你需要设计PKI方案去符合商业和安全的要求。你应该怎么做?()
A、在corp.woodgrovebank.com域中实现企业根CA、在每个子域中实现从属CA、使根CA离线
B、在corp.woodgrovebank.com域中实现企业根CA
C、在每个子域中实现企业根CA、让每个域的企业CA离线
D、在corp.woodgrovebank.com域中实现企业根CA、在每个子域中实现独立CA
You need to design a security strategy for the Web folders and files created by the consultants and the internal Web developers. What are two possible ways to achieve this goal?()
ARequire the internal Web developers to use Telnet with Kerberos authentication. Require the consultants to use L2TP with IPSec
BRequire the internal Web developers to use Encrypting File System (EFS) over Web Distributed Authoring and Versioning (WebDAV). Require the consultants to use Microsoft.NET Passport authentication with Security Level 0
CRequire the internal Web developers to use Web Distributed Authoring and Versioning (WebDAV) over SSL.Require the consultants to use WebDAV over SSL
DRequire the internal Web developers to use L2TP with IPSec. Require the consultants to use Encrypting File System (EFS) over Web Distributed Authoring and Versioning (WebDAV)
ERequire the internal Web developers to use Web Distributed Authoring and Versioning (WebDAV) over SSL.Require the consultants to use L2TP with IPSec
You need to design a strategy to meet the company’s requirements for e-mail. What should you do?()
A、Configure and publish a certificate template that is suitable for S/MIME, Deploy a Group Policy object (GPO) so that a certificate that is based on this template is automatically issued to all domain users
B、Specify Group Policy objects (GPOs) and IPSec policies that require all client computers to use Kerberos authentication to connect to mail servers
C、For each mail server, acquire an SSL server certificate from a commercial CA whose root certificate is already trusted
D、Require IPSec encryption on all TCP connections that are used to send or receive e-mail messages
You need to configure ISA3 in Seattle to enable communication with the network in New York.What should you do?()
A、Open the ports for DNS, HTTP, HTTPS, Kerberos, RADIUS, LDAP, RPC endpoint mapper and client, and Server Message Block (SMB) over IP
B、Enable the Routing and Remote Access Basic Firewall. Open the ports for DNS, Kerberos, LDAP, Exchange RPCs, RADIUS, L2TP, and Internet Key Exchange (IKE)
C、Create a PPTP tunnel from ISA3 to the New York network
D、Create an L2TP/IPSec tunnel from ISA3 to the New York network
您需要设计一个存取控制战略为外部和内部网网站。二次行动您应该执行哪些?()
A、使能SSL在外在网站由使用微软密码服务提供者(CSP)
B、使能微软NET护照认证在外在网站。使用护照水平0与SSL在外在网站
C、使能SSL在外在网站由使用一份商业数字式证明
D、使能SSL在内部网网站由使用一份内部服务器证明
E、使能SSL在外在网站由使用一份内部服务器证明
你要为终端服务器设计一个认证解决方案以满足商业的要求,你要怎么做?()
A、配置终端服务器使用智能卡
B、配置IPSec只允许使用远程桌面控制连接到终端服务器
C、拒绝远程桌面用户组访问终端服务器
D、限制treyresearch.com的用户从本地登录到终端服务器