SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Connecting To Networks
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Win Server 2008 R2 can authenticate clients when they connect to wired or wireless networks by using ______.
End-to-end protection
Allow Access
Health Policies
Network Policy Server (NPS)
2. This authentication method requires you to install a computer certificate on the RADIUS server and a computer certificate or user certificate on all wireless client computers.
RADIUS
User only
Microsoft Point-to-Point Encryption (MPPE)
Microsoft: Protected EAP (PEAP)
3. You can use ______ - a feature new to Win Server 2008 R2 - to reduce repetitive NPS configuration tasks.
IP Filters
Secure Sockets Layer (SSL)
NPS templates
User only
4. If your DirectAccess server is connected to the IPv4 Internet - allow the following types of packets:
HTTP
Computer or user
Remediation Server Groups
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
5. Win Vista wireless network policies are ______ to wireless clients running Win Vista - Win 7 - and Win Server 2008.
certificates
RADIUS proxy
automatically applied
Configuration Model drop-down list - select Enabled.
6. If no Win Vista wireless network policy exists - computers running Win Vista - Win 7 - and Win Server 2008 will apply ______ policy.
End-to-end protection
the Windows XP
HTTP
RADIUS
7. To configure Win Server 2008 R2 as a RADIUS server - first add the ______ role.
Microsoft: Secured Password (EAP-MS CHAP v2)
Network Policy And Access Services
Computer or user - Computer only - User only - Guest
Secure Sockets Layer (SSL)
8. To create a PKI and enable autoenrollment so that domain member computers have the necessary certificates to support WPA-EAP wireless authentication - follow these steps:
Remediation Server Groups
Configuration Model drop-down list - select Enabled.
Network Policy Server (NPS)
DirectAccess
9. Windows ______ Server 2008 R2 does not include NPS.
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
Windows 7 and Windows Server 2008 R2
certificates
Web
10. Win Server 2008 R2 ______ supports NPS with a maximum of 50 RADIUS clients and 2 remote RADIUS server groups.
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
You must add the Network Policy And Access Services role to configure the server as a RADIUS server.
Standard
certificates
11. This NPS template stores remote RADIUS servers.
gpupdate - net stop iphlpsvc - and net start iphlpsvc
Remote RADIUS Servers
WPA-EAP (also known as WPA-Enterprise)
Secure Sockets Layer (SSL)
12. You can choose from two different DirectAccess connection types: ______.
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
WPA-EAP (also known as WPA-Enterprise)
Computer or user
end-to-edge protection and end-to-end protection
13. Access Client IPv4 Address and Access Client IPv6 Address - Controls access based on the IP address of the client when the Win Server 2008 computer is acting as a ______ server.
VPN
Network Policy Server (NPS)
client
Microsoft: Secured Password (EAP-MS CHAP v2)
14. This NPS template configures remediation server groups - which are groups of servers that unauthenticated clients can access.
Shared Secrets
Application servers and network infrastructure
Remediation Server Groups
Secure Sockets Layer (SSL)
15. To configure the VPN client - first - grant VPN users remote access. In AD domain environments - you can do this by editing the user's properties - clicking the Dial-In tab - and then selecting ______.
Allow Access
Shared Secrets
NPS templates
the Windows XP
16. DirectAccess was introduced with ______ and ______ - so clients on earlier operating systems will need to continue to use a traditional VPN.
Win Server 2003
Microsoft Point-to-Point Encryption (MPPE)
Windows 7 and Windows Server 2008 R2
IPv6
17. ______ is the only VPN technology that can be used across the IPv6 Internet.
Remediation Server Groups
L2TP
IPv6
IPv6
18. In this wireless authentication mode - Windows authenticates to the wireless network prior to displaying the Windows logon screen.
Secure Sockets Layer (SSL)
Computer only
WPA2.
PKI
19. To configure a DirectAccess client - run the following three commands: ______.
RADIUS Clients
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
HTTP
gpupdate - net stop iphlpsvc - and net start iphlpsvc
20. If your DirectAccess server is connected to the IPv6 Internet - allow the following types of packets:
IP Filters
Health Policies
Secure Sockets Layer (SSL)
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
21. ICS allows you to enable NAT on a server with just a few clicks. However - configuration options are very limited. For example - the internal interface must have the IP address ______. Additionally - you cannot use the DHCP Server role built into Win
Microsoft: Secured Password (EAP-MS CHAP v2)
192.168.0.1
IPsec
WPA-EAP (also known as WPA-Enterprise)
22. By default - RADIUS will stop authenticating users if it ______ the authentications.
gpupdate - net stop iphlpsvc - and net start iphlpsvc
cannot log
client
Remote RADIUS Servers
23. Win Server 2008 R2 Enterprise and Win Server 2008 R2 ______ support NPS without restrictions.
Datacenter
Win Server 2003
RADIUS Clients
Network Policy And Access Services
24. Passes authentication requests to a back-end server - such as a computer running Windows Server 2008 R2 and RADIUS.
Computer only
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
WPA-EAP (also known as WPA-Enterprise)
certificate
25. This NPS template configures health policies - which must be added to the Health Policies condition of your network policy before they are enforced.
RADIUS Clients
Remediation Server Groups
Health Policies
end-to-edge protection and end-to-end protection
26. DirectAccess uses ______ for all communications - which prevents users from accessing IPv4-only resources.
cannot log
Secure Sockets Layer (SSL)
User only
IPv6
27. With ______ DirectAccess clients connect directly to application servers using IPsec.
End-to-end protection
Microsoft: Secured Password (EAP-MS CHAP v2)
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
Web
28. ______ can keep mobile users connected to your intranet any time they have an Internet connection.
certificates
DirectAccess
PKI
Guest
29. Win XP wireless network policies apply to clients running Win XP with SP2 and ______.
client
certificates
Win Server 2003
VPN
30. In this wireless authentication mode - Windows authenticates prior to logon by using computer credentials. After logon - Windows submits user credentials.
WPA-EAP (also known as WPA-Enterprise)
client
certificates
Computer or user
31. SSTP is supported only by Win Server 2008 (as a VPN server or client) and Win Vista with Service Pack 1 (as a VPN ______).
Remote RADIUS Servers
cannot log
DirectAccess
client
32. Which server role is required to support authenticating wireless users to Active Directory?
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
You must add the Network Policy And Access Services role to configure the server as a RADIUS server.
the Windows XP
33. Windows Server 2008 and Windows Vista support three VPN technologies:
Datacenter
Allow Access
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
WPA2.
34. What is the strongest form of wireless network security supported by Windows 7 and Windows Server 2008 R2?
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
WPA2.
Computer or user - Computer only - User only - Guest
User only
35. This authentication method requires computer certificates to be installed on all RADIUS servers and requires all client computers to trust the CA that issued the computer certificate installed on the RADIUS server.
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
Computer or user - Computer only - User only - Guest
Microsoft: Secured Password (EAP-MS CHAP v2)
Datacenter
36. The most straightforward approach to deploying WPA-EAP is to use a ______ to deploy certificates to both your RADIUS server and all wireless client computers. 1. Add the Active Directory Certificate Services role to a server in your domain. 2. In the
-d
DirectAccess
the Windows XP
PKI
37. Using ______ encapsulation allows SSTP to traverse many firewalls - NATs - and proxy servers that would cause PPTP and L2TP to fail.
gpupdate - net stop iphlpsvc - and net start iphlpsvc
client
HTTP
Network Policy And Access Services
38. Client IPv4 Address and Client IPv6 Address - Controls access based on the IP address of the client when the Win Server 2008 computer is acting as a ______ server.
certificates
RADIUS
VPN
IPsec
39. In this wireless authentication mode - Windows authenticates to the wireless network after the user logs on.
Shared Secrets
User only
Computer or user - Computer only - User only - Guest
IPsec
40. SSTP requires that the VPN server has a computer ______ installed and that clients trust the CA that issued the computer certificate.
certificate
192.168.0.1
PKI
Network Policy Server (NPS)
41. To use VPN Reconnect - both the VPN client and server must support the ______ VPN protocol.
PKI
-d
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
Internet Key Exchange version 2 (IKEv2)
42. Windows wireless clients can authenticate using the following modes:
Computer or user - Computer only - User only - Guest
client
cannot log
Microsoft: Protected EAP (PEAP)
43. L2TP requires both the VPN clients and servers to have computer ______.
certificates
HTTP
Windows 7 and Windows Server 2008 R2
Health Policies
44. If you have existing RADIUS servers and you need a layer of abstraction between the access points and the RADIUS servers - or if you need to submit requests to different RADIUS servers based on specific criteria - you can configure Win Server 2008 or
VPN
PKI
RADIUS proxy
Computer or user
45. This NPS template allows you to quickly configure the same RADIUS clients on different servers.
RADIUS Clients
Network Policy Server (NPS)
Allow Access
PKI
46. In this wireless authentication mode - Windows joins the network as a guest without authenticating.
Application servers and network infrastructure
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
Guest
Standard
47. SSTP uses PPP authentication methods for user-level authentication and HTTP encapsulation over a _____ channel for data authentication - data integrity - and data encryption.
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
Microsoft: Protected EAP (PEAP)
Secure Sockets Layer (SSL)
48. DirectAccess requires the following _________________ to support IPv6 communications (which can include IPv6 translation technologies).:A DirectAccess server running Win Srvr 2008 R2 that is a member of a domain (but not a DC). - Clients must be dom
Application servers and network infrastructure
Microsoft: Secured Password (EAP-MS CHAP v2)
User only
End-to-end protection
49. To improve Tracert performance - add the ___ parameter before the IP address to prevent DNS lookups.
-d
End-to-edge
Computer or user
192.168.0.1
50. L2TP uses PPP authentication methods for user-level authentication and ______ for computer-level peer authentication - data authentication - data integrity - and data encryption.
IPsec
RADIUS proxy
Web
VPN
