You need to design an authentication method for communications between users
who connect remotely and the Chicago office. Take care that you solution meet the
requirements.
What should you do? Each correct answer presents part of the solution. Choose
TWO.)
A. Install IAS on VPN1 and VPN2. Configure both as RADIUS servers.
B. Install IAS on DC1 and DC4. Configure both as RADIUS servers.
C. Install IAS on RAS1, VPN1 and VPN2. Configure these servers as RADIUS servers.
D. Configure VPN1 and VPN2 as RADIUS clients.
E. Configure DC1 and DC4 as RADIUS clients
F. Configure RAS1, VPN1, VPN2 and wireless access point as RADIUS clients
G. Configure VPN1 and VPN2 as RADIUS clients
Answer: B, F
Explanation:
Leading the way in IT testing and certification tools, www.certifyme.com
- 50 -
The RADIUS server will provide centralized connection for authentication,
authorization, and accounting functions for networks that include wireless access, VPN
remote access, Internet access, extranet business partner access, and router-to-router
connections.350-001 IAS proxy functions are different from these server functions, and include
forwarding IAS authorization and accounting information to other IAS servers.
With IAS, you should configure all network access servers, including the wireless access
points, as RADIUS clients.640-802 This will provide a centralized access control solution for the
network whilst allowing you to use security groups and remote policies to control remote
user access.
Incorrect answers:
A: If you install IAS on the VPN servers then you will not be able to control access on all
the access points to the network.VCP-310 This in essence will exclude some methods of access to
the network.
C: This option will exclude the wireless access point and this also needs to be included
as it is an access point to the network.
D: This option will exclude some areas that are also access points on the Willow Bridge,
Ltd. network.
E: This option will exclude some areas that are also access points on the Willow Bridge,
Ltd. network.
G: This option will exclude some areas that are also access points on the Willow Bridge,
Ltd. network.
Reference:
Elias N. Khnaser, Susan Snedak, Chris Peiris and Rob Amini, MCSE Designing Security
for a Windows Server 2003 Network Exam 70-298 Study Guide, Chapter 6, pp. 369-370
James Chellis, Paul Robichaux & Matthew Sheltz, MCSA/MCSE: Windows Server 2003
Network Infrastructure Implementation, Management, and Maintenance Study Guide, p.
335
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment