You work as the network administrator at certifyme.com. The certifyme.com
network consists of a single Active Directory domain named certifyme.com. All
servers on the certifyme.com network run Windows Server 2003 and all client
computers run Windows XP Professional. certifyme.com has its headquarters in
Chicago and a branch office in Dallas.
Leading the way in IT testing and certification tools, www.certifyme.com
- 18 -
You are responsible for the management of the Routing and Remote Access services
at certifyme.com. You enable Routing and Remote Access on a server named
certifyme-SR05. You received a list of telephone numbers of those that are
allowed to connect to the certifyme.com network via remote access together with
instruction from the CIO to configure certifyme-SR05 to accept only connections
from those numbers. 350-001
You need to configure certifyme-SR05 to support Automatic Number
Identification/Calling Line Identification (ANI/CLI). You then create a user account
for each of the phone numbers on the list from which calls will be accepted. You
then create a remote access policy to support these ANI/CLI connections. Now you
just need to apply the policy.
What should you do?
A. Enable the Unencrypted authentication option on the Authentication tab of the remote
access profile for the policy.
B. Enable the Unauthenticated access option on the Authentication tab of the remote
access profile for the policy.
C. Enable the Encrypted authentication option on the Authentication tab of the remote
access profile for the policy.
D. Enable the MD5-challenge authentication option on the Authentication tab of the
remote access profile for the policy. 640-802
Answer: B
Explanation: Because a user name and password are not going to be sent when an
ANI/CLI connection is made, you need to allow unauthenticated access. Thus you should
enable support for unauthenticated access on the Authentication tab of the remote access
policy profile for the policy. Alternative you could also configure the User Identity
setting for remote access policies in the registry to direct certifyme-SR05 or IAS
server to use the number from which the user is calling as the user identity.
Incorrect Answers:
A : If you enable unencrypted authentication support then you will be allowing support
for clients that use the Password Authentication Protocol (PAP) and this is not what is
required in this scenario.
C : You enable encrypted authentication support to allow support for clients that use
CHAP and MS-CHAP. This is not what is required in this scenario.
D : You do not need to enable support for MD5-challenge authentication. VCP-310
Reference:
Leading the way in IT testing and certification tools, www.certifyme.com
- 19 -
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment