DRAG DROP
Your network contains an Active Directory domain named adatum.com. The domain contains three
servers. The servers are configured as shown in the following table.
Server1 is configured as shown in the exhibit. (Click the Exhibit button.)
Template1 contains custom cryptography settings that are required by the corporate security team.
On Server2, an administrator successfully installs a certificate based on Template1.
The administrator reports that Template1 is not listed in the Certificate Enrollment wizard on
Server3, even after selecting the Show all templates check box.
You need to ensure that you can install a server authentication certificate on Server3. The certificate
must comply with the cryptography requirements.
Which three actions should you perform in sequence?
To answer, move the appropriate three actions from the list of actions to the answer area and
arrange them in the correct order.
Answer: See the explanation
Explanation:
Box 1:
Box 2:
Box 3:
Note:
Duplicate an existing template, modify the Compatibility Settings (to Windows Server 2008), and
modify the Request Handling settings.
1. From Certificate Templates, click Duplicate Template.
2. From Certificate Templates, modify the Compatibility settings of the template.
3. From Certification Authority, click New, and then click Certificate Template to Issue.
0
0
Agree with Ya. I cannot find a reason why we should modify the Request Handling settings instead of issue the Certificate Template. Given answer is wrong, Ya’s answer is right.
0
0
Ya, you are correct. Only one problem prevents deployment of certificate to Server3 is template level not Request Handling settings.
0
0
Billy says:
February 17, 2015 at 7:12 am
So you Duplicate the template, modify its settings, and then what? It’s just sitting in the Cert Templates console, unable to be issued. It has to show up in Certificate Authority > Certificate Templates in order to be issued, and the only way to get there is to Issue a New Cert from Template.
Also, the Request Handling tab sets the cryptographic requirements for the certificate. As the question states the certificate must comply with the cryptographic requirements, you should not touch these. Issuance Requirements also do not need to be altered. Policy Module also pertains to the cryptographic information in the certificate, so you leave this alone.
This leaves us with:
1. Duplicate Template
2. Modify Compatibility
3. New > Certificate Template to Issue
Reply
2
0