SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Connecting To Networks
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. With ______ protection DirectAccess clients connect to the DirectAccess server using IPsec.
End-to-edge
RADIUS proxy
IPsec
DirectAccess
2. L2TP uses PPP authentication methods for user-level authentication and ______ for computer-level peer authentication - data authentication - data integrity - and data encryption.
certificate
Computer only
IPsec
Win Server 2003
3. What is the strongest form of wireless network security supported by Windows 7 and Windows Server 2008 R2?
WPA2.
Standard
Microsoft: Secured Password (EAP-MS CHAP v2)
RADIUS Clients
4. This authentication method requires you to install a computer certificate on the RADIUS server and a computer certificate or user certificate on all wireless client computers.
Microsoft: Protected EAP (PEAP)
Shared Secrets
PKI
Computer or user
5. The most straightforward approach to deploying WPA-EAP is to use a ______ to deploy certificates to both your RADIUS server and all wireless client computers. 1. Add the Active Directory Certificate Services role to a server in your domain. 2. In the
NPS templates
PKI
User only
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
6. This NPS template configures IPv4 or IPV6 filters to configure which networks can connect.
IP Filters
Computer or user
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
certificates
7. This NPS template configures remediation server groups - which are groups of servers that unauthenticated clients can access.
Application servers and network infrastructure
Remediation Server Groups
gpupdate - net stop iphlpsvc - and net start iphlpsvc
Configuration Model drop-down list - select Enabled.
8. ______ can keep mobile users connected to your intranet any time they have an Internet connection.
client
Secure Sockets Layer (SSL)
end-to-edge protection and end-to-end protection
DirectAccess
9. ICS allows you to enable NAT on a server with just a few clicks. However - configuration options are very limited. For example - the internal interface must have the IP address ______. Additionally - you cannot use the DHCP Server role built into Win
Network Policy And Access Services
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
192.168.0.1
automatically applied
10. DirectAccess requires the following _________________ to support IPv6 communications (which can include IPv6 translation technologies).:A DirectAccess server running Win Srvr 2008 R2 that is a member of a domain (but not a DC). - Clients must be dom
RADIUS Clients
HTTP
Windows 7 and Windows Server 2008 R2
Application servers and network infrastructure
11. By default - RADIUS will stop authenticating users if it ______ the authentications.
192.168.0.1
Standard
Windows 7 and Windows Server 2008 R2
cannot log
12. This NPS template configures health policies - which must be added to the Health Policies condition of your network policy before they are enforced.
Health Policies
Win Server 2003
gpupdate - net stop iphlpsvc - and net start iphlpsvc
PKI
13. PPTP uses Point-to-Point Protocol (PPP) authentication methods for user-level authentication and ______ for data encryption.
Microsoft Point-to-Point Encryption (MPPE)
End-to-edge
PKI
Microsoft: Secured Password (EAP-MS CHAP v2)
14. You can use ______ - a feature new to Win Server 2008 R2 - to reduce repetitive NPS configuration tasks.
NPS templates
IPv6
RADIUS Clients
Datacenter
15. DirectAccess was introduced with ______ and ______ - so clients on earlier operating systems will need to continue to use a traditional VPN.
Windows 7 and Windows Server 2008 R2
IP Filters
certificate
Datacenter
16. This NPS template stores remote RADIUS servers.
Remote RADIUS Servers
IPsec
Network Policy Server (NPS)
IPv6
17. To configure the VPN client - first - grant VPN users remote access. In AD domain environments - you can do this by editing the user's properties - clicking the Dial-In tab - and then selecting ______.
Allow Access
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
L2TP
RADIUS proxy
18. Windows ______ Server 2008 R2 does not include NPS.
Win Server 2003
Web
Remote RADIUS Servers
VPN
19. Windows Server 2008 and Windows Vista support three VPN technologies:
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
IPv6
client
Microsoft: Protected EAP (PEAP)
20. This NPS template allows you to quickly configure the same RADIUS clients on different servers.
cannot log
End-to-edge
Configuration Model drop-down list - select Enabled.
RADIUS Clients
21. If you have existing RADIUS servers and you need a layer of abstraction between the access points and the RADIUS servers - or if you need to submit requests to different RADIUS servers based on specific criteria - you can configure Win Server 2008 or
Remote RADIUS Servers
RADIUS proxy
IPsec
Network Policy Server (NPS)
22. If your DirectAccess server is connected to the IPv4 Internet - allow the following types of packets:
Network Policy Server (NPS)
certificates
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
IPv6
23. Which server role is required to support authenticating wireless users to Active Directory?
Allow Access
You must add the Network Policy And Access Services role to configure the server as a RADIUS server.
IPsec
Secure Sockets Layer (SSL)
24. SSTP is supported only by Win Server 2008 (as a VPN server or client) and Win Vista with Service Pack 1 (as a VPN ______).
client
End-to-edge
Application servers and network infrastructure
Allow Access
25. SSTP uses PPP authentication methods for user-level authentication and HTTP encapsulation over a _____ channel for data authentication - data integrity - and data encryption.
IPsec
Secure Sockets Layer (SSL)
certificate
End-to-end protection
26. Win XP wireless network policies apply to clients running Win XP with SP2 and ______.
Health Policies
Standard
Win Server 2003
User only
27. Win Server 2008 R2 ______ supports NPS with a maximum of 50 RADIUS clients and 2 remote RADIUS server groups.
Guest
WPA-EAP (also known as WPA-Enterprise)
-d
Standard
28. SSTP requires that the VPN server has a computer ______ installed and that clients trust the CA that issued the computer certificate.
Internet Key Exchange version 2 (IKEv2)
Computer or user
Health Policies
certificate
29. Windows wireless clients can authenticate using the following modes:
Windows 7 and Windows Server 2008 R2
DirectAccess
client
Computer or user - Computer only - User only - Guest
30. L2TP requires both the VPN clients and servers to have computer ______.
Web
certificates
IPv6
IPsec
31. If your DirectAccess server is connected to the IPv6 Internet - allow the following types of packets:
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
End-to-end protection
Microsoft: Secured Password (EAP-MS CHAP v2)
WPA-EAP (also known as WPA-Enterprise)
32. To configure Win Server 2008 R2 as a RADIUS server - first add the ______ role.
Internet Key Exchange version 2 (IKEv2)
Network Policy And Access Services
RADIUS
DirectAccess
33. Win Vista wireless network policies are ______ to wireless clients running Win Vista - Win 7 - and Win Server 2008.
automatically applied
WPA2.
PKI
-d
34. Using ______ encapsulation allows SSTP to traverse many firewalls - NATs - and proxy servers that would cause PPTP and L2TP to fail.
WPA2.
HTTP
Application servers and network infrastructure
End-to-end protection
35. Client IPv4 Address and Client IPv6 Address - Controls access based on the IP address of the client when the Win Server 2008 computer is acting as a ______ server.
Computer or user - Computer only - User only - Guest
Computer only
RADIUS
Network Policy And Access Services
36. Win Server 2008 R2 Enterprise and Win Server 2008 R2 ______ support NPS without restrictions.
PKI
VPN
Datacenter
Windows 7 and Windows Server 2008 R2
37. ______ is the only VPN technology that can be used across the IPv6 Internet.
L2TP
client
You must add the Network Policy And Access Services role to configure the server as a RADIUS server.
Remediation Server Groups
38. With ______ DirectAccess clients connect directly to application servers using IPsec.
Network Policy And Access Services
certificate
certificates
End-to-end protection
39. In this wireless authentication mode - Windows joins the network as a guest without authenticating.
Microsoft: Protected EAP (PEAP)
End-to-edge
Secure Sockets Layer (SSL)
Guest
40. In this wireless authentication mode - Windows authenticates to the wireless network after the user logs on.
You must add the Network Policy And Access Services role to configure the server as a RADIUS server.
certificates
User only
End-to-end protection
41. Additionally - DirectAccess configures clients with globally routable ______ addresses. Therefore - you will need to use transition technologies - such as 6to4 - Teredo - and ISATAP - to allow connections across the IPv4 Internet and portions of your
Network Policy And Access Services
L2TP
Guest
IPv6
42. To use VPN Reconnect - both the VPN client and server must support the ______ VPN protocol.
Internet Key Exchange version 2 (IKEv2)
User only
Guest
192.168.0.1
43. If no Win Vista wireless network policy exists - computers running Win Vista - Win 7 - and Win Server 2008 will apply ______ policy.
the Windows XP
Internet Key Exchange version 2 (IKEv2)
gpupdate - net stop iphlpsvc - and net start iphlpsvc
VPN
44. To configure a DirectAccess client - run the following three commands: ______.
gpupdate - net stop iphlpsvc - and net start iphlpsvc
HTTP
192.168.0.1
the Windows XP
45. Access Client IPv4 Address and Access Client IPv6 Address - Controls access based on the IP address of the client when the Win Server 2008 computer is acting as a ______ server.
Remote RADIUS Servers
client
Internet Key Exchange version 2 (IKEv2)
VPN
46. Passes authentication requests to a back-end server - such as a computer running Windows Server 2008 R2 and RADIUS.
WPA-EAP (also known as WPA-Enterprise)
IPsec
User only
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
47. DirectAccess uses ______ for all communications - which prevents users from accessing IPv4-only resources.
-d
Standard
PKI
IPv6
48. This NPS template stores RADIUS shared secrets - allowing you to configure them without typing the shared secret at different computers.
DirectAccess
Shared Secrets
Computer or user - Computer only - User only - Guest
End-to-end protection
49. To improve Tracert performance - add the ___ parameter before the IP address to prevent DNS lookups.
-d
client
Standard
PKI
50. You can choose from two different DirectAccess connection types: ______.
WPA-EAP (also known as WPA-Enterprise)
end-to-edge protection and end-to-end protection
Datacenter
Remediation Server Groups
