单项选择题
Your network consists of a single Active Directory domain. All domain controllers run Windows Server 2008 R2. The network contains 100 servers and 5,000 client computers. The client computers run either Windows XP Service Pack 1 or Windows 7.
You need to plan a VPN solution that meets the following requirements:
èStores VPN passwords as encrypted text
èSupports Suite B cryptographic algorithms
èSupports automatic enrollment of certificates
èSupports client computers that are configured as members of a workgroup
What should you include in your plan?()
A.Upgrade the client computers to Windows XP Service Pack 3. Implement a stand-alone certification authority (CA). Implement an IPsec VPN that uses certificate-based authentication.
B.Upgrade the client computers to Windows XP Service Pack 3. Implement an enterprise certification authority (CA) that is based on Windows Server?2008 R2. Implement an IPsec VPN that uses Kerberos authentication.
C.Upgrade the client computers to Windows 7. Implement an enterprise certification authority (CA) that is based on Windows Server 2008 R2. Implement an IPsec VPN that uses pre-shared keys.
D.Upgrade the client computers to Windows 7. Implement an enterprise certification authority (CA) that is based on Windows Server 2008 R2. Implement an IPsec VPN that uses certificate-based authentication.
相关考题
-
单项选择题
Your network contains a single Active Directory domain. All domain controllers run Windows Server 2008 R2. There are 1,000 client computers that run Windows 7 and that are connected to managedswitches. You need to recommend a strategy for network access that meets the following requirements: èUsers are unable to bypass network access restrictions. èOnly client computers that have up-to-date service packs installed can access the network. èOnly client computers that have up-to-date anti-malware software installed can access the network. What should you recommend?()
A.Implement Network Access Protection (NAP) that uses DHCP enforcement.
B.Implement Network Access Protection (NAP) that uses 802.1x enforcement.
C.Implement a Network Policy Server (NPS), and enable IPsec on the domain controllers.
D.Implement a Network Policy Server (NPS), and enable Remote Authentication Dial-In User Service (RADIUS) authentication on the managed switches. -
单项选择题
Your network consists of a single Active Directory domain. All domain controllers run Windows Server 2008 R2. You need to plan an auditing strategy that meets the following requirements: èAudits all changes to Active Directory Domain Services (AD?DS) èStores all auditing data in a central location. What should you include in your plan?()
A.Configure an audit policy for the domain. Configure Event Forwarding.
B.Configure an audit policy for the domain controllers. Configure Data Collector Sets.
C.Implement Windows Server Resource Manager (WSRM) in managing mode.
D.Implement Windows Server Resource Manager (WSRM) in accounting mode. -
单项选择题
Your network contains a stand-alone root certification authority (CA). You have a server named Server1 that runs Windows Server 2008 R2. You issue a server certificate to Server1. You deploy Secure Socket Tunneling Protocol (SSTP) on Server1. You need to recommend a solution that allows external partner computers to access internalnetwork resources by using SSTP. What should you recommend?()
A.Enable Network Access Protection (NAP) on the network.
B.Deploy the Root CA certificate to the external computers.
C.Implement the Remote Desktop Connection Broker role service.
D.Configure the firewall to allow inbound traffic on TCP Port 1723.
