Question 1

The use of ____ in Windows Server 2008 enables you to standardize the working environment of clients and servers by setting policies in Active Directory.&#10;A) server policy&#10;B) user policy&#10;C) group policy&#10;D) machine policy

Accepted Answer

Group Policy in Windows Server 2008 allows administrators to manage and enforce settings for groups of users and computers in Active Directory. This enables standardization of the working environment and ensures policy compliance across the domain. The other options listed are not specific to this functionality.

Question 2

____ is a server role to complement the client applications that can take advantage of Rights Management Services safeguards.&#10;A) Active Directory Certificate Services&#10;B) Active Directory Lightweight Directory Services&#10;C) Active Directory Rights Management Services&#10;D) Active Directory User Management Services

Accepted Answer

Active Directory Rights Management Services is the server role that offers a safeguard for client applications by providing data protection and encryption services. Active Directory Certificate Services provide a certification authority, Active Directory Lightweight Directory Services offer a directory service, and Active Directory User Management Services offer user and group management. None of these roles provide the same level of data protection as Active Directory Rights Management Services.

Question 3

____ is an encryption technique that uses public and private keys along with a computer algorithm that relies on factoring large prime numbers.&#10;A) AES&#10;B) RSA&#10;C) DES&#10;D) Twofish

Accepted Answer

The encryption technique described in the question is RSA, which uses public and private keys and relies on factoring large prime numbers. AES, DES, and Twofish are also encryption techniques, but they do not rely on factoring large primes and do not use public and private keys in the same way as RSA.

Question 4

____ is a set of IP-based secure communications and encryption standards created through the Internet Engineering Task Force (IETF).&#10;A) IPsec&#10;B) PPTP&#10;C) DES&#10;D) AES

Accepted Answer

IPsec (Internet Protocol Security) is a set of IP-based secure communication protocols that provide encryption, authentication, and data integrity. It is a widely adopted standard created through the Internet Engineering Task Force (IETF), and it is used to secure internet communications, VPNs, and remote access connections. PPTP (Point-to-Point Tunneling Protocol) is an obsolete VPN protocol, DES (Data Encryption Standard) is an outdated encryption algorithm, and AES (Advanced Encryption Standard) is a popular encryption algorithm but not a complete set of secure communication protocols like IPsec.

Question 5

If a drive is protected using ____,no one can access information without proper authentication even if the drive has been stolen.&#10;A) BitLocker Drive Encryption&#10;B) BitLocker Drive Vault&#10;C) BitLocker System Encryption&#10;D) BitLocker Volume Encryption

Accepted Answer

BitLocker Drive Encryption is the feature of Windows operating system that encrypts the entire drive and protects the data from unauthorized access. It requires proper authentication before allowing access to the content of the drive even if the drive is stolen. BitLocker Drive Vault and BitLocker Volume Encryption are not valid options, and BitLocker System Encryption is a term that does not exist.

Question 6

A common password policy is to have ____ go into effect after five to 10 unsuccessful logon attempts.&#10;A) logout&#10;B) lockout&#10;C) reboot&#10;D) lock

Accepted Answer

Lockout policies are commonly used to prevent brute-force attacks on user accounts. After a certain number of failed login attempts, the user's account will be locked and they will no longer be able to attempt to log in. This can help prevent unauthorized access to the account.

Question 7

____ encryption is the standard deployed by the U.S.federal government and is intended to be more secure than DES.&#10;A) Advanced Encryption Standard&#10;B) Blowfish&#10;C) PGP&#10;D) RSA

Accepted Answer

The Advanced Encryption Standard (AES) is the standard deployed by the U.S. federal government and is intended to be more secure than DES. AES uses a symmetric key algorithm and is widely used in various applications, including online security, digital signatures, and secure email communication.

Question 8

IPsec policies for a domain can be managed through the ____.&#10;A) Default Domain Controller Policy&#10;B) Default Computer Policy&#10;C) Default Encryption Policy&#10;D) Default Domain Policy

Accepted Answer

The IPsec policies for a domain can be managed through the Default Domain Policy, which is applied to all computers and users within a domain. The other options (A, B, and C) either do not exist or are not directly related to IPsec policies.

Question 9

NAP cannot work in conjunction with 802.1X.

Accepted Answer

NAP (Network Access Protection) and 802.1X are both network access control methods, but can be used in conjunction with each other. 802.1X provides authentication at the port level, while NAP enforces compliance with network health policies before granting access to the network. Together, they can provide a more comprehensive network access control solution.

Question 10

DHCP is an extremely secure protocol.

Accepted Answer

DHCP is not an extremely secure protocol. It uses clear text communication, which means that anyone can inspect and manipulate the data being transmitted. There are security measures that can be put in place, such as DHCP snooping and DHCPv6 security extensions, but these are not always implemented by default and may require additional configuration.

Question 11

The first line of defense in Windows Server 2008 is ____ security.&#10;A) user&#10;B) token&#10;C) file&#10;D) password

Accepted Answer

The answer of The first line of defense in Windows...

Question 12

____ applications involves setting up software through a group policy so that the application is available for users to install from a central application distribution server,such as through the Add/Remove Programs capability or an installation window via the user's desktop.

A) Publishing
B) Packaging
C) Licensing
D) Assigning

Accepted Answer

The answer of ____ applications involves setting up software through...

Question 13

In Kerberos security,the permanent ticket,called a ____ ticket,is good for the duration of a logon session.&#10;A) granting&#10;B) connection&#10;C) service&#10;D) session

Accepted Answer

The answer of In Kerberos security,the permanent ticket,called a ____...

Question 14

When an IPsec communication begins between two computers,the computers first exchange ____ to authenticate the receiver and sender.&#10;A) keys&#10;B) certificates&#10;C) passwords&#10;D) tickets

Accepted Answer

The answer of When an IPsec communication begins between two...

Question 15

NAT is not a good security technique because internal IP addresses may be seen by users in the outside world.

Accepted Answer

The answer of NAT is not a good security technique...

Question 16

____ are security rights developed by Microsoft to provide security for documents,spreadsheets,e-mail,and other types of files created by applications.&#10;A) Client Management Services&#10;B) Rights Configuration Services&#10;C) Rights Management Services&#10;D) Client Rights Services

Accepted Answer

The answer of ____ are security rights developed by Microsoft...

Question 17

UAC means there is little chance that the installation can destabilize the operating system,because the installation takes place only with the proper authorization and in standard user mode.

Accepted Answer

The answer of UAC means there is little chance that...

Question 18

User ____ enable an account or group to perform predefined tasks.&#10;A) passwords&#10;B) roles&#10;C) services&#10;D) rights

Accepted Answer

The answer of User ____ enable an account or group...

Question 19

For a &#34;strong password&#34; Microsoft recommends a minimum of ____ characters.&#10;A) five&#10;B) six&#10;C) seven&#10;D) eight

Accepted Answer

The answer of For a &#34;strong password&#34; Microsoft recommends a...

Question 20

Computers in the DMZ generally have more security defenses via routers and firewalls.

Accepted Answer

The answer of Computers in the DMZ generally have more...

Question 21

In Windows Server 2008,____ ensures secure access and communication when Terminal Services are used over the Internet.&#10;A) TS RemoteApp&#10;B) TS Server&#10;C) TS Gateway&#10;D) TS Manager

Accepted Answer

The answer of In Windows Server 2008,____ ensures secure access...

Question 22

One reason for developing ____________________ was to enable the use of more globally available IP addresses.

Accepted Answer

The answer of One reason for developing ____________________ was to...

Question 23

Match each term with the correct statement below.
a.kerberos security
b.NAP
c.TPM
d.exceptions
e.UAC
f.demilitarized zone
g.BitLocker Drive Encryption
h.802.1X
i.GPO
A wired and wireless authentication approach offered by the IEEE and is supported in modern Windows operating systems including Windows XP,Windows Vista,Windows 7,and Windows Server 2003/2008

Accepted Answer

The answer of Match each term with the correct statement...

Question 24

Match each term with the correct statement below.
a.kerberos security
b.NAP
c.TPM
d.exceptions
e.UAC
f.demilitarized zone
g.BitLocker Drive Encryption
h.802.1X
i.GPO
A security specification for a hardware device that can be used to secure information on a different hardware device,such as a hard drive

Accepted Answer

The answer of Match each term with the correct statement...

Question 25

To determine compliance,NAP uses a server that is a ____.&#10;A) Health Management Authority&#10;B) Health Monitoring Authority&#10;C) Health Policy Authority&#10;D) Health Registration Authority

Accepted Answer

The answer of To determine compliance,NAP uses a server that...

Question 26

Match each term with the correct statement below.
a.kerberos security
b.NAP
c.TPM
d.exceptions
e.UAC
f.demilitarized zone
g.BitLocker Drive Encryption
h.802.1X
i.GPO
A portion of a network that is between two networks,such as between a private network and the Internet

Accepted Answer

The answer of Match each term with the correct statement...

Question 27

TS Gateway combined with NAP uses the ____________________ server to ensure that a client is compliant with the health and security policies on a network.

Accepted Answer

The answer of TS Gateway combined with NAP uses the...

Question 28

____________________ policies are a subset of individual policies within a larger group policy for a site,domain,OU,or local computer.

Accepted Answer

The answer of ____________________ policies are a subset of individual...

Question 29

In terms of NAP,&#34;____&#34; refers to ensuring that all authenticated computers on the network have the most recent updates and comply with network security policies.&#10;A) healthy&#10;B) examined&#10;C) complete&#10;D) managed

Accepted Answer

The answer of In terms of NAP,&#34;____&#34; refers to ensuring...

Question 30

Match each term with the correct statement below.
a.kerberos security
b.NAP
c.TPM
d.exceptions
e.UAC
f.demilitarized zone
g.BitLocker Drive Encryption
h.802.1X
i.GPO
Involves the use of tickets that are exchanged between the client who requests logon and network services access,and the server or Active Directory that grants access.

Accepted Answer

The answer of Match each term with the correct statement...

Question 31

Through ____________________,NAP allows computers that are considered noncompliant to access the local network.

Accepted Answer

The answer of Through ____________________,NAP allows computers that are considered...

Question 32

Match each term with the correct statement below.
a.kerberos security
b.NAP
c.TPM
d.exceptions
e.UAC
f.demilitarized zone
g.BitLocker Drive Encryption
h.802.1X
i.GPO
Programs that you choose to allow through the firewall in both directions

فتح الحزمة

افتح القفل للوصول البطاقات البالغ عددها 50 في هذه المجموعة.

فتح الحزمة

k this deck

Accepted Answer

The answer of Match each term with the correct statement...

Question 33

____ is used to make the implementation and troubleshooting of group policies much simpler for an administrator.&#10;A) Policy Evaluation&#10;B) Effective Policy&#10;C) Resultant Set of Policy&#10;D) Merged Set of Policy

Accepted Answer

The answer of ____ is used to make the implementation...

Question 34

Match each term with the correct statement below.
a.kerberos security
b.NAP
c.TPM
d.exceptions
e.UAC
f.demilitarized zone
g.BitLocker Drive Encryption
h.802.1X
i.GPO
A wired and wireless authentication approach offered by the IEEE and is supported in modern Windows operating systems including Windows XP,Windows Vista,Windows 7,and Windows Server 2003/2008

Accepted Answer

The answer of Match each term with the correct statement...

Question 35

Using NAP,all network clients must contact the HRA server and submit information about their security policy status and recent upgrades-called a ____.&#10;A) Statement of Service&#10;B) Statement of Health&#10;C) Statement of Availability&#10;D) Statement of Function

Accepted Answer

The answer of Using NAP,all network clients must contact the...

Question 36

____ applications means an application is automatically represented on the user's desktop,for example as a Start menu option or as an icon on the desktop,and which initially is really a link to the central application distribution server.

A) Packaging
B) Publishing
C) Defining
D) Assigning

Accepted Answer

The answer of ____ applications means an application is automatically...

Question 37

A(n)____________________ server is one that can provide updates and security policy changes to the client to bring that client into compliance.

Accepted Answer

The answer of A(n)____________________ server is one that can provide...

Question 38

Match each term with the correct statement below.
a.kerberos security
b.NAP
c.TPM
d.exceptions
e.UAC
f.demilitarized zone
g.BitLocker Drive Encryption
h.802.1X
i.GPO
An Active Directory object that contains group policy settings (a set of group policies)for a site,domain,OU,or local computer

Accepted Answer

The answer of Match each term with the correct statement...

Question 39

Match each term with the correct statement below.
a.kerberos security
b.NAP
c.TPM
d.exceptions
e.UAC
f.demilitarized zone
g.BitLocker Drive Encryption
h.802.1X
i.GPO
Involves the use of tickets that are exchanged between the client who requests logon and network services access,and the server or Active Directory that grants access.

Accepted Answer

The answer of Match each term with the correct statement...

Question 40

Match each term with the correct statement below.
a.kerberos security
b.NAP
c.TPM
d.exceptions
e.UAC
f.demilitarized zone
g.BitLocker Drive Encryption
h.802.1X
i.GPO
A portion of a network that is between two networks,such as between a private network and the Internet

Accepted Answer

The answer of Match each term with the correct statement...

Question 41

List two ways that NAP can be used to keep a network healthy.

Accepted Answer

The answer of List two ways that NAP can be...

Question 42

What happens after the HRA server validates a client's SoH?

Accepted Answer

The answer of What happens after the HRA server validates...

Question 43

List two areas where NAP can be used to ensure compliance with network security policies.

Accepted Answer

The answer of List two areas where NAP can be...

Question 44

List and describe two specific password security options that you can configure in Windows Server 2008.

Accepted Answer

The answer of List and describe two specific password security...

Question 45

Discuss establishing account policies.

Accepted Answer

The answer of Discuss establishing account policies....

Question 46

Discuss why NAT is a good security technique.

Accepted Answer

The answer of Discuss why NAT is a good security...

Question 47

Explain the purpose of TS Gateway.

Accepted Answer

The answer of Explain the purpose of TS Gateway....

Question 48

List the items issued by DHCP with NAP if a client is fully compliant,and if the client is noncompliant.

Accepted Answer

The answer of List the items issued by DHCP with...

Question 49

Discuss the two important functions that NAT serves.

Accepted Answer

The answer of Discuss the two important functions that NAT...

Question 50

Discuss the IP addresses that NAT uses.

Accepted Answer

The answer of Discuss the IP addresses that NAT uses....

Deck 13: Securing Windows Server 2008