How can a system administrator secure a WebSphere Application Server environment to ensure
that an application code will not be allowed to access any files in the server’s file system?
A.
Configure the CSIv2 outbound communications under RMI/IIOP security.
B.
Configure the file-based repository and create the fileRegistry.xml file.
C.
Enable Java 2 security and configure the app.policy and was .policy files.
D.
Use the AdminTask deleteAuthorizationGroup to remove application access.
Explanation:
Reference:http://pic.dhe.ibm.com/infocenter/adiehelp/v5r1m1/index.jsp?topic=%2Fcom.ibm.wasee
.doc%2Finfo%2Fee%2Fae%2Ftsec_plan.html
c
0
0
c
http://www-01.ibm.com/support/knowledgecenter/SS7K4U_8.5.5/com.ibm.websphere.nd.multiplatform.doc/ae/tsec_migratejava2sec.html?lang=en
0
0
C.
When Java 2 security is enabled for a WebSphere® Application Server, all the applications that run on WebSphere Application Server undergo a security check before accessing system resources. An application might need a was.policy file if it accesses resources that require more permissions than those granted in the default app.policy file
https://www-01.ibm.com/support/knowledgecenter/SSAW57_8.5.5/com.ibm.websphere.nd.doc/ae/tsec_waspolicy.html
0
0