Tuesday, 31 October 2017

SY0-501 CompTIA Security+ (501)

Exam Details
Exam Codes SY0-401 SY0-501
Launch Date May 1, 2014 October ​4, 2017

Exam Description The CompTIA Security+ exam will certify the successful candidate has the knowledge and skills required to install and configure systems to secure applications, networks, and devices; perform threat analysis and respond with appropriate mitigation techniques; participate in risk mitigation activities; and operate with an awareness of applicable policies, laws, and regulations. The successful candidate will perform these tasks to support the principles of confidentiality, integrity, and availability.

Number of Questions Maximum of 90 questions
Type of Questions Multiple choice and performance-based
Length of Test 90 minutes
​Passing Score 750 (on a scale of 100-900)
Recommended Experience CompTIA Network+ and two years of experience in IT administration with a security focus
Languages English, Japanese, Portuguese and Simplified Chinese. English (Japanese, Portuguese and Simplified Chinese estimated Q2 2018)

Retirement
English retirement: July 31, 2018;
Japanese, Portuguese and Simplified Chinese: December 15, 2018
Usually three years after launch
CompTIA Security+ is the certification globally trusted to validate foundational, vendor-neutral IT security knowledge and skills. As a benchmark for best practices in IT security, this certification covers the essential principles for network security and risk management – making it an important stepping stone of an IT security career.

Jobs that use Security+
Security Specialist/Administrator
Security ​Consultant
Security or ​Systems ​Administrator
Network ​Administrator

Companies that use CompTIA Security+ include:
Apple
Dell
HP
IBM
Intel
U.S. Department of Defense

4 Steps to a Cybersecurity Career
Want more CompTIA Security+ information?

Overview
IT security is paramount to organizations as cloud computing and mobile devices have changed the way we do business. With the massive amounts of data transmitted and stored on networks throughout the world, it’s essential to have effective security practices in place. That’s where CompTIA Security+ comes in. Get the Security+ certification to show that you have the skills to secure a network and deter hackers and you’re ready for the job.

Security+ is government approved
CompTIA Security+ meets the ISO 17024 standard and is approved by U.S. Department of Defense to fulfill Directive 8570.01-M requirements. It is compliant with government regulations under the Federal Information Security Management Act (FISMA).

Security+ is globally recognized
CompTIA Security+ is a globally recognized credential with certified professionals working in over 147 countries throughout the world.

Security+ provides substantial earnings potential
According to the Bureau of Labor Statistics, Security Specialists, Administrators and Managers earn over $86,000 per year.

Security+ is industry supported
Security+ is developed and maintained by leading IT experts. Content for the exams stems from a combination of industry-wide survey feedback and contributions from our team of subject matter experts. Learn more about the people behind the CompTIA Security+ Advisory Committee.

Certkingdom.com is CompTIA’s intelligent online learning tool to help you learn for your Security+ exam. It can verify what you already know and fill in knowledge where you need it. It’s a great addition to your learning prep and will be your guide on your path to master the Security+ curriculum.

Training Materials
There’s a wealth of training materials available that match your learning needs and learning style. Whether you are studying on your own, or in a classroom environment, we recommend CompTIA Authorized Quality Curriculum (CAQC) training materials that will help you get ready for your certification exam and pass the test.

For all training options, visit our training overview.

Instructor-Led Training
Instructor-led training provides a comfortable teaching environment with instructors that are familiar with the certification process and can help you master your certification exam. Find your instructor now.

Ready for the Test?
When you’ve completed your training and you know you can take your certification exam with confidence, head over to the CompTIA Marketplace and purchase your exam voucher that you will need to sign up for the test.

Once you’ve purchased your voucher, you can find a testing location and schedule your test.

Renewal
Keep your certification up to date with CompTIA’s Continuing Education (CE) program. It’s designed to be a continued validation of your expertise and a tool to expand your skillset. It’s also the ace up your sleeve when you’re ready to take the next step in your career.

Get the most out of your certification
Information technology is an incredibly dynamic field, creating new opportunities and challenges every day. Participating in our Continuing Education program will enable you to stay current with new and evolving technologies and remain a sought-after IT and security expert.

The CompTIA Continuing Education program
Your CompTIA Security+ certification is good for three years from the day of your exam. The CE program allows you to extend your certification in three-year intervals through activities and training that relate to the content of your certification. Like Security+ itself, CompTIA Security+ ce also carries globally-recognized ISO/ANSI accreditation status.

It’s easy to renew
You can participate in a number of activities and training programs, including higher certifications, to renew your CompTIA Security+ certification. Collect at least 50 Continuing Education Units (CEUs) in three years, upload them to your certification account, and Security+ will automatically renew.


QUESTION 1
A security analyst wishes to increase the security of an FTP server. Currently, all trails to the FTP server is unencrypted. Users connecting to the FTP server use a variety of modem FTP client software. The security analyst wants to keep the same port and protocol, while also still allowing unencrypted connections. Which of the following would BEST accomplish these goals?

A. Require the SFTP protocol to connect to the file server.
B. Use implicit TLS on the FTP server.
C. Use explicit FTPS for the connections.
D. Use SSH tunneling to encrypt the FTP traffic.

Answer: B


QUESTION 2
A company has three divisions, each with its own networks and services. The company decides to make its secure web portal accessible to all employees utilizing their existing usernames and passwords, The security administrator has elected to use SAML to support authentication. In this scenario, which of the following will occur when users try to authenticate to the portal? (Select TWO)

A. B. The portal will function as an identity provider and issue an authentication assertion
B. C. The portal will request an authentication ticket from each network that is transitively trusted
C. D. The back-end networks will function as an identity provider and issue an authentication assertion
D. The back-end networks will request authentication tickets from the portal, which will act as the third-party service provider authentication store
E. F. The back-end networks will verify the assertion token issued by the portal functioning as the identity provider

Answer: C


QUESTION 3
Which of the following would a security specialist be able to determine upon examination of a server's certificate?

A. CA public key
B. Server private key
C. CSR
D. OID

Answer: B

Thursday, 12 October 2017

C5050-101 IBM SoftLayer Solution Architect V1

Number of questions: 50
Number of questions to pass: 32

Time allowed: 90 mins
This exam consists of 3 sections described below.

Section 1 - General 34%
Identify Solution Design Priciples and Best Practices
Knowledge of Private Cloud - VMWare and HyperVisor
Explain how to build and deploy new servers using Image Templates
Given a scenario, determine when to use specific APIs
Identify the tools for Configuration Management
Explain how, when and where to use Auto-Scaling

Section 2 - Network 44%
Given a scenario, determine how Vyatta fits into the SoftLayer Solution
Given a scenario, determine how Netscaler fits into the SoftLayer Solution
Given a scenario, determine how Fortigate fits into the SoftLayer Solution
Explain how to utilize Advanced Networking topics to enhance the SoftLayer Solution
Explain how and when to use Direct Link

Section 3 - Storage 22%
Given a scenario, determine how Quantastor fits into the SoftLayer Solution
Given a scenario, explain the usage of Object Storage / CDN /CleverSafe
Explain how and when to use Endurance Storage Solution Guidance


PartnerWorld Code: 50002001
Replaces PW Code: Not Applicable
Status: Live

An IBM Certified Solution Architect - SoftLayer V1 is a person who can analyze, design, architect and demonstrate IBM SoftLayer infrastructure based upon the workload requirements from a client.

They can do this with limited assistance from support, documentation or relevant subject matter experts and know how to contact SoftLayer to get assistance.

Key areas of competency include:

Demonstrate the ability to provide a customer with a logical diagram foundation to meet their requirements and a roadmap to get there.
Architect a comprehensive solution that utilizes the IBM offerings and skills required.

The following qualifications are requirements for success:
Basic knowledge of industry cloud computing principles
Working knowledge of IBM SoftLayer
Working knowledge of designing a comprehensive solution based on logical diagrams
Working knowledge of how to implement and customize the solution
Working knowledge of the various types of clouds and -as a service- offerings

Recommended Prerequisite Skills

Basic knowledge of IBM consulting principles
Working knowledge of the concepts covered in the IBM Solution Advisor -SoftLayer V1 exam

Requirements
This certification requires 1 exam

Friday, 6 October 2017

C5050-062 Rational UrbanCode Deploy

Test information:
Number of questions: 70
Time allowed in minutes: 75
Required passing score: 70%
Languages: English, Japanese, Japanese

Related certifications:
IBM Certified Deployment Professional - Rational UrbanCode Deploy

Section 1: How UrbanCode Deploy fits within IBM DevOps
Recognize and describe the IBM approach to DevOps
Identify and describe the capabilities that UrbanCode Deploy delivers to IBM DevOps
Identify and describe the concepts and challenges of continuous software delivery in a DevOps context

Section 2: Implementing Security in UrbanCode Deploy
Use UC Deploy to configure group and team roles
Use UC Deploy to configure External security realms including LDAP, Active Directory and SSO.
Identify the features of the security model used by UC Deploy

Section 3: Programming and Plugins
Determine the various types of plugins for UC Deploy
Use automation and source configuration plugins in UC Deploy
Update and delete plugins in UC Deploy

Section 4: UrbanCode Deploy Architecture
Identify the concepts of Resources, Resource Groups, Agents, Agent Relays Agent Pools
Recognize the concepts of Applications, Components, Snapshots, Versions and Artifacts
Recognize the elements of the Basic Usage Model of UrbanCode Deploy and the flow of operations including configuration of the deployment environment, development, deploy to the pipeline and chaining of environment deployments

Section 5: UrbanCode Deploy Integrations
Identify UC Deploy integration capabilities with other products
Identify UC Deploy and Cloud integration capabilities

Section 6: Using UrbanCode Deploy
Determine the requirements for product installation
Use UC Deploy to create and configure Applications and related Environments, Processes, Approvals, +Notifications and Properties
Use UC Deploy to create and configure Components and related artifacts, properties and versions
Use UC Deploy to create snapshots
Use UC Deploy to create and configure Resources and related Agents, Subresources, Resource Roles and +Resource Templates
Identify and describe the concepts of Inventory, Compliancy and Model-driven Deployments

IBM Certified Deployment Professional - Rational UrbanCode Deploy

Job Role Description / Target Audience
This certification targets intermediate level Deployment Professionals. This Deployment Professional can plan, install, configure and troubleshoot a new implementation of the UrbanCode Deploy product. The Deployment Professional can also upgrade, update, configure and troubleshoot existing installations of UrbanCode Deploy.

The Deployment Professional should have an intermediate level of knowledge of UrbanCode Deploy and a firm understanding of how UrbanCode Deploy can be implemented in a small and simple environment as well as a large and complex environment. The Deployment Professional can train, tutor and mentor IBM customers in the installation, configuration and ongoing use of UrbanCode Deploy. The Deployment Professional can perform most of these tasks independently and may require some assistance from peers and vendor support services.

Requirements
This certification requires 1 test(s).
QUESTION: No: 1
A security type is a product area that can have permissions defined for it. Each security type has a set of
permissions that affect how users interact with it. How many security types are available in IBM
Urban Code Deploy?

A. 13
B. 10
C. 3
D. 5

Answer: D

Explanation:
A security type is a product area that has permissions defined for it. There are several security types predefined. They are system, application, release, deployment, status, and initiatives and changes.
Other than the Status security type, permissions are predefined.

References:
http://vvww.ibm.com/support/knowledgecenter/SS4GCC_6.2.1/com.ibm.ureIease.doc/topics/security_types.htmI


QUESTION: No: 2
In orderto set up an integration with WebSphere, you first perform a WebSphere Topology Discovery.
WebSphere is not installed in a default location and so you must notify IBNI UCD concerning the location
of the wsadmin executable. What is the name of the property thatyou must set, and where do you set it?

A. You must set the wsadmin.Iocation property on the correct resource.
B. You must set the wsadmin.path property on the correct agent.
C. You must set the wsadmin.executabIe on the correct resource.
D. You must set the wsadmin.Iocation on the correct agent.

Answer: B

Explanation:
If WebSphere Application Server is deployed in a directory otherthan the default directory, you must set a property on the agent before you can run the WebSphere Topology Discovery step.

1. Go to Resources > Agents > <agent-name> > Configuration > Agent Properties.
2. Add a property named wsadmin.path.
3. Set wsadmin.path to the fully qualified path tothe wsadmin script (including the script name).

References:
http://vvww.ibm.com/support/knowledgecenter/SS4GSP_6.0.1/com.ibm.udepIoy.pIugins.doc/topics/pIu gins_websphereportaI_config_depIoy.htmI