A service needs to be configured on the DataPower appliance to allow a client to share access to aprivate resource. This sharing must be done without the sharing of user credentials. A solution implementer has decided to implement an OAuth solution for the customer. Which of the following are available to the solution implementer to implement OAuth?(choose 3)
A. AAA action
B. OAuth client and OAuth client group
C. SSL proxy profile
D. OAuth open source DataPower plug-in
E. Web Token Service
F. 1-legged authentication
正解:A,B,E
質問 2:
The solution implementer configured a multi-protocol gateway (MPGW) service to process WebSphere MQ messages using the same MQ queue manager object for both the front
end and back end. A request rule in the processing policy sends a message to queue A and then to queue B in a single transaction by using a "Result Action". The MQ URL forthe back end contains the "Transactional=true" tag. The output type of the "Result Actions" is set as "Binary" and the OUTPUT context has a named variable. What are the additional configuration options that the solution implementer needs to guarantee message delivery for both back-end queues? Specifically, if any one message fails, the entire transaction will roll back.
A. DataPower cannot support this use case as an MQ queue manager object only works with global transactionality.
B. Configure "Units of Work = 1" and "Automatic Backout = off "in the MQ queue manager object.
C. Configure two phase commit in the backend WebSphere MQ queue manager.
D. Configure "Units of Work = 1" and "Automatic Backout = on"; "Backout Threshold" and "Backout Queue" defined in the MQ queue manager object.
正解:D
質問 3:
A company-wide Certificate Authority (CA) provides its internal CA root and intermediary certificates to the solution implementer to use for the creation of Validation Credentials that validates several back end servers using SSL. The two lines of business in the company provide services on two different domains on DataPower and two different banks of servers on the back end. The requirement is to share a single copy of the CA certificates to create validation credentials in two domains for both the lines of business to simplify maintenance. How can the solution implementer satisfy the requirement?
A. Store the certificatein the cert: folder in any of the two domains and mark the certificate as shared.
B. Store the CA certificates in the store:///cert folder from the default domain.
C. Create Validation Credentials in the default domain so it can be shared across all the domains.
D. Store the CA certificates in the sharedcert: folder from the default domain.
正解:D
質問 4:
A customer needs message privacy and message integrity on a given transaction, and prefers the use of WS-Policy. WebSphere DataPower must receive a username from each user, but no authentication is required. In order to implement this without additional custom work, the solution implementer can:
A. use a basic authentication header, then use the default encryption and signature inherent in the WS-Proxy.
B. use WS-Policy with Encryption, Signature and pass the username in the message body.
C. use an Encrypt and SignAction in the request, followed by a Decrypt and Verify Action in the response.
D. use WS-Policy with UsernameToken, Encryption and Signature enforced.
正解:D
質問 5:
A solution implementer needs to integrate the following security profile.
What must the solution implementer do to a message to satisfy this policy?
A. Encrypt the body and header. Sign BOTH body and header.
B. Encrypt the body, sign the Parts, and use an UsernameToken.
C. Encrypt and sign the body of the message.
D. Encrypt the body, sign the message and usean X.509 Token.
正解:D
Hiroi -
000-274過去問から合格に必要な問題を厳選して分野別に収録しているから良いね