100%(1)1 out of 1 people found this document helpful
This preview shows page 8 - 10 out of 15 pages.
Routing and Remote Access service (RRAS) Windows Server 2008 R2 NPAS2 Site 3 NPS RRAS Windows Server 2008 R2 Security Configuration The relevant security settings for the domain are configured as shown in the following table. Target Policy Setting Call center users Logon hours Monday _ Friday, UTC-0 8:00 _ 18:00 Main office users Logon hours 24/7 All computers AppLocker \Windows Installer rules All MSI packages must be signed by using a trusted certificate Call center computers AppLocker \executable rules Allow all Microsoft Office 2003 applications The relevant network policies on the NPS servers and the RRAS servers are configured as shown in the following table. Network policy Setting Value WAP1 Conditions Windows group _ _ MargiesTravel \Wireless_ Access permissions Access granted Authentication methods EAP-MS-CHAP-v2 NAS port type Wireless _ IEEE 802.11 IP filters None WAP2 Conditions Certificate issued by CA3 Access permissions Access granted Authentication methods EAP-MS-CHAP-v2 NAS port type Wireless _ IEEE 802.11 IP filters Traffic is only allowed to the Internet
Certification Preparation Material Page | 9 All wireless access points are configured to use 802.1X and RADIUS authentication. All RADIUS authentication requests are sent to NPAS1 and NPAS2. User Information All client computers run Windows 7 Professional. Sales staff is located in the main office and uses portable computers. All portable computers are members of the MargiesTravel \Wireless group. Application Configuration Call center staff uses a custom application to book airline tickets. The application is packaged as an MSI file and is signed by using a code signing certificate that was issued by CA3. The application is published by using Group Policies. End of repeated scenario The company hires an additional 100 users. The users are unable to install the custom application. You need to ensure that the users can install the custom application. What should you do? A. Disable User Account Control (UAC). B. Add the users to the local Administrators group. C. Request that the application package be re-signed. D. Request that the user certificates be issued to the new users. Answer: C Question: 12 All client computers on your company network run Windows 7. A standard Windows 7 image is loaded on all new computers on the network. A department in your company purchases several tablet computers. Employees report that the pen interface does not work on the tablet computers. You need to ensure that employees can use the pen interface. What should you do? A. Turn on the Media Features. B. Turn on the Tablet PC Components. C. Start the WMI Performance Adapter service and set it to Automatic. D. Start the Human Interface Device Access service and set it to Automatic. Answer: B Question: 13 All client computers on your company network were recently migrated from Windows XP to Windows 7. Employees use Internet Explorer 8. Each time employees access a Web application, they are prompted to install an add-on. After each installation, the application restarts and prompts the employees to install the add-on again. You need to ensure