SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Connecting To Networks
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Win Server 2008 R2 Enterprise and Win Server 2008 R2 ______ support NPS without restrictions.
Datacenter
WPA2.
Standard
certificates
2. This NPS template stores remote RADIUS servers.
Remote RADIUS Servers
PKI
192.168.0.1
Microsoft: Secured Password (EAP-MS CHAP v2)
3. If no Win Vista wireless network policy exists - computers running Win Vista - Win 7 - and Win Server 2008 will apply ______ policy.
the Windows XP
User only
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
Remediation Server Groups
4. This NPS template configures health policies - which must be added to the Health Policies condition of your network policy before they are enforced.
Health Policies
end-to-edge protection and end-to-end protection
End-to-edge
Internet Key Exchange version 2 (IKEv2)
5. SSTP uses PPP authentication methods for user-level authentication and HTTP encapsulation over a _____ channel for data authentication - data integrity - and data encryption.
Secure Sockets Layer (SSL)
HTTP
DirectAccess
Win Server 2003
6. This NPS template configures IPv4 or IPV6 filters to configure which networks can connect.
IP Filters
User only
client
L2TP
7. SSTP requires that the VPN server has a computer ______ installed and that clients trust the CA that issued the computer certificate.
certificate
WPA-EAP (also known as WPA-Enterprise)
end-to-edge protection and end-to-end protection
Microsoft Point-to-Point Encryption (MPPE)
8. With ______ DirectAccess clients connect directly to application servers using IPsec.
VPN
End-to-end protection
RADIUS Clients
certificate
9. ______ is the only VPN technology that can be used across the IPv6 Internet.
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
L2TP
Microsoft Point-to-Point Encryption (MPPE)
client
10. DirectAccess uses ______ for all communications - which prevents users from accessing IPv4-only resources.
IPv6
RADIUS Clients
automatically applied
WPA-EAP (also known as WPA-Enterprise)
11. If your DirectAccess server is connected to the IPv4 Internet - allow the following types of packets:
Windows 7 and Windows Server 2008 R2
IPsec
Standard
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
12. This NPS template configures remediation server groups - which are groups of servers that unauthenticated clients can access.
Network Policy Server (NPS)
RADIUS proxy
WPA2.
Remediation Server Groups
13. Win XP wireless network policies apply to clients running Win XP with SP2 and ______.
Web
Network Policy Server (NPS)
Win Server 2003
Network Policy And Access Services
14. This authentication method requires you to install a computer certificate on the RADIUS server and a computer certificate or user certificate on all wireless client computers.
Internet Key Exchange version 2 (IKEv2)
End-to-edge
Microsoft: Protected EAP (PEAP)
Microsoft: Secured Password (EAP-MS CHAP v2)
15. This NPS template allows you to quickly configure the same RADIUS clients on different servers.
Microsoft Point-to-Point Encryption (MPPE)
RADIUS Clients
Shared Secrets
User only
16. To configure a DirectAccess client - run the following three commands: ______.
RADIUS
IPv6
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
gpupdate - net stop iphlpsvc - and net start iphlpsvc
17. DirectAccess was introduced with ______ and ______ - so clients on earlier operating systems will need to continue to use a traditional VPN.
automatically applied
Windows 7 and Windows Server 2008 R2
Shared Secrets
L2TP
18. You can use ______ - a feature new to Win Server 2008 R2 - to reduce repetitive NPS configuration tasks.
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
RADIUS proxy
Internet Key Exchange version 2 (IKEv2)
NPS templates
19. In this wireless authentication mode - Windows authenticates prior to logon by using computer credentials. After logon - Windows submits user credentials.
Computer or user
RADIUS proxy
HTTP
Allow Access
20. In this wireless authentication mode - Windows authenticates to the wireless network prior to displaying the Windows logon screen.
Computer only
RADIUS proxy
RADIUS
Datacenter
21. What is the strongest form of wireless network security supported by Windows 7 and Windows Server 2008 R2?
WPA2.
end-to-edge protection and end-to-end protection
certificate
Web
22. The most straightforward approach to deploying WPA-EAP is to use a ______ to deploy certificates to both your RADIUS server and all wireless client computers. 1. Add the Active Directory Certificate Services role to a server in your domain. 2. In the
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
end-to-edge protection and end-to-end protection
Standard
PKI
23. To configure Win Server 2008 R2 as a RADIUS server - first add the ______ role.
Computer or user - Computer only - User only - Guest
certificate
Network Policy And Access Services
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
24. Win Server 2008 R2 ______ supports NPS with a maximum of 50 RADIUS clients and 2 remote RADIUS server groups.
End-to-end protection
certificates
Web
Standard
25. In this wireless authentication mode - Windows joins the network as a guest without authenticating.
User only
HTTP
Guest
Internet Key Exchange version 2 (IKEv2)
26. Windows wireless clients can authenticate using the following modes:
IPv6
Win Server 2003
Computer only
Computer or user - Computer only - User only - Guest
27. Client IPv4 Address and Client IPv6 Address - Controls access based on the IP address of the client when the Win Server 2008 computer is acting as a ______ server.
L2TP
Windows 7 and Windows Server 2008 R2
RADIUS
Guest
28. L2TP requires both the VPN clients and servers to have computer ______.
Guest
DirectAccess
certificates
Application servers and network infrastructure
29. If your DirectAccess server is connected to the IPv6 Internet - allow the following types of packets:
IPsec
Microsoft: Secured Password (EAP-MS CHAP v2)
DirectAccess
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
30. To configure the VPN client - first - grant VPN users remote access. In AD domain environments - you can do this by editing the user's properties - clicking the Dial-In tab - and then selecting ______.
end-to-edge protection and end-to-end protection
Allow Access
Microsoft: Protected EAP (PEAP)
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
31. ICS allows you to enable NAT on a server with just a few clicks. However - configuration options are very limited. For example - the internal interface must have the IP address ______. Additionally - you cannot use the DHCP Server role built into Win
Standard
certificate
HTTP
192.168.0.1
32. ______ can keep mobile users connected to your intranet any time they have an Internet connection.
IPv6
certificate
end-to-edge protection and end-to-end protection
DirectAccess
33. To improve Tracert performance - add the ___ parameter before the IP address to prevent DNS lookups.
cannot log
Standard
-d
You must add the Network Policy And Access Services role to configure the server as a RADIUS server.
34. SSTP is supported only by Win Server 2008 (as a VPN server or client) and Win Vista with Service Pack 1 (as a VPN ______).
Guest
client
IPsec
Remote RADIUS Servers
35. To use VPN Reconnect - both the VPN client and server must support the ______ VPN protocol.
Internet Key Exchange version 2 (IKEv2)
NPS templates
cannot log
Remediation Server Groups
36. PPTP uses Point-to-Point Protocol (PPP) authentication methods for user-level authentication and ______ for data encryption.
Computer or user - Computer only - User only - Guest
Microsoft Point-to-Point Encryption (MPPE)
cannot log
certificate
37. Access Client IPv4 Address and Access Client IPv6 Address - Controls access based on the IP address of the client when the Win Server 2008 computer is acting as a ______ server.
PKI
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
VPN
38. Win Vista wireless network policies are ______ to wireless clients running Win Vista - Win 7 - and Win Server 2008.
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
NPS templates
automatically applied
Network Policy And Access Services
39. This authentication method requires computer certificates to be installed on all RADIUS servers and requires all client computers to trust the CA that issued the computer certificate installed on the RADIUS server.
end-to-edge protection and end-to-end protection
Microsoft: Secured Password (EAP-MS CHAP v2)
NPS templates
Standard
40. Using ______ encapsulation allows SSTP to traverse many firewalls - NATs - and proxy servers that would cause PPTP and L2TP to fail.
Remote RADIUS Servers
HTTP
Computer only
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
41. Additionally - DirectAccess configures clients with globally routable ______ addresses. Therefore - you will need to use transition technologies - such as 6to4 - Teredo - and ISATAP - to allow connections across the IPv4 Internet and portions of your
Shared Secrets
Allow Access
RADIUS Clients
IPv6
42. To create a PKI and enable autoenrollment so that domain member computers have the necessary certificates to support WPA-EAP wireless authentication - follow these steps:
IPv6
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
Microsoft Point-to-Point Encryption (MPPE)
Configuration Model drop-down list - select Enabled.
43. If you have existing RADIUS servers and you need a layer of abstraction between the access points and the RADIUS servers - or if you need to submit requests to different RADIUS servers based on specific criteria - you can configure Win Server 2008 or
RADIUS proxy
Allow Access
Application servers and network infrastructure
Network Policy Server (NPS)
44. Windows ______ Server 2008 R2 does not include NPS.
Web
192.168.0.1
Standard
Win Server 2003
45. By default - RADIUS will stop authenticating users if it ______ the authentications.
cannot log
gpupdate - net stop iphlpsvc - and net start iphlpsvc
Computer only
Health Policies
46. You can choose from two different DirectAccess connection types: ______.
End-to-edge
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
end-to-edge protection and end-to-end protection
Microsoft: Protected EAP (PEAP)
47. Passes authentication requests to a back-end server - such as a computer running Windows Server 2008 R2 and RADIUS.
End-to-end protection
WPA-EAP (also known as WPA-Enterprise)
PKI
Health Policies
48. This NPS template stores RADIUS shared secrets - allowing you to configure them without typing the shared secret at different computers.
WPA2.
Network Policy And Access Services
Shared Secrets
Health Policies
49. Windows Server 2008 and Windows Vista support three VPN technologies:
You must add the Network Policy And Access Services role to configure the server as a RADIUS server.
the Windows XP
Microsoft Point-to-Point Encryption (MPPE)
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
50. DirectAccess requires the following _________________ to support IPv6 communications (which can include IPv6 translation technologies).:A DirectAccess server running Win Srvr 2008 R2 that is a member of a domain (but not a DC). - Clients must be dom
Datacenter
IPv6
Computer or user
Application servers and network infrastructure
