Multiple users are complaining about being denied access to resources they believe they are entitled to see. The IBM Security Access Manager (ISAM) V9.0 deployment professional needs to understand and troubleshoot the various access control constructs in the ISAM protected object space. The deployment professional must also understand the order of evaluation of the three major access control constructs available in the Policy Administration tool.That is the correct order of evaluation for these constructs?
A deployment professional has created a new SAML 2.0 Service Provider federation and added an Identity Provider partner.What will be the next step to allow users to single sign-on to the service?
An Access Manager environment utilizing failover coolies was recently upgraded from TAM 6.1.1 to IBM Security Access MANAGER (ISAM) V9.0. The deployment professional wants to take advantage of the Distributed Session Cache.What are two advantages of the DSC verses failover coolies? (Choose two.)
An IBM Security Manager V9.0 deployment professional responsible for a large cluster notices the clocks among the nodes are not in sync and needs to update settings to ensure the clocks are synchronized.Which setting should be used to help keep times synchronized?
An IBM Security Access Manager V9.0 deployment professional wants to be alerted by the appliance for events like certificate expiry.In which two ways can these alert notifications be configured? (Choose two.)
A customer has a developed an OAuth 2.0 Client application to access resources on behalf of a user. The customer states that the OAuth client has the following two constraints:1. The OAuth client is not capable of maintaining its credentials confidential for authentication with the authorization server.2. The resources owner does not have a trust relationship with the client.What is the suitable OAuth 2.0 grant type for the API Protection Policy if the user resource accessed by the OAuth 2.0 client is to be protected by IBM SecurityAccess Manager V9.0?
