You work as a network administrator at Bilco Engineering, Inc. The Bilco
Engineering, Inc. employees require connecting to the Bilco Engineering, Inc.
network using wireless technology. You have received instruction to start the design
of a Security strategy for the wireless network at all resort locations.
What should you do?
Leading the way in IT testing and certification tools, www.certifyme.com
- 98 -
A. All wireless access points should be configured to require the Wired Equivalent
Privacy (WEP) protocol for all connections.350-001 A Group Policy object (GPO) should be
used to distribute the WEP keys to all computers in the domain.
B. IPSec policies should be established on all company servers to request encryption
from all computers that connect from the wireless IP networks.
C. On a domain controller Internet Authentication Service (IAS) should be installed.
Configure The wireless access points should be configured to require IEEE 802.1x
authentication
D. The wireless access points should be connected to a dedicated subnet.640-802 The subnet
should be allowed direct access to the Internet, but not to the company network. The
Bilco Engineering, Inc. users should be required to establish a VPN to access
company resources.
Answer: D
Explanation: In the scenario you should remember that when a user is allowed
access to the Bilco Engineering, Inc. organization you should make use of a VPN
account. If they connect through the network firewall, then TCP Port 3389 should
be opened if the users connect through a network firewall, which may be considered
a security risk.VCP-310 This will help Bilco Engineering, Inc.:
1. The need for Wireless networking capability must be made to keep up with the upscale
market. The consumers will be able to make wireless Internet connections.
2. All the Bilco Engineering, Inc. retail offices have one file server and are connected by
VPN's across the Internet.
3. One or more Windows Server 2003 computer that is configured as an infrastructure
server to handle DNS, DHCP, and any VPN connections are required at each retail
office.
Incorrect answers:
A: In the scenario you should remember that the WEP encryption protocol has
flaws and that several software applications exists which are capable of easily
cracking WEP encryption.
B: This option should not be used in the scenario because the option will not help you
achieve your scenario objective.
C: In the scenario you do not require using the 802.1X standard as Bilco
Engineering, Inc. makes use of VPN's.
Reference:
Lisa Donald, Suzan Sage London & James Chellis, MCSA/MCSE: Windows Server
2003 Environment Management and Maintenance Study Guide, p. 557
Leading the way in IT testing and certification tools, www.certifyme.com
- 99 -
Elias N. Khnaser, Susan Snedak, Chris Peiris and Rob Amini, MCSE Designing Security
for a Windows Server 2003 Network Exam 70-298 Study Guide, Chapter 9, p. 325
Subscribe to:
Post Comments (Atom)
0 comments:
Post a Comment