A.From the Internet Authentication Service snap-in on Server2, create a new RADIUS client.
B.From the Internet Authentication Service snap-in on Server2, create a new remote access policy.
C.From the Routing and Remote Access snap-in, configure Server1 to use RADIUS accounting.
D.From the Routing and Remote Access snap-in, configure Server1 to use RADIUS authentication.
您可能感兴趣的试卷
你可能感兴趣的试题
A.From the local computer policy on Server1, modify the Account Policies settings.
B.From Active Directory Users and Computers, modify the Security settings of Group1.
C.From the Routing and Remote Access snap-in, create a new remote access policy.
D.From the Routing and Remote Access snap-in, open the properties of Server1 and modify the security options.
A.Configure the port properties.
B.Create and configure a new demand-dial interface.
C.From the server’s properties, modify the security options.
D.From the Connections to Microsoft Routing and Remote Access Server policy, add a new condition.
A.On Server1, assign the Client (Respond only) IPSec policy.
B.On Server2, assign the Server (Request Security) IPSec Policy.
C.On Server1 and Server2, modify the authentication settings in the Secure Server (Require security) IPSec Policy.
D.On Server1 and Server2, enable Master Key perfect forward secrecy (PFS) in the Secure Server (Require security) IPSec Policy.
our network contains a Web server named Server1 that runs Windows Server 2003 and Internet Information Server (IIS). Server1 has a server certificate from an Enterprise Certificate Authority (CA) installed.External users report that when they try to access the Web site from outside the corporate network by using a Web browser, they receive the following warning message: “There is a problem with this Web site’s security certificate. The security certificate presented by this Web site was not issued by a trusted certificate authority.”
You find that users on the corporate network do not receive this error.You need to ensure that external users do not receive the warning message when connecting to Server1.
What should you do?()
A.In IIS Manager, enable the Enable client certificate mapping option.
B.In IIS Manager, replace the certificate with a certificate obtained from a public Certification Authority.
C.In Local Security Policy, enable Domain Member: Require strong (Windows 2000 or later) session key.
D.In Local Security Policy, enable Domain Member: Digitally encrypt or sign secure channel data
our network contains a DNS server that has a reverse lookup zone for all of your network segments. You have a server named Server1 that runs Windows Server 2003 Service Pack 2 (SP2). An IP security policy is assigned to Server1.You verify IPSec traffic and see that the current security associations display only by IP address. You need to view the fully qualified domain names for all security associations.
What should you do?()
A.From the DNS console, add Server1 as a name server.
B.From the DNS console, change dynamic updates to Secure only.
C.From IP Security Monitor on Server1, enable DNS name resolution.
D.From IP Security Monitor on Server1, create a new taskpad view.
A.Kerbtray
B.Sc /query kdc
C.Netdiag /test:Kerberos
D.Nltest /sc_query:Contoso.com
A.Install a Web server certificate on Server2.
B.Configure the Web site to require a secure channel.
C.Configure the Web site to redirect all requests to https://Server2.
D.Configure the Web site to require integrated Windows authentication.
our network consists of an internal network and a perimeter network. On the internal network there is a server named Server1. On the perimeter network there is a server named Server2. All servers run Windows Server 2003 Service Pack 2 (SP2).You schedule a task to transfers files from Server1 to Server2 by using FTP.You monitor the network traffic from Server1 to Server2 and notice that the user name and password used for the FTP transfer are sent as plain text.
You need to ensure that all FTP traffic between Server1 and Server2 is encrypted.
What should you do?()
A.Implement IPSec.
B.Install a server certificate on Server1.
C.Install a server certificate on Server2.
D.Use the Encrypting File System on Server1.
A.\Modify the Local Security Policy on Server1.
B.Modify the Research IPSec Policy Group Policy object.
C.Enable Windows Firewall and do not allow exceptions.
D.From the Properties of the Local Area Connection, modify the Authentication settings.
A.View the WindowsUpdate.log file.
B.Create a new log view in Event Viewer.
C.From Update Services, view the WSUS Updates update view.
D.From Update Services, run an Update Status Summary report.
最新试题
你是一台Windows Server 2003 服务器Server1的管理员。Server1是位于公司内部网络的FTP服务器。管理员报告说连接到Server1的FTP通信量增加。你需要配置Server1以实现以下目的:识别所有正在和Server1进行FTP传输的计算机的MAC地址。准确查找出已被执行的FTP命令。 确保不会中断Server1上的操作。你该如何操作?()
你是公司网络管理员。网络中有一台Windows server 2003服务器Server1。三个管理员都是Server1的管理员本地组的成员。另外12个管理员是域管理组成员。域管理组也是Server1上的管理员本地组成员。有人未经授权修改了Server1的HKEY_LOCAL_MACHINE\SYSTEM键值。这导致了计算机当机。你要修复这问题。你需要记录下所有对Server1的注册表中HKEY_LOCAL_MACHINE\SYSTEM键值的访问尝试。你决定在Server1的本地安全策略中启用审核功能。你将采取哪两个操作步骤?()
你是公司Fabrikam.Inc网络管理员。网络中有一台DNS服务器Server1。Server1被配置来解决对外部网络资源的所有请求。Server1上也运行着活动目录的Fabrikam.com内部区域。用户报告当他们浏览知名的互联网站点时被指向了另外的错误站点。你要最大限度的降低今后用户访问外网时的意外出错。同时最大限度避免用户的网络中断。你该如何操作?()
你是Fabrikam.Inc公司网络管理员。网络是一单活动目录域环境,域名fabrikam.com。一台Windows server 2003服务器Server1是域中唯一的DNS服务器。Server1上并未运行其他区域。用户报告在fabrikam.com中的计算机连接通信异常缓慢。你要找出DNS客户机和Server1的通信导致了此问题。你该如何操作?()
你是公司网络管理员。网络是一个单活动目录域环境。所有的服务器运行Windows Server 2003。所有的客户端运行Windows XP Professional。有一新的低优先级别升级包Q318138从网络中的WSUS服务器上同步发行。你决定不测试升级包直接批准通过。在该升级包应用在客户机上后,用户反应不能运行一个统计账目程序。 你需要从所有客户端计算机上删除该升级包,直到它被测试通过。你该如何操作?()
你是公司网络管理员。公司在Seattle(西雅图)和Chicago(芝加哥)都有办公室。网络是一个单活动目录森林环境。所有的服务器运行Windows Server 2003。所有的客户端运行打过补丁的Windows XPProfessional。在Seattle的办公室的Server1上安装了WSUS服务。Server1被配置为在本地存储升级数据包。你要再Chicago的办公室安装一台WSUS服务器Server2。安装操作必须符合以下要求: 在Chicago的客户机必须自动地获得和Seattle的客户机一样的升级包。 在Chicago的客户机必须从Server2上获得升级 你该如何操作?()
你是公司网络管理员。所有的服务器运行Windows Server 2003。所有的客户端运行Windows XP Professional。你在Server1上安装了WSUS服务。安装必须符合以下要求: Server1上的磁盘空间使用量要最小。所有的升级包在部署到客户端计算机上前必须先测试。你安装校验栏清除了自动批准升级项。打开WSUS控制台。你要按要求完成安装。将采取哪两项操作?()
你是公司网络管理员。网络是一个单活动目录域环境。所有的服务器运行Windows Server 2003系统。所有的客户端运行打了SP4补丁的Windows 2000 Professional或Windows XP Professional。你在Server2上安装WSUS服务。你创建了一个组策略对象配置所有的客户机从Server2上获取软件升级。一周后,你在所有的客户机上运行Microsoft baseline security Analyzer(MBSA,微软基准安全分析)以找出是否所有的升级都被执行应用。你发现所有的Windows 2000 Professional客户机都顺利获取利了升级,但是所有的Windows XP Professional客户机则不然。你检查验证了指派在所有Windows XP Professional客户机上的GPO设置。你要确保所有Windows XP Professional客户机都从Server2处获取升级。你该如何操作?()
你是Fourth Coffee公司在Paris(巴黎)子办公室的网络管理员。在Paris办公室中有一台Windows Server 2003 DNS 服务器Server10。在Server10上有一个主要区域fourthcoffee.Com 。在Paris办公室中的客户机都使用Server10为首选DNS服务器。Berlin(柏林)办公室中有一台UNIX DNS服务器Server11。Server11上有一个主要区域engineering.fourthcoffee.com 。engineering.fourthcoffee.com区域上的刷新间隔为24小时。 在Berlin办公室中,有一防火墙过滤来自其他办公室的通信。防火墙中定义了一规则,通过对Server11的DNS Lookups(DNS查找)操作,来阻止Paris办公室中除Server10之外的计算机通信。有一个操作事务,要求在engineering.fourthcoffee.com区域中创建新记录的时候和Paris办公室中的计算机记录被解析时,不出现延迟。Paris办公室中的所有计算机必须能够识别使用engineering.fourthcoffee.com区域的名称空间。你需按要求在Server10上配置DNS服务:你该如何操作?()
你是公司网络管理员。所有的服务器运行Windows Server 2003。你配置了Server2作为网络地址转换(NAT)服务器。Server2上有一块网卡和一个猫(调制解调器)。Server2通过demand-dial(拨号连接)互联网。用户反应当他们试图连接互联网上的站点时。间歇性的收到如下错误提示信息“Page not find”。在等待几分钟后,又能够连上站点了。这种情况整天都出现。你需要配置Server2让用户始终都能够连接互联网站点。 你该怎么操做?()