PrepAway - Latest Free Exam Questions & Answers

Which of the following options would you choose to accomplish the desired task?

You are an Enterprise administrator for contoso.com. The corporate network of the company consists of a single Active Directory domain. The functional level of the domain is Windows Server 2008. All the domain controllers on the domain run Windows Server 2008 and all client computers run Windows Vista.
The network contains three Network Policy Server (NPS) servers that are configured as Remote Authentication Dial-In User Service (RADIUS) servers. The servers are named as contosoServer1, contosoServer2, and contosoServer3.
The network also contains 30 wireless access points that are configured as a RADIUS client. Which of the following options would you choose to audit all access to the wireless access points?
You need to ensure that in a minimum amount of cost the audit data is stored at a central location and all RADIUS attributes and all RADIUS vendor-specific attributes are recorded.
Which of the following options would you choose to accomplish the desired task? (Select Two. Each correct answer will present a part of the answer.)

PrepAway - Latest Free Exam Questions & Answers

A.
Install Microsoft SQL Server 2005 Standard Edition on contosoServer1.

B.
Audit for account logon events on the domain controllers.

C.
Audit for logon events on the NPS servers.

D.
Configure RADIUS accounting by using local file logging on each server

E.
Configure RADIUS accounting by using SQL logging on each server and use contosoServer1as the data source

F.
Configure RADIUS authentication.

G.
Forward all events from contosoServer2 and contosoServer3 to contosoServer1.

H.
Store the log files in an Internet Authentication Service (IAS) format on a shared folder on contosoServer1.

Explanation:

To ensure that in a minimum amount of cost the audit data is stored at a central location and all RADIUS attributes and all RADIUS vendor-specific attributes are recorded, you need to Configure RADIUS accounting by using local file logging on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on contosoServer1
Rather than configuring network access policy at each network access server, such as wireless access points, 802.1X authenticating switches, VPN servers, and dial-up servers, you can create policies in a single location that specify all aspects of network connection requests, including who is allowed to connect, when they can connect, and the level of security they must use to connect to your network.
When you create a new RADIUS client or modify the settings of an existing RADIUS client from the RADIUS Clients node of the Network Policy Server snap-in, there is a RADIUS client is NAP-capable check box .When this check box is selected, the NPS service sends NAP-specific RADIUS vendor-specific attributes (VSAs) in the Access-Accept message. When this check box is not selected, the NPS service does not send NAP-specific RADIUS VSAs in the RADIUS Access-Accept message.


Leave a Reply