You need to ensure that all device certificate requests use the MD5 hash algorithm

seenagapeJuly 3, 2015

Your network contains an Active Directory domain. The relevant servers in the domain are
configured as shown in the following table.

You need to ensure that all device certificate requests use the MD5 hash algorithm.
What should you do?

PrepAway - Latest Free Exam Questions & Answers

A.
On Server2, run the Certutil tool.

B.
On Server1, update the CEP Encryption certificate template.

C.
On Server1, update the Exchange Enrollment Agent (Offline Request) template.

D.
On Server3, set the value of the HKLM\Software\Microsoft\Cryptography\MSCEP\
HashAlgorithm\HashAlgorithm registry key.

Explanation:
http://technet.microsoft.com/en-us/library/ff955642.aspx
Managing Network Device Enrollment Service
Configuring NDES
NDES stores its configuration in the registry key
HKEY_LOCAL_MACHINE\Software\Microsoft\Cryptography
\MSCEP.
To change NDES configuration, edit the NDES registry settings by using Regedit.exe or
Reg.exe, then restart IIS. If necessary, create the key and value using the names and data
types described in the following table.
Key name
HashAlgorithm \ HashAlgorithm
Value Data Type
String
Default value
SHA1
Description
Accepted values are SHA1 and MD5.

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

Microsoft Exam Questions

Free Microsoft Study Guide

You need to ensure that all device certificate requests use the MD5 hash algorithm

Leave a Reply Cancel reply