Which types of administrative objects are contained within an RSA Authentication Manager Security Domain? (Choose two)

A. Users

B. Administrators

C. Identity Sources

D. Replica Instances

E. Security Question Requirements

The Authentication Activity Monitor is helpful in which of the following cases?

A. Monitoring a user's network path to the Web Tier server

B. Locating RSA SecurID tokens that are near their expiration date

C. Defining parameters for the Self-Service Troubleshooting Policy

D. Troubleshooting authentication attempts while in direct contact with the user

Which of the following services is NOT an option to users through the Self-Service Console?

A. Changing a password or PIN

B. Creating an individual PIN policy

C. Requesting a replacement token

D. Resynchronizing an RSA SecurID token

Which RSA SecurID authentication method can use alphabetic characters as part of the user's PASSCODE?

A. Key Fob

B. PINPad

C. On-demand authentication

D. Software Token in PINPad mode

If a user forgets his/her PIN and still has possession of his/her token, an Administrator should verify the identity of the user and then

A. Clear the user's old PIN.

B. Disable the user's token.

C. Assign a new token to the user.

D. Assign a temporary Fixed Passcode.

Using the `Generate Configuration File' function of the Security Console helps to establish

A. RADIUS client profiles.

B. Aconnection to a Replica instance.

C. Aconnection to external Identity Sources.

D. Communication with Authentication Agents.

An RSA Authentication Manager deployment must have at least one Authentication Agent record in the database in order to

A. Add time-restricted user accounts to the database.

B. Perform user authentications with an RSA SecurID token.

C. Configure a Authentication Sources through the Self-Service Console.

D. Establish logon policies related to Authentication Agent time restrictions.

A user complains that they have received seven `Access Denied' messages in a row when attempting to authenticate.

What would be an appropriate action to take?

A. Change the token Lockout Policy

B. Access the user record and unlock the user account

C. Access the token record and resynchronize the token

D. Instruct the user to attempt to log in to the Self-Service Console

A user has an RSA SecurID Key Fob. The Key Fob Change Interval is 60 seconds and has been used successfully in the past. If the RSA Authentication Manager is now out of synch with the token by 2 minutes, what will happen when the user tries to authenticate?

A. Authentication Manager will automatically adjust the token offset value and authenticate the user.

B. Authentication Manager will reject the PASSCODE and the user will receive an "Access Denied" message.

C. Authentication Manager will post a "Token Requires Resync" message in the log and deny access to the user.

D. Authentication Manager will request the user for next tokencode, adjust the user's token offset value, and authenticate the user.

Within which RSA Authentication Manager menu would you configure the number of incorrect PASSCODES that will invoke Next Tokencode Mode?

A. Policies

B. System Setup

C. Identity Settings

D. RADIUS Lockout