IBM(000-020)
单选题An SSL VPN can be used in conjunction with IBM Tivoli Access Manager for Enterprise Single Sign-On to provide remote access to business critical information. Which statement is true about the Mobile ActiveCode (MAC) when it is used with a VPN Solution
题目
The MAC can only be delivered to a mobile phone and is good for a single use only.
The MAC can be delivered by mobile phone, e-mail, or fax, and it is good for one time authentication only.
The MAC can only be delivered to a mobile phone and it is good until the expiration time is reached, as set by an administrator.
The MAC can be delivered by mobile phone, email, or fax, and it is good until the expiration time is reached, as set by an administrator.
相似问题和答案
第1题:
Which of the following technologies can be used to remotely gain access to a server console?()
- A、PS/2 KVM
- B、LDAP
- C、VNC
- D、Remote desktop
- E、VPN
正确答案:C,D
第2题:
An organization has decided to deploy an IBM Tivoli Access Manager for Enterprise Single-on solution to help address security and productivity issues. Per their corporate security policy, the organization has detailed requirements related to password management for their enterprise applications. Which password requirements need to be captured?()
- A、details related to application user ID requirements
- B、policy requirements related to the number of applications that a user can access
- C、policy requirements for application and user initiated password resets and password complexity
- D、do nothing as password policy requirements are best addressed within the application space rather than in an Enterprise Single Sign-On project
正确答案:C
第3题:
When designing remote access to the Enterprise Campus network for teleworkers and mobileworkers, which of the following should the designer consider?()
- A、 It is recommended to place the VPN termination device in line with the Enterprise Edge 1
- B、 Maintaining access rules, based on the source IP of the client, on an internal firewall drawnfrom a headend RADIUS server is the most secure deployment
- C、 VPN Headend routing using Reverse Route Injection (RRI) with distribution is recommended when the remote user community is small and dedicated DHCP scopes are in place
- D、 Clientless SSL VPNs provide more granular access control than SSL VPN clients (thin or thick),including at Layer 7
正确答案:A
第4题:
Which important factor is taken into account when determining an estimate for the maximum network bandwidth to be used by a customer?()
- A、the size of the hard drives for each PC connected to the client’s network
- B、the average size of the wallet based on the number of profiles and accounts
- C、if any users will use IBM Tivoli Access Manager for Enterprise Single Sign-On during non-work hours
- D、the number of users that will be connected using the wireless network, as opposed to a wired connection
正确答案:B
第5题:
Which type of IBM Tivoli Access Manager for Enterprise Single Sign-On built-in application connector should be used to integrate with Novell eDirectory as a backend enterprise directory?()
- A、Windows NT Connector
- B、Generic (LDAP) Connector
- C、Network Information Service Connector
- D、Active Directory Service Interfaces Connector
正确答案:B
第6题:
Which two situations necessitate integration of external systems with IBM Tivoli Access Manager for Enterprise Single Sign-On using API published by IBM Tivoli Access Manager for Enterprise Single Sign-On IMS Server?()
- A、to add second factor based authentication to a Web application
- B、to pre-populate user wallets with all their application credentials in one go
- C、to enhance out-of-the-box audit logging by creating custom audit log events
- D、to create reports from audit log trails collected by IBM Tivoli Access Manager for Enterprise Single Sign-On
- E、to configure automatic password change on expiry for an application so that the new password is a random string of specified strength
正确答案:A,B
第7题:
When planning for secure communications between a partner and the Point of Contact, at what level is the SSL connection defined?()
- A、each individual partner within a single federation
- B、all federations configured for an instance of IBM Tivoli Federated Identity Manager (ITFIM)
- C、each individual federation within an instance of ITFIM
- D、all federation functionality fronted by a single instance of IBM Tivoli Access Manager for e-business WebSEAL
正确答案:C
第8题:
What is not a difference between VPN tunnel authentication and per-user authentication?()
- A、VPN tunnel authentication is part of the IKE specification.
- B、VPN tunnel authentication does not control which end user can use the IPSec SA (VPN tunnel).
- C、User authentication is used to control access for a specific user ID, and can be used with or without a VPN tunnel for network access authorization.
- D、802.1X with EAP-TLS (X.509 certificates) can be used to authenticate an IPSec tunnel.
正确答案:D
第9题:
Which Web-based administration tools are available in IBM Tivoli Access Manager for Enterprise Single Sign-On?()
- A、AccessAdmin,AccessAssistant,and IMS Configuration Utility
- B、AccessStudio,AccessAdmin,AccessAssistant,and IMS Configuration Utility
- C、AccessManager Console,AccessAdmin,AccessAssistant,and IMS Configuration Utility
- D、AccessEnabler,AccessStudio,AccessAdmin,AccessAssistant,and IMS Configuration Utility
正确答案:A
第10题:
Which statement is true about a DB2 user that is to be used as the database user for IBM Tivoli Access Manager for Enterprise Single Sign-On IMS Server?()
- A、The database user must be created using DB2 Control Center.
- B、The database user must be created using the DB2 Command Line Processor.
- C、The database user may be created using DB2 Control Center or DB2 Command Line Processor.
- D、The database user must be created by IBM Tivoli Access Manager for Enterprise Single Sign-On V8.0.1 IMS Installer.
正确答案:C