You are a network administrator for your company. The company has one main office and 30 branch offices. The network consists of a single Active Directory domain.

All servers run Windows Server 2003. The company needs to connect the main office network and all branch office networks by using Routing and Remote Access servers at each office. The networks will be connected by VPN connections over the Internet. You install three Routing and Remote Access servers at the main office.

You are configuring security for the Routing and Remote Access servers. You need to provide centralized authentication for the branch office Routing and Remote Access servers.

You need to centrally configure the remote access policies for the main office Routing and Remote Access servers. You need to centrally maintain remote access authentication and connection logs for the main office Routing and Remote Access servers. You install Internet Authentication Service (IAS) on a server in the main office and register it in Active Directory.

What else should you do?

A.
Run the netsh command to configure the remote access policies on the main office Routing and Remote Access servers.
On the IAS server, configure the main office RADIUS clients.
Configure the main office Routing and Remote Access servers to use RADIUS authentication and accounting.

B.
Configure the remote access policies on the IAS server.
On the IAS server, configure the main office RADIUS clients.
Configure the main office Routing and Remote Access servers to use Windows authentication and accounting.

C.
Configure the remote access policies on the IAS server.
On the IAS server, configure the branch office RADIUS clients.
Configure the branch office Routing and Remote Access servers to use RADIUS authentication and accounting.

D.
Configure the remote access policies on the IAS server.
On the IAS server, configure the main office RADIUS clients.
Configure the main office Routing and Remote Access servers to use RADIUS authentication and accounting.

Explanation:
Internet Authentication Service (IAS) is the Microsoft implementation of Remote Authentication Dial-In User Service (RADIUS), an authentication and accounting system used by many Internet Service Providers (ISPs). When a user connects to an ISP using a username and password, the information is passed to a RADIUS server, which checks that the information is correct, and then authorizes access to the ISP system. RADIUS proxy and server support is a new feature in Windows Server 2003. You can install and use the Microsoft Internet Authentication Service (IAS) server for both RADIUS servers and RADIUS proxies.

Reference:

Craig Zacker, MCSE Self-Paced Training Kit (Exam 70-293): Planning and Maintaining a Microsoft Windows Server 2003 Network Infrastructure, Microsoft Press, Redmond, Washington, 2004, p. 5: