050-V66-SERCMS02 Exam Questions
80 real 050-V66-SERCMS02 exam questions with expert-verified answers and explanations. Page 1 of 2.
- Question #1
The use of an LDAP directory as a common database, shared by all instances of Certificate Manager, allows for the construction of certificate revocation lists (CRLs) in one locatio...
- Question #2
What is the minimum number of CAs needed to support four Juisdictions?
- Question #3
What extension profile should be used in RSA Certificate Manager when issuing end-entity certificates for secure e-mail?
- Question #4
What is required for installation of the RSA Key Recovery Manager (KRM)? (Choose two)
- Question #5
What is required to take advantage of High Availability with RSA Certificate Manager?
- Question #6
What should be done to prevent a prompt for SSL passphrases when starting the CM services?
- Question #7
What would be good reasons for dividing an organization into different Jurisdictions? (Choose two)
- Question #8
Certificate profiles are predefined sets of mandatory certificate extensions
- Question #9
Which protocol options does RSA Certificate Manager provide for third-party applications to check certificate status? (Choose two)
- Question #10
Which of the following components are required when implementing RSA OneStep? (Choose three)
- Question #11
Which directive is added to the xudad.conf file when scheduling automatic CRL generation?
- Question #12
What extension profile would be used when issuing certificates to routers to establish secure communications?
- Question #13
What is the legal document defining all aspects of how a Certificate Authority operates?
- Question #14
Distinguished Names (Choose two)
- Question #15
Can multiple Identity Sources be established from the same LDAP directory?
- Question #16
An RSA Authentication Manager deployment must have at least one Authentication Agent record in the database in order to
- Question #17
When a CA has been revoked, the browser will always show that certificates issued by that CA are invalid
- Question #18
What does the X.509 standard apply to?
- Question #19
An application may deem a certificate invalid if (Choose three)
- Question #20
What is the standard format for transporting certificates and private keys, as used with export and import functions?
- Question #21
When retrieving your certificate, you must ensure that
- Question #22
Where can the operation logs used for troubleshooting be found for RSA Certificate Manager and RSA Registration Manager?
- Question #23
During installation of the RSA Certificate Manager and the RSA Registration Managter, it is possible to change the default port configurations
- Question #24
If an organization is about to begin deployment of an RSA Certificate manager PKI, what should the organization do? (Choose two)
- Question #25
RSA Certificate Manager supports enrollment using which protocols? (Choose three)
- Question #26
Manually generated CRLs can be configured to include the next update in relative or absolute time
- Question #27
In order for an external application to take advantage of real-time status checking by directly connecting to the RSA Certificate Manager's Secure Directory Server, the application
- Question #28
If external users CANNOT access the RSA Certificate Manager directly, what can be used in the DMZ to obtain certificates?
- Question #29
If enrolling from a Jurisdiction with key recovery enabled, end users must first retrieve tncryption certificate before retrieving their authentication certificate
- Question #30
What is the default port number for the RSA Certificate Manager's Secure Directory Server?
- Question #31
Jurisdictions can be deleted by the RSA CM Administrator
- Question #32
What is the default port number for the Logging Server in the RSA Certificate Manager?
- Question #33
What are the benfits of installing an nCipher Hardware Security Module (HSM) in conjuinction with RSA Certificate Manager? (Choose three)
- Question #34
How does RSA Certificate Manager (RSA CM) make use of a mail server?
- Question #35
What must a vettor do as part of the certificate issuing process?
- Question #36
Which X.509 v3 extension can be used in a CA certificate to limit the number of subordinate CAs in a hierarchical CA model?
- Question #37
What binds a public key with an entity possessing the corresponding private key?
- Question #38
The X.509 v3 extension crIDistributionPoint is an information extension to provide the protocol and location of a CA's Certificate Revocation List
- Question #39
Which of the following is a true statement about the RSA Registration Manager (RSA RM)?
- Question #40
CRL signers can be deleted be the RSA CM Administrator
- Question #41
For more efficient administration of certificate management, an organization can be segmented into
- Question #42
An organization has a large number of certificates to deploy to end-entities in various locations around the world. They have poor network connections between their locations. What...
- Question #43
Administrators can configure certificate expiry notification on a per Jurisdiction basis
- Question #44
The best opportunity for interoperability between PKI-enabled applications comes from
- Question #45
In RSA Certificate Manager, which protocols can the crIDistributionPoint extension be configured to use? (Choose two)
- Question #46
In rsa Certificate Manager, which locations can an application retrieve a CRL from? (Choose three)
- Question #47
If two organizations are using RSA CAs, what is the easiest way for them to establish trust relationships?
- Question #48
Re-signing a CA allows you to change which of the following certificate configuration options? (Choose three)
- Question #49
A ingle RSA OneStep application can be enabled for multiple Jurisdictions
- Question #50
Which of the following best describes the differences in connecting to the Administrative and Enrollement Servers?