C2180-274試験無料問題集（75題）「IBM WebSphere DataPower SOA Appliances Firmware V5.0 Solution Implementation 認定」

出題：1

A solution implementer is considering the following active-standby configuration between two DataPower appliances:

In a simulated power failure of Appliance 1 using this active-standby configuration in a sandbox environment, Appliance 2 did not take over the active interface. What could be causing this behavior?

A. In an active-standby configuration, thepriority of Appliance 2 must be changed to 99 for the failure takeover to work.

B. Appliances in the active-standby configuration must be in the same network subnet and broadcast domain.

C. It can take several minutes for the standby interfaces to be active in an active-standby configuration.

D. There might be a firewall between the two appliances which has not been configured to allow broadcast traffic in an active-standby configuration.

正解：B 解答を投票する

出題：2

A solution implementer has been taskedwith monitoring a service and filtering requests based on how long an external backend service takes to respond. The solution implementer has chosen to use the message duration monitor in the DataPower service.
Which "measure" value must the solution implementer configure to satisfy this requirement?

A. Responses

B. Requests

C. Server

D. Messages

正解：C 解答を投票する

出題：3

A solution implementer is required to enrich the request message using information storedin a DB2 database table. The search condition of the SQL query needs to be dynamically generated by using a search key from the request message. Which SQL Input Methods can the solution implementer configure to execute the dynamic SQL in a SQL action? (choose two)

A. Web service

B. Variable

C. Dynamic SQL

D. Stylesheet

E. Static

正解：B,D 解答を投票する

出題：4

A company wants to inform the consumers of their services whether the DataPowerprocessing failed in the request or the response. They prefer to have generic error handling shared by all their rules and thus have not defined any on-error actions on individual rules. From the default error rule configured, the requirement is to informthe consumer whether the processing policy failed in the request or the response. What extension function should the solution implementer use to implement the requirement?

A. accepting()

B. catch(rule-id)

C. requesting()

D. responding()

正解：D 解答を投票する

出題：5

A company has exposed aweb service to both internal and external clients. Requests from internal clients are sent in plain text and requests from external clients are encrypted in accordance with the WS-Security specification. A single web service proxy has been created using the WSDL that describes the web service. How can the solution implementer accommodate both the plain text and encrypted requests in the same web service proxy?

A. Create a Crypto Certificate object using the external client's public certificate, create a Crypto Validation Credential (valcred) using the Crypto Certificate object, and add a Decrypt action that uses valcred to the Default Request Rule.

B. Add a Decrypt action to the Default Request Rule, with a Certificate object that is associatedwith the external client's private key.

C. Provide thecompany's public certificate to the external client for use in encryption, create a Crypto Key object that points to the company's public certificate, and use it to add a Decrypt action to the Default Request Rule.

D. Provide the company's public certificate to the external client for use in encryption, create a Crypto Key object that points to the company private key, and set the Decrypt Key at the proxy level.

正解：D 解答を投票する

出題：6

A solution implementer needs to integrate the following security profile.

What must the solution implementer do to a message to satisfy this policy?

A. Encrypt the body and header. Sign BOTH body and header.

B. Encrypt the body, sign the Parts, and use an UsernameToken.

C. Encrypt and sign the body of the message.

D. Encrypt the body, sign the message and usean X.509 Token.

正解：D 解答を投票する

出題：7

A company has an extensive list of Miscellaneous XML Threats that they require protection from. The list includes: ?XML Entity Expansion and RecursionAttacks ?XML Wellformedness-based Parser Attacks ?Memory Space Breach and Buffer Overflow Attacks ?Public Key DoS Attacks ?Resource Hijack Attacks What must the solution implementer do to protect SOA Applications exposed via a WSDL and a Web Service Proxyservice?

A. Enable the web service proxy's ingle Message XML Denial of Service (XDoS) Protection".Enable the web service proxy's ?ingle Message XML Denial of Service (XDoS) Protection".

B. Enable the web service proxy's ultiple Message XML Denial of Service (MMXDoS) Protection".Enable the web service proxy's ?ultiple Message XML Denial of Service (MMXDoS) Protection".

C. Enable the web service proxy's QL Injection Protection?Enable the web service proxy's ?QL Injection Protection?

D. Web service proxy default options protect against these threats. No configuration is required.

正解：D 解答を投票する

出題：8

A solution implementer is configuring a AAA Policy to secure a DataPower service. Why would the solution implementer configure Mapping Authentication Credentials and Mapping Requested Resources in the DataPower AAA Policy? (choose 2)

A. To map the authenticated credentials to an alternative security token to insert into the message payload for authorization.

B. To map the authenticated credentials to mediate the security headers of two different protocols (for example from HTTP headers to MQMD).

C. To map the authenticated credentials from a DN-formatted LDAP response to a username for Tivoli Access Manager(TAM) authorization.

D. To map the requested resource to the correct backend URL for dynamic message routing.

E. To map the requested resource from a legacy operation name to a new operation name to allow correctauthorization.

正解：C,E 解答を投票する

C2180-274試験無料問題集「IBM WebSphere DataPower SOA Appliances Firmware V5.0 Solution Implementation 認定」