高质量和高价值的 000-257 题库.100%通过000-257认证考试 Killtest 实行“一次不过全额退款”承诺。如果您购买了000-257考题,只要不是 首次通过,凭盖有PROMETRIC或VUE考试中心钢印的考试成绩单,100%退还您购买 000-257 的全部费用 ,绝对保证您的利益不受到任何的损失. PDF格式全真考题参考DEMO 1.In an enterprise application EJB_A invokes a method on EJB_B. How must the EJB run-as security identity be configured in the EJB deployment descriptor for the current setting to allow
EJB_A to invoke EJB_B?
A.Set run-as on EJB_A to role_A.
B.Set run-as on EJB_A to role_B.
C.Set run-as on EJB_B to role_A.
D.Set run-as on EJB_B to role_B.
Correct:B
2.A web module defines a J2EE security role, Managers. Using the appropriate deployment descriptor editor, the developer then binds this role to the User Registry user, supervisors. What file would need to be explored to find this specified association?
A.application.xml
B.web.xml
C.ibm-application-bnd.xmi
D.ibm-web-bnd.xmi
Correct:C
3.A developer wants to use form-based authentication to secure resources in a Web application. In the Web deployment descriptor editor, the developer has set the Authentication method to FORM and configured appropriate security roles. What additional entries need to be configured to protect the resources?
A.Specify a Login page and create a Security Constraint defining the URL patterns of the resources to be secured and appropriate Authorized roles.
B.Specify Login and Error pages and create a Security Constraint defining the URL patterns of the resources to be secured and appropriate Authorized roles.
C.Specify Login and Error pages.
D.Specify a Login page.
Correct:B
4.A developer is implementing security requirements for a Web module. Which HTTP Methods would be the MOST likely to cover these requirements?
A.GET and POST
B.GET and PUT
C.GET, POST and PUT
D.GET, POST, PUT and DELETE
Correct:A
5.While configuring a datasource in the EAR deployment descriptor editor, the drop-down boxes that allow a JAAS authentication alias to be specified are empty. How can the JAAS authentication alias be configured in order for it to be visible in the drop down box?
A.Add a J2EE security role with associated users in the EAR deployment descriptor editor.
B.Add the required JAAS authentication alias in the EAR deployment descriptor editor.
C.Add the JAAS authentication alias to the datasource reference in the EJB deployment descriptor editor.
D.Use the WebSphere V6 administrative console to add the JAAS authentication alias.
Correct:B
6.If a developer wants to create a Web service that must conform to all supported WS-I profiles, the developer should:
A.Set the WS-I Compliance preferences to "Require compliance" before creating the Web service.
B.Set the WS-I Compliance preferences to "Suggest compliance" before creating the Web service and
disable related warnings in the Problems view.
C.Use the New WS-I Compliant Web Service wizard to create the Web service.
D.Check the "Require WS-I compliance" checkbox in the New Web Service wizard.
Correct:A
7.A developer runs a Web service client in an unmanaged environment using a generated Java proxy. The client throws an Exception indicating that it failed to create an InitialContext. The same proxy class used in a managed environment works fine. If the developer did not modify the generated code, what is a likely cause of the problem?
A.The security context for the JNDI manager cannot be propagated in an unmanaged environment.
B.The transaction context can not be propagated in an unmanaged environment.
C.The Web service being invoked uses the SOAP over JMS binding.
D.Java proxies generated by the wizard can only be run in a managed environment.
Correct:C |
