Your company has a single Active Directory directory service domain. All servers in your environment run Windows Server 2003. All client computers run Windows XP.

You are troubleshooting protocol security issues that are occurring on a client computer. You need to remotely monitor and manage IPSec on the client computer from a server.

Which two actions should you perform on the client computer? (Each correct answer presents part of the solution. Choose two.)

Your company has an Active Directory directory service domain. You have a stand-alone server that runs Windows Server 2003. You assign a new IPSec policy locally to the stand-alone server.

The new IPSec policy is not being applied to the stand-alone server. You need to find out whether there are conflicting IPSec policies on the stand-alone server.

What should you use on the server?

Your company has a single Active Directory directory service domain. Member servers run Windows Server 2003. You need to ensure that NTLM authentication traffic from member servers is signed.

Which Group Policy setting should you configure?

All servers in your environment run Windows Server 2003. You are planning to deploy a Routing and Remote Access service (RRAS) server in a perimeter network (also known as DMZ).

The server will be a member of a workgroup. You need to choose a combination of protocols that support the use of IPSec for remote access.

Which protocol combination should you use?

Your company has a single Active Directory directory service domain. All servers run Windows Server 2003 SP1. Your environment includes a RADIUS server. You are designing a security plan for the company# s wireless network. The wireless network must use 802.1x authentication. Only the RADIUS server will receive an SSL certificate. You need to choose the most secure wireless security protocol that uses standard Windows Server 2003 Group Policy objects (GPOs).

Which protocol should you choose?

Your company has a single Active Directory directory service domain. All servers run Windows Server 2003. You remotely administer all servers from client computers that use Remote Desktop Client 5.2. All remote administration connections that are made to servers must be authenticated with Kerberos and must use Transport Layer Security (TLS). You need to design a remote administration network authentication methodology.

Which two actions should you perform? (Each correct answer presents part of the solution. Choose two.)

All servers in your environment run Windows Server 2003. You are planning security policies for remote network administration for your company# s Tier 1, Tier 2, and Tier 3 support technicians . You r security policies must support the requirements shown in the following table.

You enable Terminal Services for Tier 3 support technicians. You need to ensure that support technicians have the appropriate remote administration access to all servers.

Which two actions should you perform? (Each correct answer presents part of the solution. Choose two.)

Your company has a single Active Directory directory service domain. All servers in your environment run Windows Server 2003. You are planning security for member servers that run IIS 6.0. All users are using Windows Internet Explorer 7.0 and will connect by using HTTPS. You have the following requirements:

Users must be able to connect from the local intranet and from the Internet. Users must log on to the Web servers by using their Active Directory user names and passwords.

Logon information must not be sent in clear text. You need to specify an authentication method that meets the requirements.

Which method should you specify?

Your company has a single Active Directory directory service domain. All servers in your environment run Windows Server 2003. Several stand-alone servers are located in the perimeter network (also known as DMZ).

You create an IPSec policy file. You need to assign the IPSec policy file to the stand-alone servers.

How should you assign the IPSec policy file?

Your company has a single Active Directory directory service domain. All servers run Windows Server 2003. Several stand-alone servers are located in the perimeter network (also known as DMZ).

You create an IPSec policy file. You need to assign the IPSec policy file to the stand-alone servers.

On each stand-alone server, what should you use to assign the IPSec policy file to that server?