SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Connecting To Networks
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. DirectAccess uses ______ for all communications - which prevents users from accessing IPv4-only resources.
RADIUS
the Windows XP
automatically applied
IPv6
2. To improve Tracert performance - add the ___ parameter before the IP address to prevent DNS lookups.
cannot log
Web
-d
Windows 7 and Windows Server 2008 R2
3. Win Server 2008 R2 can authenticate clients when they connect to wired or wireless networks by using ______.
HTTP
Network Policy Server (NPS)
IPsec
automatically applied
4. ______ can keep mobile users connected to your intranet any time they have an Internet connection.
End-to-end protection
DirectAccess
Microsoft: Secured Password (EAP-MS CHAP v2)
Computer or user
5. This NPS template stores RADIUS shared secrets - allowing you to configure them without typing the shared secret at different computers.
You must add the Network Policy And Access Services role to configure the server as a RADIUS server.
Shared Secrets
DirectAccess
End-to-edge
6. L2TP uses PPP authentication methods for user-level authentication and ______ for computer-level peer authentication - data authentication - data integrity - and data encryption.
Microsoft: Protected EAP (PEAP)
IP Filters
IPsec
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
7. By default - RADIUS will stop authenticating users if it ______ the authentications.
Guest
cannot log
VPN
Application servers and network infrastructure
8. What is the strongest form of wireless network security supported by Windows 7 and Windows Server 2008 R2?
WPA2.
Network Policy And Access Services
Health Policies
IPv6
9. DirectAccess was introduced with ______ and ______ - so clients on earlier operating systems will need to continue to use a traditional VPN.
Network Policy Server (NPS)
Configuration Model drop-down list - select Enabled.
gpupdate - net stop iphlpsvc - and net start iphlpsvc
Windows 7 and Windows Server 2008 R2
10. L2TP requires both the VPN clients and servers to have computer ______.
certificates
Microsoft: Protected EAP (PEAP)
automatically applied
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
11. Win Vista wireless network policies are ______ to wireless clients running Win Vista - Win 7 - and Win Server 2008.
WPA2.
Win Server 2003
automatically applied
Computer or user - Computer only - User only - Guest
12. Passes authentication requests to a back-end server - such as a computer running Windows Server 2008 R2 and RADIUS.
User only
Microsoft Point-to-Point Encryption (MPPE)
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
WPA-EAP (also known as WPA-Enterprise)
13. With ______ DirectAccess clients connect directly to application servers using IPsec.
Computer only
certificates
WPA2.
End-to-end protection
14. Win Server 2008 R2 ______ supports NPS with a maximum of 50 RADIUS clients and 2 remote RADIUS server groups.
HTTP
certificate
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
Standard
15. With ______ protection DirectAccess clients connect to the DirectAccess server using IPsec.
certificate
End-to-edge
cannot log
-d
16. If your DirectAccess server is connected to the IPv4 Internet - allow the following types of packets:
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
Computer or user - Computer only - User only - Guest
client
Guest
17. In this wireless authentication mode - Windows authenticates prior to logon by using computer credentials. After logon - Windows submits user credentials.
WPA2.
the Windows XP
Computer or user
Shared Secrets
18. Win Server 2008 R2 Enterprise and Win Server 2008 R2 ______ support NPS without restrictions.
gpupdate - net stop iphlpsvc - and net start iphlpsvc
Computer or user - Computer only - User only - Guest
Datacenter
RADIUS proxy
19. Windows ______ Server 2008 R2 does not include NPS.
Web
Computer only
Remote RADIUS Servers
Datacenter
20. This NPS template configures health policies - which must be added to the Health Policies condition of your network policy before they are enforced.
Windows 7 and Windows Server 2008 R2
Health Policies
Microsoft Point-to-Point Encryption (MPPE)
NPS templates
21. You can use ______ - a feature new to Win Server 2008 R2 - to reduce repetitive NPS configuration tasks.
Shared Secrets
Secure Sockets Layer (SSL)
Computer only
NPS templates
22. DirectAccess requires the following _________________ to support IPv6 communications (which can include IPv6 translation technologies).:A DirectAccess server running Win Srvr 2008 R2 that is a member of a domain (but not a DC). - Clients must be dom
RADIUS proxy
End-to-end protection
Application servers and network infrastructure
Web
23. In this wireless authentication mode - Windows authenticates to the wireless network after the user logs on.
End-to-end protection
Computer or user - Computer only - User only - Guest
User only
-d
24. SSTP requires that the VPN server has a computer ______ installed and that clients trust the CA that issued the computer certificate.
certificate
End-to-edge
Remediation Server Groups
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
25. ______ is the only VPN technology that can be used across the IPv6 Internet.
certificates
Standard
Internet Key Exchange version 2 (IKEv2)
L2TP
26. This authentication method requires you to install a computer certificate on the RADIUS server and a computer certificate or user certificate on all wireless client computers.
DirectAccess
IPv6
Datacenter
Microsoft: Protected EAP (PEAP)
27. Client IPv4 Address and Client IPv6 Address - Controls access based on the IP address of the client when the Win Server 2008 computer is acting as a ______ server.
End-to-edge
RADIUS
client
PKI
28. SSTP uses PPP authentication methods for user-level authentication and HTTP encapsulation over a _____ channel for data authentication - data integrity - and data encryption.
Secure Sockets Layer (SSL)
Microsoft: Protected EAP (PEAP)
End-to-edge
Guest
29. SSTP is supported only by Win Server 2008 (as a VPN server or client) and Win Vista with Service Pack 1 (as a VPN ______).
Datacenter
Allow Access
Computer only
client
30. Win XP wireless network policies apply to clients running Win XP with SP2 and ______.
Guest
DirectAccess
RADIUS
Win Server 2003
31. Additionally - DirectAccess configures clients with globally routable ______ addresses. Therefore - you will need to use transition technologies - such as 6to4 - Teredo - and ISATAP - to allow connections across the IPv4 Internet and portions of your
Application servers and network infrastructure
Computer or user - Computer only - User only - Guest
Computer or user
IPv6
32. PPTP uses Point-to-Point Protocol (PPP) authentication methods for user-level authentication and ______ for data encryption.
Microsoft: Secured Password (EAP-MS CHAP v2)
HTTP
Microsoft Point-to-Point Encryption (MPPE)
Win Server 2003
33. To use VPN Reconnect - both the VPN client and server must support the ______ VPN protocol.
Shared Secrets
Internet Key Exchange version 2 (IKEv2)
client
Health Policies
34. To configure the VPN client - first - grant VPN users remote access. In AD domain environments - you can do this by editing the user's properties - clicking the Dial-In tab - and then selecting ______.
RADIUS
End-to-end protection
Allow Access
Network Policy Server (NPS)
35. To configure Win Server 2008 R2 as a RADIUS server - first add the ______ role.
Network Policy And Access Services
Remote RADIUS Servers
IPv6
Microsoft: Secured Password (EAP-MS CHAP v2)
36. This NPS template allows you to quickly configure the same RADIUS clients on different servers.
certificate
RADIUS Clients
Web
Guest
37. In this wireless authentication mode - Windows joins the network as a guest without authenticating.
Guest
WPA-EAP (also known as WPA-Enterprise)
VPN
-d
38. The most straightforward approach to deploying WPA-EAP is to use a ______ to deploy certificates to both your RADIUS server and all wireless client computers. 1. Add the Active Directory Certificate Services role to a server in your domain. 2. In the
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
WPA2.
Microsoft Point-to-Point Encryption (MPPE)
PKI
39. Windows wireless clients can authenticate using the following modes:
You must add the Network Policy And Access Services role to configure the server as a RADIUS server.
cannot log
Computer or user - Computer only - User only - Guest
gpupdate - net stop iphlpsvc - and net start iphlpsvc
40. If no Win Vista wireless network policy exists - computers running Win Vista - Win 7 - and Win Server 2008 will apply ______ policy.
IPv6
the Windows XP
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
End-to-end protection
41. To create a PKI and enable autoenrollment so that domain member computers have the necessary certificates to support WPA-EAP wireless authentication - follow these steps:
Network Policy Server (NPS)
Configuration Model drop-down list - select Enabled.
HTTP
gpupdate - net stop iphlpsvc - and net start iphlpsvc
42. This NPS template configures remediation server groups - which are groups of servers that unauthenticated clients can access.
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
automatically applied
Remediation Server Groups
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
43. Windows Server 2008 and Windows Vista support three VPN technologies:
Protocol 41 - inbound and outbound - UDP destination port 3544 - inbound - UDP source port 3544 - outbound - TCP destination port 443 - inbound - TCP source port 443 - outbound
RADIUS proxy
Point-to-Point Tunneling Protocol (PPTP) - Layer Two Tunneling Protocol (L2TP) - Secure Socket Tunneling Protocol (SS TP)
Configuration Model drop-down list - select Enabled.
44. ICS allows you to enable NAT on a server with just a few clicks. However - configuration options are very limited. For example - the internal interface must have the IP address ______. Additionally - you cannot use the DHCP Server role built into Win
End-to-edge
WPA-EAP (also known as WPA-Enterprise)
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
192.168.0.1
45. This NPS template stores remote RADIUS servers.
End-to-end protection
gpupdate - net stop iphlpsvc - and net start iphlpsvc
certificate
Remote RADIUS Servers
46. If you have existing RADIUS servers and you need a layer of abstraction between the access points and the RADIUS servers - or if you need to submit requests to different RADIUS servers based on specific criteria - you can configure Win Server 2008 or
WPA-EAP (also known as WPA-Enterprise)
client
Network Policy Server (NPS)
RADIUS proxy
47. If your DirectAccess server is connected to the IPv6 Internet - allow the following types of packets:
Computer only
Protocol 50 - inbound and outbound - UDP destination port 500 inbound - UDP source port 500 outbound - UDP destination port 4500 inbound - UDP source port 4500 outbound - ICMPv6 - inbound and outbound
Microsoft: Secured Password (EAP-MS CHAP v2)
end-to-edge protection and end-to-end protection
48. You can choose from two different DirectAccess connection types: ______.
end-to-edge protection and end-to-end protection
Application servers and network infrastructure
IPsec
Datacenter
49. To configure a DirectAccess client - run the following three commands: ______.
gpupdate - net stop iphlpsvc - and net start iphlpsvc
Standard
Guest
-d
50. Using ______ encapsulation allows SSTP to traverse many firewalls - NATs - and proxy servers that would cause PPTP and L2TP to fail.
IPsec
Web
Remote RADIUS Servers
HTTP
