Your company has a single Active Directory directory service domain. All servers in your environment run Windows Server 2003. Your company uses an internal certification authority (CA). Your company has a partnership with another company that has its own Active Directory domain. Users from the partner company require access to an application that resides on a member server on your network. You need to ensure that users from the partner company can access the application by using IPSec.

What should you do?

A.
Create an external trust between the two Active Directory domains.

B.
Create a Kerberos Realm trust between the two Active Directory forests.

C.
Create an IPSec policy that uses the Kerberos authentication method.

D.
Create an IPSec policy that uses the Public Key Certificate authentication method.