Full Name: IBM Security Access Manager V9.0 Deployment
Exam Code: C2150-609
IBM Security Access Manager Deployment Exam Summary:
Exam Name
|
IBM Certified Deployment Professional - Security Access Manager V9.0
|
Exam Code
|
C2150-609
|
Exam Price
|
$200 (USD)
|
Duration
|
105 mins
|
Number of Questions
|
69
|
Passing Score
|
63%
|
Sample Questions
|
|
Practice Exam
|
IBM C2150-609 Exam Syllabus Topics:
| Topic (Weights) | Details |
| Plan (14%) | - Demonstrate a knowledge of the features and capabilities of the ISAM Base, ISAM Advanced Access Control Module, and ISAM Federation Module. - Demonstrate knowledge of ISAM deployment patterns, including designing for high availability and determining capacity requirements. - Apply detailed network design principles, including appropriate subnets interface, static routing, ports (firewall) and default gateway. |
| Install (12%) | - Setup DNS, time, license, activation, firmware, and fixpack levels at the initial installation. - Prepare for rack space, power, cabling, and management interface IP and install the hardware appliance. - Prepare and install the appliance in different virtual environments. - Prepare an external high volume database for use with ISAM. |
| Configure, customize and integrate (39%) | - Use PKI, including completing the task of generating certificate requests and/or importing certificates into the appropriate certificate repository (KDB file). - Configure Web Components - Runtime and Reverse Proxy using LMI and REST API, including applying hard and soft limits to junctions, Single Sign-On method and junction type; configure Kerberos. - Configure the Advanced Access Control Module using LMI and REST API, including Risk Profiles, Authentication, Policies, Custom Attributes, Obligations, PIP, and isamcfg. - Configure Federation Components using LMI and REST API, including Federations, Partners, and Runtime including swap of metadata, mapping rules, cloud connectors and isamcfg. - Configure Federated Directory(s). - Configure Protocol Analysis Module (PAM). - Create custom roles for delegated administration of the ISAM appliance functionality; externalize appliance authentication and authorization. - Configure highly available ISAM environments using clustering, replicated proxies, DSC, front-end load balancer. |
| Administer and maintain (22%) | - Monitor critical performance metrics and availability, including events and alerts. - Demonstrate an understanding of various backup and recovery strategies, including snapshots. - Configure log files, including their roll over settings. - Maintain SSL keystores, including identifying expired certificates. - Use the ISAM stop, start, failover features to aim for limited down-time during maintenance slots. - Perform policy administration. - Monitor IBM support website for bulletins and fixpacks; apply as necessary. |
| Troubleshoot and tune(13%) | - Examine and tune settings, including advanced parameters for TCP/IP. - Navigate to and view logs on the appliance and look for relevant messages. - Enable and review network and ISAM-specific traces and understand auditing capabilities; perform network troubleshooting using ping, traceroute, connect. - Take a support file extract and send and/or examine for issues and upload them to IBM Support as part of the PMR process. |
Posts
0 comments:
Post a Comment