If you are an administrator, but not a superuser administrator, you can: (Choose two)
A. Create superuser administrators
B. Access CA SiteMinder objects, tools, and features
C. Change rules, policies, and responses in various domains
D. Instruct the Policy Server to set upa default administrator account
What is assigned to each authentication scheme?
A. A number between 0 and 10 to define the order of access
B. A number between 0 and 1000 to define a protection level
C. A number between 0 and 100 to define a zone of protection
D. A number between 0 and 100 to define a development state
User attribute mapping enables you to:
A. Map policies to different user attributes.
B. Map user groups to different administrator groups.
C. Map user classes to different user attribute names.
D. Map one common name to different user attribute names in different user directories.
Which features characterize the J2EE application server agent? (Choose two)
A. Supports IBM WebSphere and BEA WebLogk
B. Protects J2EE application server-based applications
C. Moves the point of trust from the web server to the ERP/CRM server
D. Makes calls to the Event Manager when authentication credentials are provided
To turn on the tracing facility for all Policy Server actions, you: A. Configure the smtracedefault.txt file.
B. Modify the general_trace.template file.
C. Set the Enable Profiling option on the Policy Server Profiler tab.
D. Configure the Policy Server Management Console logging option.
Where are named expressions stored?
A. In cookies
B. In user classes
C. In the policy store
D. In the Administrator Group
Which tool do you use to determine the identifiers of objects for a granular export or import by exploring a list of applications or domains?
A. XPSConfig
B. XPSImport
C. XPSExport
D. XPSExplorer
In CA SiteMinder, a Web Agent interaction determines whether an authenticated user has access to a requested resource. The decision is based on a security policy defined in the policy store or entitlement store.
This Web Agent interaction is called:
A. isProtected
B. isAuthorized
C. isRequested
D. isAuthenticated
When you install a CA SiteMinder Policy Server, you need to configure two service accounts.
Which service account has privileges to create, read, modify, and delete objects in the LDAP tree underneath the policy store root object?
A. smHOST
B. DN System
C. Administrative DN
D. Database Administrative Account
Named expressions enable you to:
A. Examine core components.
B. Define reusable expressions.
C. Define the permissions on reports.
D. Define ODBC user directory attributes.