System Storage Technical Mastery V2: 000-S33 Exam
000-S33 Questions & Answers
Exam Code: 000-S33
Exam Name: System Storage Technical Mastery V2
Q & A: 89 Q&As
1. Which two join directives can be used when multiple provisioning policies affect the
same account? (Choose two.)
2. Which two options should be included in a custom adapter design document? (Choose
A. supported platforms, Java version, log file locations
B. input requirements, installation instructions, prerequisites
C. process flow diagram, debugging information and log file information
D. prerequisites, supported platforms, process flow diagrams, source code
E. security certificate configuration, installation location, input requirements
3. Click the Exhibit button.
Based on the organization chart and list of roles, which option is correct for this IBM Tivoli
Identity Manager V5.1 configuration?
A. A user in the On Demand Incorporated business unit can be granted the DESIGNER
B. Only users in the Engineering and any sub tree business units can be granted the
DESIGNER organizational role.
C. A provisioning policy with DESIGNER organizational role as membership can only be
created in the Engineering business unit.
D. Users in the On Demand Incorporated and sub tree business units will automatically be
granted the EMPLOYEE organizational role
4. Which information is stored in a certificate used to secure the connection between IBM
Tivoli Identity Manager Server and its adapters?
A. certificate expiration date
B. certificate encryption type
C. certificate requester’s name
D. certificate encryption strength
5.The Business Continuity Review describes the system availability characteristics of the
In a typical high availability (HA) configuration, a load balancer is configured in front of
several peer masters for the directory server. Which statement is true regarding load
balancing in an IBM Tivoli Identity Manager (Tivoli Identity Manager) HA solution design?
A. If a primary master goes down, all traffic to that master is held until the master is
B. Load balancing of write traffic is unwise, because it leads to a possibility of an update
C. If the primary system goes down, the remaining systems do not need to be able to bear
the work load.
D. The Tivoli Identity Manager dataservices component will assist the load balancer in the
redirecting of requests to one of the other replicated Tivoli Identity Manager servers.
6. Which steps are needed to create the password policy design?
A. define password policy scope, select password settings, document password policy
B. define password policy requirements, analyze password settings, document password
C. gather current password settings, analyze password policy, define password scope,
document password policy design
D. gather password policy requirements, define password policy scope, define password
settings, document password policy design
7. Which option is relevant to gathering requirements and creating an IBM Tivoli Identity
Manager (Tivoli Identity Manager) system architecture document?
A. formulate list of questions, identify interviewees, identify timelines for project phases,
and delegate responsibility
B. formulate list of questions, identify interviewees, identify network topology, and ensure
business continuity planning
C. formulate list of questions, identify interviewees, discuss organization chart structure,
and discuss Tivoli Identity Manager ACI and group security model D. discuss firewall rules, discuss certificate installations for HTTPS communication, and
discuss Tivoli Identity Manager Web application security and hijack-prevention features
8. Which sequence of actions best describes a secure practice for sensitive data in an
IBM Tivoli Identity Manager (Tivoli Identity Manager) database?
A. Schedule periodic database backups regularly in order to prevent losing sensitive data.
B. Enable security on the WebSphere Application Server and disallow running the
WebSphere Application Server using a non-root account.
C. Restrict network traffic to those ports or systems needed by the deployment only. If you
write your own application and use a Tivoli Identity Manager API to retrieve sensitive data,
encrypt the data before sending it over the network.
D. Restrict operating system access to database files. Limit the privileges of the operating
system accounts (administrative, root-privileged, or DBA) to the least privileges needed,
change the default passwords, and enforce periodic password changes.
9.Given the desired services list and organization structure design, which two options are
essential to create a service design? (Choose two.)
A. Define reporting data.
B. Validate human resource data.
C. Define organization requirements.
D. Gather platform business processes.
E. Gather IBM Tivoli Identity Manager access requirements
10. In which formats can reports from the IBM Tivoli Identity Manager user interface be
A. PDF, CSV
B. TXT, XML
C. PDF, TXT
D. HTML, PDF
11. A simple IBM Tivoli Identity Manager (Tivoli Identity Manager) implementation running
on a Windows-based server includes a single AIX platform with two adapters (UNIX and
DB2). What are two necessary considerations when creating an upgrade planning
document for this scenario?
A. middleware versions and domain trust relationships
B. secure FTP constraints and domain trust relationships
C. middleware versions and operating system release levels
D. secure FTP constraints and operating system release levels
12. Which two options describe components of the Self-Service User Interface that can be
included in the customization design? (Choose two.)
A. changing the button text
B. changing the banner colors
C. creating a custom workflow approval process
D. changing the default lifecycle management flow
E. creating new views for IBM Tivoli Identity Manager groups
13. When performing analysis for designing a global identity policy, which considerations
A. UID constraints of each managed service type, and the erglobalid of the person object
B. which managed service has the least restrictive UID constraints, and the erglobalid of
the person objects
C. UID constraints of each managed service type, and which attributes are available from
the person objects
D. which managed service has the least restrictive UID constraints, and which attributes
are available from the person object
14. Given the information in the sample Organization Chart, which three pairs of roles are
valid in a rule of a separation of duty policy? (Choose three.)
A. Operations and Web Page design
B. Development and Web page design
C. Operations and Production Web Team
D. Web page design and Production Web Team
E. Engineering and Web Infrastructure Engineering
F. Development and Web Infrastructure Engineering
15. In preparation for an initial identity or Identity feed to IBM Tivoli Identity Manager
(Tivoli Identity Manager) V5.1 which two person attributes are required as a minimum in
the feed? (Choose two.)
A. Last Name (attribute sn)
B. Common Name (attribute cn)
C. Organizational Unit (attribute ou)
D. First Name (attribute givenname)
E. Employee Number (attribute employeeNumber)
16. A customer has chosen to separate the administration in IBM Tivoli Identity Manager
(Tivoli Identity Manager) of some target application services and provisioning parameters
using Tivoli Identity Manager groups. Which two options will be required, as a minimum, to
implement security in this instance? (Choose two.)
A. group-based ACIs
B. service-based ACIs for the application services
C. account-based ACIs for the application targets
D. provisioning policy ACIs for the provisioning policies
E. organizational unit ACIs with services and policies defined at that level
17. In a CSV identity feed, what is the definition of the name attribute?
A. the attribute that uniquely identifies the person
B. the attribute that contains the full name of the person
C. the attribute that is used by IBM Tivoli Identity Manager to resolve account ownerships
D. the attribute that contains the fully qualified DN of the person in the IBM Tivoli Identity
Manager ou=person container
18. The account and password design document indicates that new accounts and
passwords are initially set up by a designated security officer Therefore, the notification is
sent to the security officer and Is not sent to each account owner. Which two options can
be configured to meet this requirement? (Choose two.)
A. Modify the existing e-mail notification templates to add the custom recipient.
B. Design a new e-mail notification template and add to the list of available workflow
C. Configure a mail node in the operation workflow where the participant is a person with
an e-mail account.
D. The IBM Tivoli Identity Manager administrator would disable the New Account
Notification template and the New Password template in Configuration > Properties >
E. The IBM Tivoli Identity Manager administrator would disable the New Account
Notification template and the New Password template in Configure System > Workflow
19. What is the proper ordering of tasks during an IBM Tivoli Identity Manager V5.1
A. solution design, installation, configuration, customization, testing, turn over
B. assessment, solution design, installation, customization, configuration, testing, turn
C. assessment, solution design, installation, configuration, testing, customization, turn
D. assessment, solution design, installation, configuration, customization, testing, turn
20. When can an IBM Tivoli Identity Manager (Tivoli Identity Manager) functional test case
be executed on a Tivoli Identity Manager adapter?
A. after performance tests on the adapter have been completed
B. after the adapter is installed and the corresponding service has been reconciled
C. when a remediation procedure exists as part of the risk assessment if the test case fails
D. after test cases on the Tivoli Identity Manager server configuration have been
…go to http://www.lead2pass.com/000-006.html to download the full version Q&As.
|One Time Purchase||✔||✖||✖||✖||✖|
|100% Pass Guarantee||✔||✖||✖||✖||✖|
|100% Money Back||✔||✖||✖||✖||✖|