CAT-160 - CA SiteMinder r12 Administrator Exam
Go back to CA-Technologies
In CA SiteMinder, a Web Agent interaction determines whether an authenticated user has access to a requested resource. The decision is based on a security policy defined in the policy store or entitlement store. This Web Agent interaction is called:
Which log file holds log records for the CA SiteMinder user interface (UI)?
SiteMinder trace log
To turn on the tracing facility for all Policy Server actions, you:
Set the Enable Profiling option on the Policy Server Profiler tab.
Policies can grant access to users based on user information that exists in the user store. The BEST example of that information is:
User profile attribute values
Which assumption does CA SiteMinder make about a user directory by default?
A user will be authorized against the same directory.
Two benefits of password services are that they:
Prevent users from selecting their own passwords, and prevent unauthorized access to resources by disabling accounts that exceed permitted authentication attempts.
Which tool can be used to establish a trust relationship between the CA SiteMinder user interface (UI) and the Policy Server?
When using the CA SiteMinder Web Agent to protect resources, the three resource action rules available are: (Choose three)
One of the three cryptographic operating modes for securing CA SiteMinder data is Federal Information Processing Standards (RPS)-compatibility. This mode:
Uses classic CA SiteMinder 6.x cryptography.
Which statement about the audit log is TRUE?
The default auditing option is asynchronous logging.
Which database model does the Policy Server require?
If you are an administrator, but not a superuser administrator, you can: (Choose two)
Access CA SiteMinder objects, tools, and features
Change rules, policies, and responses in various domains
To help prevent performance issues, you want to install Report Server according to the manufacturer's recommendations. For the Report Server hard disk space, at minimum, you require:
The types of sample reports in CA SiteMinder are:
Audit and Analysis reports.
In relation to Agents, what does central configuration indicate?
The Web Agent is configured from the Policy Server.
Which types of configuration files are stored locally on the web server and can be created, modified, and viewed using a text editor? (Choose two)
Host configuration file
Web Agent configuration file
When you install a CA SiteMinder Policy Server, you need to configure two service accounts. Which service account has privileges to create, read, modify, and delete objects in the LDAP tree underneath the policy store root object?
Which tool do you use to determine the identifiers of objects for a granular export or import by exploring a list of applications or domains?
Which statement about the CA SiteMinder Extensible Policy Store (XPS) is TRUE?
New applications can be added without altering the schema.
You are configuring cache and thread settings on the Policy Server Management Console Settings tab. Which Policy Server Operational Settings group do you need to configure?
User and administrator activity is recorded in the:
Where are named expressions stored?
In the policy store
Two features of global policies are:
they are different for each domain and apply only to a single user directory
Two important reasons why password policies are necessary are to:
Prevent access when passwords have expired and ensure users cannot create week passwords.
Examples of Web Agent interactions with a Policy Server include: (Choose three)
User attribute mapping enables you to:
Map one common name to different user attribute names in different user directories.
You can use HTTP header variables or cookies to transfer information between web applications. In which sequence are variables set and sent through the HTTP header? 1. The client requests a web page resource. 2. Response variables are processed by the web server. 3. The newly modified HTTP request header is sent to web server. 4. For each response, the Policy Server sends variables, which are inserted in the existing HTTP request header. 5. The agent sends standard queries to the Policy Server, such as IsProtected, IsAuthenticated, and IsAuthorized.
1, 5, 4, 3, 2
Which component of CA SiteMinder can be used to configure the scope and permissible tasks of an administrator?
CA SiteMinder Administrative User Interface
What is assigned to each authentication scheme?
A number between 0 and 1000 to define a protection level
Which features characterize the J2EE application server agent? (Choose two)
Supports IBM WebSphere and BEA WebLogk
Protects J2EE application server-based applications
Before an installed Web Agent can be used to protect applications, you must:
Turn on the agent via the WebAgent.conf file and restart the web server.
Named expressions enable you to:
Define reusable expressions.
What is the purpose of directory mapping?
Authenticate users against one directory, and authorize users against a separate directory.
Which benefits do agent groups provide? (Choose two)
Saving time by defining only one policy for all Web Agents
Providing resource access to a larger user base by duplicating the resource on many web servers and Web Agents
To modify the cookie domain you use the:
Agent Configuration Object (ACO)
You successfully install a CA SiteMindcr Web Agent. Then, if you perform the host registration process:
A Trusted Host Object is created.
What are the default session settings in CA SiteMinder? (Choose two)
Idle Timeout Enabled
Max Session Timeout Enabled
The CA SiteMinder WAN Administrative UI:
Connects to a Policy Server using the standard agent API