Security Mode

Question 1

A Person could be associated with both a user record and a labor record

Answer 1

True

Question 2

A user can only be a member of one independent security group, but can a member me part of more than one dependent gruop?

Answer 2

False

Question 3

A user must have access to at least one site within a labor’s organization before the system adds the assigned labor authorization to the user’s security profile?

Answer 3

True

Question 4

A user must have access to both storeroom and the storerooms site boefre the system adds the authorization to the user’s security profile?

Answer 4

True

Question 5

Any individual who might appear in a text field in Maximo should have a person record?

Answer 5

True

Question 6

Apart from LDAP, a user can change their own password in Maximo?

Answer 6

True

Question 7

What is authentication?

Answer 7

Is the validation of user credentials (username and password)

Question 8

For the CMMSYNC Crontask, the principal parameter is the IBM WebSphere user id.

True or False

Answer 8

True

Question 9

For which of the following is the best use of the mxe.sec.IPblock.num property?

Answer 9

to set the number of block intrusions

Question 10

For which one of the following would you typically use a global data restriction?

A. To control data access for a specific security group
B. To control data access for a specific user
C. To control data access into the system
D. To control data access for all users
E. All of the above.

Answer 10

To control data access for all users

Question 11

For which one of the following would you typically use conditional security?

a. To control data access for a specific security group
b. To control data access for a specific user
c. To control data access into the system
d. To control data access for all users
e. All of the above

Answer 11

To control data access for a specific security group.

Question 12

For which to types of conditions can you create a conditional security restriction?

a. CLASS
b. GLOBAL
c. LOGICAL
d. EXPRESSION
e. CONDITIONAL

Answer 12

EXPRESSION, CLASS

Question 13

For which two TYPES of conditions can you create a global data restriction?

a. CLASS
b. GLOBAL
c. LOGICAL
d. EXPRESSION
e. CONDITIONAL

Answer 13

CLASS, EXPRESSION

Question 14

How do you determine the name of the attribute for a fileds in an application?

a. By its label
b. Use the F3 key
c. Double click on the field
d. Use the Alt+F1 key combination
e. You can only find the attribute name in the database

Answer 14

Alt+F1

Question 15

How do you remove self-registration from Maximo in a local environment?

a. Change the properties in the maximo.properties file
b. Change the properties, and rebuild then redeploy the EAR file
c. Use the Database Configuration Application to change the value of two newuserlabel and newuserlink messages to $nbsp
d. None of the above. You cannot remove the label nor the link from the Maximo sign-in page

Answer 15

Use the datbase configuration application to change the value of two newuserlabel and newuserlink messages to: $nbsp

Question 16

How would you view the access and privileages of one or more security groups?

a. View the Person record of the individual.
b. Use the Security Group Access Report.
c. Use the Groups tab of the User’s Application.
d. Use the Security Group’s Application’s View Security Profile window.

Answer 16

Use the security group access report?

Question 17

In order for a user to have access to an application, they must have access to at least one site among their assigned security groups?

Answer 17

True

Question 18

LDAP Authentication uses what Cron Tasks?

a. Is not used by Maximo
b. Uses only the VMMSYNC cron task
c. Uses only the LDAPSYNC cron task
d. Uses either the VMMSYNC or LDAPSYNC cron task

Answer 18

VMMSYNC or LDAPSYNC

Question 19

Login tracking allows you to specify maximum number of login attemps and is required for electronic auditing?

Answer 19

True

Question 20

Native authentication uses what type of encryption?

a. Is not used by Maximo
b. Is controlled by a Maximo cron task
c. Bypasses IBM Websphere and communicates with an LDAP tool
d. Uses java encryption to check user credentials against the Maximo database

Answer 20

Native Java encryption to check against the DB

Question 21

NEWREG is the only initial status allowed for self-registered users?

Answer 21

False

Question 22

Security can be configured to block IP Addresses for which of the following?

a. Too many logins, only.
b. Too many forgotten passwords, only.
c. Too many logins or too many forgotten passwords, only.
d. Too many logins, too many forgotten passwords, or too many self-registration attempts.

Answer 22

too many logins, too many forgotten passwords, or too many self-registratoin attempts

Question 23

The default security group for new users is the security group to which Maximo automatically assigns new users, including those who self-register.

Select one:

a. True
b. False

Answer 23

True

Question 24

The labor application is at the organization level and therefor any user who has labor authorization, and access to one site in the organization can view labor for all sites in the organization, regardless of their site access?

Answer 24

True

Question 25

the LDAP cronttask can be used with:

a. Microsoft Active Directory (MSAD)
b. IBM Trivoli Directory Server (TDS)
c. Neither IBM TDS and MSAD
d. Both IBM TDS and MSAD

Answer 25

IBM TDS and MSAD

Question 26

The limits and tolerances that you specify for a group are at the organization level, however, users inherit only authorizations for those sites to which they have access?

Answer 26

True

Question 27

Security controls window accessed from the users application is the same as the security controls window accessed from the security groups application?

Answer 27

True

Question 28

The VMMSYNC cron task can be used with:

a. Microsoft Active Directory (MSAD)
b. IBM Trivoli Directory Server (TDS)
c. Neither IBM TDS and MSAD
d. Both IBM TDS and MSAD

Answer 28

IBM Trivoli directory server

Question 29

One way to build a security model is to use two independent groups with one independent security group to configured for site access and another for application access?

Answer 29

True

Question 30

Use the security groups application to set a user’s authorization.

Answer 30

True

Question 31

What happens when a user exceeds the forgotten password allowed attempts?

Answer 31

The user becomes blocked

Question 32

What is the purpose of self-registration?

a. To shorten the approval process for administrators
b. To allow users to begin working with Maximo
c. To allow users to request access to Maximo
d. All of the above

Answer 32

To allow users to request access to Maximo

Question 33

What is the purpose of the Authorize group reassignment function?

a. To assign a user to the security group
b. To authorize users for a security group
c. To authorize a user to modify a security group
d. To authorize a user to assign users to a security group

Answer 33

The authorize a user to assign users to a security group

Question 34

What is the strategy or strategiesss that you could use to design a ndcreate security groups?

a. Create a group for each criterion and assign users to a combination of groups.
b. Create a group for each role and assign users to their applicable role or roles.
c. Create both dependent and independent groups.
d. All of the above could be used.

Answer 34

All of the above could be used

Question 35

What status does a User (record) require to access Maximo?

Select one:

a. Active
b. Licensed
c. Approved
d. Operational

Answer 35

Active

Question 36

When creating a new user, what other entity must also exist?

Answer 36

Person record

Question 37

When LDAP is used, which two elements cannot be changed in Maximo?

Select one or more:

a. Passwords
b. Usernames
c. Security Group Privileges
d. User’s Email Address

Answer 37

Passwords, usernames

Question 38

When there is conflict among combine (dependent) security groups, Maximo’s business process calculates and grants the highest level access?

Answer 38

True

Question 39

When using LDAP with Maximo, which of the following is authenticated?

Answer 39

Password, username

Question 40

When you create a user record, you must also create the associated person record If one does not exists?

Answer 40

True

Question 41

Which of the following statements is true when a user has application access but no site access?

Select one:

a. The user cannot open the application.
b. The user can open the application, but cannot view nor create records.
c. The user can open the application and view records, but cannot create records.
d. The user can open the application and view records, but must specify a site to view or create records.

Answer 41

The user can open the application, but cannot view nor create records

Question 42

Which of the following steps is not used to convert from Native Maximo authentication to LDAP authentication?

Select one:

a. Configure IBM Websphere
b. Configure Maximo web.xml files
c. Configure a Maximo cron task for synchronization
d. Configure the Maximo database with an LDAP tool

Answer 42

Configure the Maximo database with an LDAP tool

Question 43

Which type of object level restriction would you use to HIDE records?

Select one:

a. HIDDEN
b. QUALIFIED
c. RESTRICTED
d. READ ONLY

Answer 43

QUALIFIED

Question 44

Which type of object level restriction would you use to HIDE records?

Answer 44

QUALIFIED

Question 45

You can only use the IBM WebSphere console to view Maximo LDAP users and groups

Answer 45

false