The BIG-IP ASM System is configured with a virtual server that contains an HTTP class profile and the protected pool members are associated within the HTTP class profile pool definition. The status of this virtual server is unknown (Blue). Which of the following conditions will make this virtual server become available (Green)?

A. Assign a successful monitor to the virtual server

B. Assign a successful monitor to the members of the HTTP class profile pool

C. Associate a fallback host to the virtual server and assign a successful monitor to the fallback host

D. Associate a default pool to the virtual server and assign a successful monitor to the pool members

Learning suggestions in the Policy Building pages allow for which of the following? (Choose 2)

A. XML-based parameters and associated schema are automatically learned.

B. Blocking response pages can be automatically generated from web site content.

C. Flow level parameters are displayed when found and can be accepted into the current policy.

D. The administrator may modify whether the BIG-IP ASM System will learn, alarm, or block detected violations.

E. Maximum acceptable values for length violations are calculated and can be accepted into the security policy by the administrator.

Which of the following methods of protection is not available within the Protocol Security Manager for FTP protection?

A. Session timeout

B. Command length

C. Allowed commands

D. Anonymous FTP restriction

Which of the following is a language used for content provided by a web server to a web client?

A. FTP

B. TCP

C. HTTP

D. HTML

Which of the following methods of protection operates on server responses?

A. Dynamic parameter protection

B. Response code validation and response scrubbing

C. Response code validation and HTTP method validation

D. HTTP RFC compliancy check and meta-character enforcement

Which of the following is not a configurable parameter data type?

A. Email

B. Array

C. Binary

D. Decimal

Which of the following mitigation techniques is based on anomaly detection? (Choose 2)

A. Brute force attack prevention

B. Cross-site request forgery prevention

C. Web scraping attack prevention

D. Parameter tampering prevention

Which of the following is correct concerning HTTP classes?

A. A single web application can be used by several HTTP classes

B. A virtual server can only have one web application associated with it

C. A single ASM enabled HTTP class can be used by multiple virtual servers

D. Each ASM enabled HTTP class can have several active security policies associated with it

A user is building a security policy using the Deployment Wizard and the Rapid Deployment application template. By default, which settings will be applied to the security policy? (Choose 3)

A. Data Guard will be enabled.

B. The enforcement mode will be set to transparent.

C. The encoding language will be set to auto detect.

D. Wildcard tightening will be enabled on file types and parameters.

E. The Attack signature set applied will be Generic Detection Signatures.

Which method of protection is not provided by the Rapid Deployment policy template?

A. Data leakage

B. Buffer overflow

C. HTTP protocol compliance

D. Dynamic parameter validation