单项选择题

Your network contains a Terminal Services server named Server1 that runs Windows Server 2003 Service Pack 2 （SP2）.
Server1 has a server certificate from a trusted authority installed. All Terminal Services clients have the RDP client version 5.2 installed. You need to ensure that all Terminal Services connections to Server1 use Transport Layer Security.
What should you do？（）

A.In Terminal Services Configuration， change the permissions for Remote Desktop Users to Full Control.
B.In Terminal Services Configuration， change the security layer setting to Negotiate and set the encryption level to High.
C.In Local Security Policy， enable Domain Member： Require strong （Windows 2000 or later） session key.
D.In Local Security Policy， enable Domain Member： Digitally encrypt or sign secure channel data （always）.

相关考题

Your network contains a Web server named Server1 that r...

单项选择题

Your network contains a Web server named Server1 that runs Windows Server 2003 and Internet Information Server （IIS）. Server1 has a server certificate from an Enterprise Certificate Authority （CA） installed.External users report that when they try to access the Web site from outside the corporate network by using a Web browser， they receive the following warning message： “There is a problem with this Web site’s security certificate. The security certificate presented by this Web site was not issued by a trusted certificate authority.”
You find that users on the corporate network do not receive this error. You need to ensure that external users do not receive the warning message when connecting to Server1.
What should you do？（）

A.In IIS Manager， enable the Enable client certificate mapping option.
B.In IIS Manager， replace the certificate with a certificate obtained from a public Certification Authority.
C.In Local Security Policy， enable Domain Member： Require strong （Windows 2000 or later） session key.
D.In Local Security Policy， enable Domain Member： Digitally encrypt or sign secure channel data （always）.

Your network contains a Web server named Server1 that r...

单项选择题

Your network contains a Web server named Server1 that runs Windows Server 2003 Service Pack 2 （SP2）. Server1 has one Web site.
You configure Server1 to use a Web server certificate. Users report that they can access the Web site by using http：//server1 and https：//server1. You need to ensure that all traffic to， and from， Server1 is encrypted.
What should you do？（）

A.In IIS Manager， enable the Require secure channel （SSL） option.
B.In IIS Manager， enable the Digest authentication for Windows domain servers option.
C.In Local Security Policy， enable Domain Member： Require strong （Windows 2000 or later） session key.
D.In Local Security Policy， enable Domain Member： Digitally encrypt or sign secure channel data （always）.

Your network contains a DNS server that has a reverse l...

单项选择题

Your network contains a DNS server that has a reverse lookup zone for all of your network segments. You have a server named Server1 that runs Windows Server 2003 Service Pack 2 （SP2）. An IP security policy is assigned to Server1.
You verify IPSec traffic and see that the current security associations display only by IP address. You need to view the fully qualified domain names for all security associations.
What should you do？（）

A.From the DNS console， add Server1 as a name server.
B.From the DNS console， change dynamic updates to Secure only.
C.From IP Security Monitor on Server1， enable DNS name resolution.
D.From IP Security Monitor on Server1， create a new taskpad view.

MCSE(70-291)