DRAG DROP
You network contains an Active Directory domain named contoso.com.
The domain contains an enterprise certification authority (CA).A user named Admin1 is a member of the Domain Admins group.
You need to ensure that you can archive keys on the CA. The solution must use Admin1 as a key recovery
agent.
Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of
actions to the answer area and arrange them in the correct order.
Select and Place:
Answer: 
I have latest dumps
mcsamcsa09568@gmail.com
2
7
Please send me the latest dumps. Many thanks
arronzakis@gmail.com
3
1
Please send to me also
franck.desailly.1990@gmail.com
2
1
hi can you send it to me too please /
jbarbier1986@gmail.com
0
2
hi can you send it to me too please
imurciano@hotmail.es
0
1
Send me if you have many thanks
0
1
Please send me too. cnhampule86@gmail.com
0
2
please email me the dumps , I’m writing the exam on 12th march. my mail is harpreetthind2512@yahoo.com .
0
2
Kindly send me the latest dumps, i need help. Thank you.
0
1
Please send me the latest dumps. Many thanks
bayburt112@hotmail.com
0
1
Hi, everyone!
Who wrote this exam MCSA 70-742 in last month I mean Jan?
Please indicate I need your help. Thanks.
1
1
What do you need exactly
0
1
I need help with the current dump
0
1
Dear If any body have the last dumps and updated please send me in my mail
0
1
my mail is :- mhaggar83@gmail.com
0
1
This is wrong :
1- Add a Key recovery
2- Modify the security settings
3- add a certificate to issue
4 – issue a pending request
0
11
Please send me the latest dumps. Many thanks
Riggsemanuel@hotmail.com
0
1
please send me the dumps as well. writing 742 in March 16
0
0
averagejoe766@gmail.com
0
1
– From the Certificate Templates console, modify the security of a certificate template
– From the Certificate Authority console, add a certificate template to issue
– From the Certificate console, request a certificate
– From the Certificate Authority console, add a Key Recovery Agent Certificate
16
8
I agree with this one. Get the template, add the security account to match Admin1, ready your new template in the CA to be issued, Admin1 logs on and requests the certificate, then the certificate, once issued, is assigned as a KRA.
1
1
When you say you agree with this one, do you mean you agree with the answer provided by the site or with b0b’s answer?
0
0
please email me the dumps , I’m giving the exam on 4 April.
ripan.deep@yahoo.com
0
0
I think should be:
1. From the CA console, add a certificate template to issue
2. From the Certificate console, request a certificate
3. From the CA console, issue a pending request
4. From the Ca console, add a KRA certificate
6
1
I want to offer yet another solution after reading this page:
https://social.technet.microsoft.com/wiki/contents/articles/7573.active-directory-certificate-services-pki-key-archival-and-management.aspx#Enrolling_a_Key_Recovery_Agent
UNder the header “Enrolling a User with a KRA Certificate” it states these two things:
1. A user may enroll for a certificate with a CA by using … or (though not recommended) via auto-enrollment.
2. The KRA template is marked to be “pended” by the CA, which means that the certificate request must first be approved by a CA Administrator or a Certificate Manager before the KRA certificate is issued.
Based on that, my solution would be:
1. From the Certificate Templates console, modify the security of a certificate template.
Why? Because we need to give Admin1 read & enroll permission (at least).
2. From the Certification Authority console, add a certificate template to issue.
Why? Next, we need to make the certificate available to request.
3. From the Certificates Console, request a certificate.
Why? Now Admin1 needs to request that certificate.
4. From the Certification Authority console, issue a pending request.
Why? Since we only edited the security of the template, it would still be “pended”, which means it still requires manual approval. Also, it’s a best practice, and Microsoft Exams are all about best practices.
19
1
Agreed. By the way, how many questions does 70-742 exam have?
0
0
Most of the time there are 60 questions
2
0
Anyone with the latest dump? Please send them
sander_gijsbers@hotmail.com
0
0
Please also pnameless@yahoo.com
0
0