IBM Security Access Manager V9.0, Deployment Professional
Question No. 1
A customer has a developed an OAuth 2.0 Client application to access resources on behalf of a user. The
customer states that the OAuth client has the following two constraints:
1. The OAuth client is not capable of maintaining its credentials confidential for authentication with the
2. The resources owner does not have a trust relationship with the client.
What is the suitable OAuth 2.0 grant type for the API Protection Policy if the user resource accessed by the
OAuth 2.0 client is to be protected by IBM Security Access Manager V9.0?
Choose the correct option from the given list.
01 / 138