PrepAway - Latest Free Exam Questions & Answers

A security analyst is hardening a server with the directory services role installed. The analyst must ensure L

A security analyst is hardening a server with the directory services role installed. The analyst must ensure LDAP traffic cannot be monitored or sniffed and maintains compatibility with LDAP clients.

Which of the following should the analyst implement to meet these requirements? (Select two.)

A. Generate an X.509-compliant certificate that is signed by a trusted CA.

B. Install and configure an SSH tunnel on the LDAP server.

C. Ensure port 389 is open

between the clients and the servers using the communication.

D. Ensure port 636 is open between the clients and the servers using the communication.

E. Remote the LDAP directory service role from the server.

One Comment on “A security analyst is hardening a server with the directory services role installed. The analyst must ensure L

  1. urban says:

    The analyst must ensure
    -LDAP traffic cannot be monitored or sniffed: Generate an X.509-compliant certificate that is signed by a trusted CA.

    -maintains compatibility with LDAP clients: Ensure port 636 is open between the clients and the servers using the communication.

    SSH tunnel is also valid but not covered in this exam




    1



    3

Leave a Reply