebSphere Message Broker V8.0 System Administration

Question No: 1

A company has the requirement to have their message flow application running on broker BRK1 communicate with the CICS Transaction Server. The message flow application contains CICSRequest node that has security identity defined as mySecurityIdentity. The CICS Transaction server only accepts the transactions from applications if they are sent by the userId user1 with password password1. Which command does the system administrator need to run to set the userId and password on the broker?

  1. mqsisetdbparms BRK1 -n SecurityIdentity -u user1 -p password1

  2. mqsisetdbparms BRK1 -n mySecurityIdentity -u user1 -p password1

  3. mqsisetdbparms BRK1 -n cics::SecurityIdentity -u user1 -p password1

  4. mqsisetdbparms BRK1 -n cics::mySecurityIdentity -u user1 -p password1

Answer: D

Question No: 2

A system administrator is configuring Public Key Infrastructure (PKI) for an execution group EG1 that is deployed to broker BRK1. The development team informed the system administrator that their requirement is to send the SOAP requests to an external web service provider. The provider only receives https requests and requires to authenticate the broker requests as well. Which commands does the system administrator need to run to configure PKI at the execution group level?

  1. mqsichangeproperties BRK1 -e EG1 -o ComIbmJVMManager -n keystoreFile -v keystore.jksmqsichangeproperties BRK1 -e EG1 -o ComIbmJVMManager -n truststoreFile

    -v truststore.jks

  2. mqsichangeproperties BRK1 -e EG1 -o ComIbmJVMManager -n keystoreFile -v keystore.jksmqsichangeproperties BRK1 -e EG1 -o HTTPSConnector -n truststoreFile -v truststore.jks

  3. mqsichangeproperties BRK1 -e EG1 -o ComIbmJVMManager -n keystoreFile -v keystore.jksmqsichangeproperties BRK1 -o BrokerRegistry -n brokerTruststoreFile -v truststore.jks

  4. mqsichangeproperties BRK1 -o BrokerRegistry -n brokerKeystoreFile -v keystore.jksmqsichangeproperties BRK1 -o BrokerRegistry -n brokerTruststoreFile -v truststore.jks

Answer: A

Question No: 3

A message flow needs to be secured based on the identity credentials. A system administrator is asked to configure the message flow security for authorization, identity mapping and authentication. Which one of the following external security providers can the system administrator use?

  1. WS-Trust V1.3

  2. WS-SecurityPolicy V1.2

  3. IBM Tivoli Federated Identity Manager V6.0

  4. Lightweight Directory Access Protocol (LDAP) V3

Answer: A

Question No: 4

A system administrator has been asked to configure the security profile to the enterprise TFIM v6.2 security server. The profile is to be used by message flows for authentication mapping and authorization from WebSphere Message Broker BRK1.

The TFIM server information provided is as follows:

Ensurepass 2017 PDF and VCE

Which command does the system administer need to run to create the profile?

  1. mqsicreateconfigurableservice BRK1 -c SecurityProfiles -o myTFIMv62Profile-n authentication,mapping,authorization,authenticationConfig,-v quot;TFIMquot;,TRUE,quot;TFIMquot;,https://TFIM.acme.com:9443/TFIM/services/RequestSecurityToken

  2. mqsicreateconfigurableservice BRK1 -c SecurityProfiles -o myTFIMv62Profile-n authentication,mapping,authorization,mappingConfig-v quot;TFIM v6.2quot;,TRUE,quot;TFIM v6.2quot;,https://tfim.acme.com:9443/TFIM/services/RequestSecurityToken

  3. mqsicreateconfigurableservice BRK1 -c SecurityProfiles -o myTFIMv62Profile-n authentication,mapping,authorization,mappingConfig-v quot;WS-Trust v1.3 STSquot;,quot;WS-Trust v1.3 STSquot;,quot;WS-Trust v1.3 STSquot;,https://tfim.acme.com:9443/TFIM/services/RequestSecurityToken

  4. mqsicreateconfigurableservice BRK1 -c SecurityProfiles -o myTFIMV62Profile-n

authentication,mapping, authorization,configURL-v TRUE, quot;TFIMquot;, TRUE,https://tfim.acme.com:9443/TFIM/services/RequestSecurityToken

Answer: C

Question No: 5

A development team has been notified that all the requests serviced by their SOAPInput node message flow will now contain wsse headers for authentication, encryption and signatures. The system administrator created the security profile with authentication set to use LDAP and asked the development team to associate the flow#39;s BAR file with the security profile and redeploy it to the broker. When the requests were sent to the broker, they were not processed. What did the system administrator miss?

The system administrator missed: 1. creating the policy set

  1. 2. creating the consumer policy set binding3. putting key information in the policy set4. adding the private keys to the keystore5. pointing the broker to it and giving the names of the policy set and the policy set binding to the developers forassociating them with the BAR file before the redeploy

  2. 2. creating the provider policy set binding3. putting the key information in the policy set binding4. adding the private keys only to the keystore5. pointing the broker to it and giving the names of the policy set and the policy set binding to the developers forassociating them with the BAR file before the redeploy

  3. 2. creating the consumer policy set binding3. putting the key information in the policy set4. adding the private and public keys to the keystore and truststore5. pointing the broker to them and giving the names of the policy set and the policy set binding to the developers forassociating them with the BAR file before the redeploy

  4. 2. creating the provider policy set binding3. putting the key information in the policy set binding4. adding the private and public keys to the keystore and truststore5. pointing the broker to them and giving the names of the policy set and the policy set binding to the developers forassociating them with the BAR file before the redeploy

Answer: D

Question No: 6

A system administrator is asked to assist a developer who has setup a message flow that uses an HTTP Input node to securely process SOAP messages deployed to run on LINUX broker BRK1. After xdeploying the flow into the production environment, the application

invoking the flow is receiving a failure response. What should the system administrator do to get the developer to understand the security exception? Have the developer:

  1. change the validation property to Content and Value.

  2. change the identity token type on HTTP Input node to Username.

  3. change the Fault format property of the HTTP Input Node to SOAP1.2 and retest the failing request.

  4. set Treat Security Exceptions as normal exceptions property of the HTTP Input Node, redeploy the message flow and retest failingrequest.

Answer: D

Question No: 7

A system administrator configures a message flow security to perform the end-to-end processing of all identity credentials that are carried in a message through a message flow using IBM Tivoli Federated Identity Manager (TFIM). Which of the following three tasks performed by the security manager require the use of TFIM? (choose 3)

  1. Authenticate the identity.

  2. Enable default propagation.

  3. Map the identity to an alternative identity.

  4. Extract the identity from an inbound message.

  5. Propagate either the alternative identity or the original identity with an outbound message.

  6. Check that either the alternative identity or the original identity is authorized to access the message flow.

Answer: A,C,F

Question No: 8

The broker administration security has been set up on a broker BRK1 for a developer dev1. In addition to the existing security setting, a system administrator is asked to set security permissions for data capture so that the developer can perform the record and replay actions on the broker. Which command does the system administrator need to run?

  1. setmqaut -m BRK1 -n quot;SYSTEM.BROKER.DC.AUTH quot; -t q -p dev1 inq put set

  2. setmqaut -m BRK1 -n quot;SYSTEM.BROKER.DC.AUTH quot; -t q -p dev1 -all inq put

  3. setmqaut -m BRK1 -n quot;SYSTEM.BROKER.AUTH.** quot; -t q -p dev1 inq put set get

  4. setmqaut -m BRK1 -n quot;SYSTEM.BROKER.AUTH.** quot; -t q -p dev1 -all inq put set

get

Answer: A

Question No: 9

A system administrator was asked to create a security identity quot;ftp::FTP1quot; associated with a user ftpuser1 and its password password1. The message flow containing the FileOutput node with the correct ftp credentials has been deployed to the broker BRK1 on Linux system already. The system administrator ran the command: mqsisetdbparms BRK1 -n ftp::FTP1 -u ftp\user1 -p password1 When the transaction was processed, the output file was not generated on the ftp server and the failure reported incorrect user credentials.

What did the system administrator do wrong?

  1. Supplied incorrect userId and password in the command.

  2. Used the incorrect format of security identity in the command.

  3. Added the extra escape character with -u option in the command.

  4. Did not add an extra escape character with -u option in the command.

Answer: D

Question No: 10

A company has multiple users that access broker using web user interface. The system administrator of the company has been asked to define security for a group of users in such a way that user1 is able to view all the broker resources, user2 is able to view and modify all the broker resources and user3 is able to view and modify selected broker resources. What does the system administrator need to do?

  1. Only run the command mqsiwebuseradmin

  2. Only ensure that broker administration security is active.

  3. Define security and roles at the Operating system level.

  4. Ensure broker administration security is active and run the command mqsiwebuseradmin

Answer: D

100% Free Download!
Download Free Demo:C2180-317 Demo PDF
100% Pass Guaranteed!
Download 2017 EnsurePass C2180-317 Full Exam PDF and VCE

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 EnsurePass IT Certification PDF and VCE