You manage a member server that runs Windows Server 2008 R2. The server has the Web Server
(IIS) role installed. The Web server hosts a Web site named Intranet1. Only internal Active Directory
user accounts have access to the Web site. The authentication settings for Intranet1 are configured
as shown in the exhibit. (Click the Exhibit button.)
You need to ensure that users authenticate to the Web site by using only the Microsoft Challenge
andshake Authentication Protocol version 2 (MS-CHAPv2) encrypted Active Directory credentials.
Which two actions should you perform? (Each correct answer presents part of the solution. Choose
two.)
A.
Add the Digest Authentication role service and the URL Authorization role service to the server.
B.
Add the Windows Authentication role service to IIS. Configure the Windows Authentication
setting to Enabled in the Intranet1 properties.
C.
Configure the Basic Authentication setting to Disabled in the Intranet1 properties.
D.
Configure the Default domain field for the Basic Authentication settings on Intranet1 by adding
the name of the Active Directory domain.
E.
Configure the Basic Authentication setting to Disabled and the Anonymous Authentication setting
to Enabled in the Intranet1 properties.
Explanation:
To ensure that the users accessing the website are authenticated through MS-CHAPv2 encrypted
Active Directory credentials, you should Add Windows Authentication role service to the IIS server.
Enable the Windows Authentication settings in the intranet-e properties and disable the basic
authentication setting in the intranet-e properties. Basic authentication is a set of basic rules that
authenticate users. To implement MS-CHAPv2, you have to disable the basic authentication andthen, add windows authentication role services to the IIS server. After adding it, you should enable
it. The Windows Authentication role service will allow the website to be authenticated through MSCHAPv2.