单项选择题X 纠错

Your network contains an Active Directory domain. All client computers run Windows XP Service Pack 3 (SP3). The domain contains a member server named Server1 that runs Windows Server 2008 R2. On Server1, you create a connection security rule that requires authentication for inbound and outbound connections. You configure the connection security rule to use Kerberos authentication. You need to ensure that the client computers can connect to Server1. The solution must ensure that all connections to Server1 are encrypted. What should you do?()

A. From the Windows Firewall with Advanced Security console, create an inbound rule on Server1.
B. From the Windows Firewall with Advanced Security console, create an outbound rule on Server1.
C. From a Group Policy object (GPO), enable the Client (Respond Only) IPSec policy on all client computers.
D. From a Group Policy object (GPO), configure the Network Security: LDAP client signing requirements policy setting for all client computers.

参考答案:
进入题库练习
查答案就用赞题库小程序 还有拍照搜题 语音搜题 快来试试吧
无需下载 立即使用

你可能喜欢

单项选择题

Your company has an active directory forest. The corporate network uses DHCP to configure client computer IP addresses. The DHCP server has a DHCP client reservation for a portable computer named WKS1. You install a second DHCP server on the network. You need to ensure that WKS1 receives the DHCP reservation from the DHCP service. What should you do?()

A.Run the ipconfig /renew command on WKS1.
B.Run the netsh add helper command on WKS1.
C.Add the DHCP reservation for WKS1 to the second DHCP server.
D.Add the DHCP servers to the RAS and IAS servers group in the active directory domain.

点击查看答案进入题库练习

多项选择题

Your company has 10 servers that run windows server 2008. The servers have RDP enabled for server administration. RDP is configured to use default security settings. All administrators computers run widows vista. You need to ensure the RDP connections are as secure as possible. Which two actions should you perform? ()

A.Set the security layer for each server to the RDP security layer.
B.Configure the firewall on each server to block port 3389.
C.Acquire user certificates from the internal certificate authority.
D.Configure each server to allow connections only to remote desktop client computers that use network level authentication.

点击查看答案进入题库练习

单项选择题

Your company has a single active directory domain. The domain has servers that run windows server 2008. You have a server named NAT1 that functions as a NAT server. You need to ensure that administrators can access a server named RDP1 by using remote desktop protocol (RDP). What should you do?()

A.Configure NAT1 to forward port 389 to RDP1.
B.Configure NAT1 to forward port 1432 to RDP1.
C.Configure NAT1 to forward port 3339 to RDP1.
D.Configure NAT1 to forward port 3389 to RDP1.

点击查看答案进入题库练习

多项选择题

Your network uses ipv4. You install a server that runs windows server 008 at a brach office. The server is configured with two network interfaces. You need to configure routing on the server at the branch office. Which two actions should you perform? ()

A.Install the routing and remote access role.
B.Run the netsh ras ip set access ALL command.
C.Run the netsh interface ipv4 enable command.
D.Enable the IPV4 router routing and remote access option.

点击查看答案进入题库练习

多项选择题

Your company has a single active directory domain. All servers run windows server 2008. The company network has 10 servers that perform as web servers. All confidential files are located on a server named FSS1. The company security policy states that all confidential data must be transmitted in the most secure manner. When you monitor the network, you notice that the confidential files are stored on FSS1 server are being transmitted over the network without encryption. You need to ensure that encryption is always used when the confidential files on the FSS1 server are transmitted over the network. What are two possible ways to achieve this goal? ()

A.Deactivate all LM and NTLM authentication methods on the FSS1 server.
B.Use IIS to publish the confidentials files. Activate SSL on the ISS server, and then open the files as a web folder.
C.Use IPSec encryption between the FSS 1 server and the computers of the users who need to access the confidential files.
D.Use the server messager block (SMB) signing between the FSS1 server and the computers of the users who want to access the confidential files.
E.Activate offline files for the confidential files that are stored on the FSS1 server. In the folder advanced properties dialog box, select the encrypt contents to secure data option.

点击查看答案进入题库练习

多项选择题

Your company has a server named SRV1 that runs windows server 2008. The default print server role is installed on SRV1 the company wants to centralize printing on SRV1 for both UNIX and windows users. You need to provide support to the UNIX users who print on SRV1. What are two possible ways to achieve this goal? ()

A.Install the internet printing server role on SRV1.
B.Install the line printer daemon (LPD) services role service on SRV1.
C.Configure the printers on SRV1 to use line printer remote printing.
D.Install the file server role on SRV1 and activate the services for the NFS Role service option.

点击查看答案进入题库练习

单项选择题

Your network contains a server named Server1 that runs Windows Server 2008 R2. Server1 hosts a custom application named App1. App1 is accessible on TCP port 5000.You need to encrypt App1 data on the network.What should you do?()

A. From the Local Security Policy console, configure the Security Options.
B. From the Local Security Policy console, configure the Application Control Policies.
C. From the Windows Firewall with Advanced Security console, create an inbound rule.
D. From the Windows Firewall with Advanced Security console, create a connection security rule.

点击查看答案进入题库练习

单项选择题

Your network contains two servers named Server1 and Server2 that run Windows Server 2008 R2.Server1 has several custom inbound rules and connection security rules.You need to duplicate the Windows Firewall rules from Server1 to Server2.What should you do on Server1?()

A. At the Command Prompt, run netsh.exe firewall dump.
B. At the Command Prompt, run netsh.exe firewall show > firewall.txt.
C. From the Windows Firewall with Advanced Security console, click Export policy.
D. From the Windows Firewall with Advanced Security console, click the Connection Security Rules node, and then click Export List.

点击查看答案进入题库练习

单项选择题

Your network contains a server named Server1 that has Windows Server 2008 R2.An administrator runs the following command on Server1: netsh.exe advfirewall reset You discover that you can no longer access Server1 on port 3389.You need to ensure that you can access Server1 on port 3389.Which firewall rule should you enable?()

A. File and Printer Sharing (Echo Request ICMPv4-In)
B. File and Printer Sharing (SMB-In)
C. Remote Desktop (TCP-In)
D. Remote Service Management (RPC)

点击查看答案进入题库练习

单项选择题

Your company has an active directory domain named ad.contoso.com. the company also has a public namespace named contoso.com. you need to ensure that public DNS zone records cannot be copied. You must achieve this goal without impacting the functionality of public DNS name resolutions. What should you do?()

A.Disable the notify feature for the contoso.com zone.
B.Disable the allow-read permission for the everyone group on the contoso.com DNS domain.
C.Configure the all domain controllers in the domain zone replication option on ad.contoso.com.
D.Configure the allow zone transfers only to servers listed on the named servers option on contoso.com.

点击查看答案进入题库练习
赞题库

赞题库-搜题找答案

(已有500万+用户使用)


  • 历年真题

  • 章节练习

  • 每日一练

  • 高频考题

  • 错题收藏

  • 在线模考

  • 提分密卷

  • 模拟试题

无需下载 立即使用
手机版 电脑版

版权所有©考试资料网(ppkao.com)All Rights Reserved