| Author |
Tue W2K Professional Question of the Day
|
|
| wbafrank 2002-07-23, 2:12 pm |
|  And today's poser is ....
Q17. Alison has decided that she would like to use EFS to provide security on a set of folders on her Laptop. This laptop currently is set to dual boot between Windows Millennium and Windows 2000 Professional. It has three partitions:
C Drive 10 GB FAT32
D Drive 15 GB NTFS
E Drive 20 GB FAT32
C Drive is used exclusively for Windows Millennium, D Drive is used exclusively for Windows 2000 Professional. E Drive functions as a data store where data can be used by both operating systems.
In Windows 2000, Alison uses two accounts. Her normal login account which has standard user privileges and a separate administrator account when she needs to perform administrative functions.
Alison boots into Windows 2000 Professional and accesses the properties for the folders but is unable to locate the option to encrypt the folders. Which of the following is the most likely reason why Alison is unable to encrypt the specific folders on her machine?
A. Alison does not have access to the private keys for the folders she wishes to encrypt. A user wishing to encrypt files or folders must have the appropriate private keys for those files or folders.
B. Alison is attempting to encrypt a folder on a FAT32 volume. Any resources that you attempt to encrypt on a Windows 2000 Professional system must be located on an NTFS volume.
C. Alison's user account is not a member of the local Administrators group. Only users of the local Administrators group have the ability to encrypt resources on a machine running Windows 2000 Professional. Alison should log in with the Administrator account.
D. Alison's machine is configured to dual-boot between Windows 98 and Windows 2000 Professional. Machines running multiple operating systems do not support EFS.
E. Alison is trying to encrypt folders. In Windows 2000 you are only able to encrypt files because data is not actually contained within folders but rather within the files.
F. Because Alison's computer is not a member of a domain, it has no root Certificate Authority to issue certificates. Unless such an authority is trusted by the computer, it cannot use encryption certificates.
Good Luck .... see you tomorrow for the answer!! | |
| denis_baribeau 2002-07-23, 3:02 pm |
| This look like a ( B ) Long ?
Or gonna have to take reading lessons. | |
| CoffeeFreak 2002-07-23, 3:57 pm |
| HOly Geeze man, can you make them alittle longer??? HAHA | |
| lardie 2002-07-23, 6:23 pm |
| Nah he's doing it so that I get loads of pratice reading questions PROPERLY
And boy do I need it sheesh
Anyway back to the question.
The most likely answer is B | |
| Deja-vue 2002-07-23, 6:45 pm |
| B for me, too | |
| wbafrank 2002-07-23, 6:53 pm |
| quote:
Originally posted by CoffeeFreak HOly Geeze man, can you make them a little longer???
Just to put those of you who have not yet completed a MS exam in the picture this length of question is the norm!! It is when they start adding diagrams and you have to tile the question and diagram on a small monitor that it gets quite complicated .... trying to read the question and looking at the diagram at the same time can be quite off putting. | |
| rhagenson 2002-07-23, 7:04 pm |
| B. Alison is attempting to encrypt a folder on a FAT32 volume. Any resources that you attempt to encrypt on a Windows 2000 Professional system must be located on an NTFS volume. | |
| jombeewoof 2002-07-23, 8:15 pm |
| been slacking on the MCSE studies lately what with the new job and all but I'm gonna try to get back on track. might as well start here and now right
it's B
and correct me if I'm wrong but even the admin wouldn't be able to acces the encrypted files without taking ownership. | |
| Deja-vue 2002-07-23, 9:20 pm |
| and correct me if I'm wrong but even the admin wouldn't be able to acces the encrypted files without taking ownership. [/B][/QUOTE]
The Admin should be able to de-crypt any files using the RECOVERY AGENT.
just my two cents. | |
| jombeewoof 2002-07-23, 9:44 pm |
| the admin (on a stand alone) is the recovery agent and wouldn't he have to take ownership of the file/folder to decrypt it | |
| Deja-vue 2002-07-23, 10:02 pm |
| quote:
Originally posted by jombeewoof
the admin (on a stand alone) is the recovery agent and wouldn't he have to take ownership of the file/folder to decrypt it
no. | |
| robertmillar 2002-07-24, 11:21 am |
| B | |
|
|
| wbafrank 2002-07-24, 3:01 pm |
| quote:
Originally posted by wbafrank
And today's poser is ....
Q17. Alison has decided that she would like to use EFS to provide security on a set of folders on her Laptop. This laptop currently is set to dual boot between Windows Millennium and Windows 2000 Professional. It has three partitions:
C Drive 10 GB FAT32
D Drive 15 GB NTFS
E Drive 20 GB FAT32
C Drive is used exclusively for Windows Millennium, D Drive is used exclusively for Windows 2000 Professional. E Drive functions as a data store where data can be used by both operating systems. In Windows 2000, Alison uses two accounts. Her normal login account which has standard user privileges and a separate administrator account when she needs to perform administrative functions. Alison boots into Windows 2000 Professional and accesses the properties for the folders but is unable to locate the option to encrypt the folders. Which of the following is the most likely reason why Alison is unable to encrypt the specific folders on her machine?
A. Alison does not have access to the private keys for the folders she wishes to encrypt. A user wishing to encrypt files or folders must have the appropriate private keys for those files or folders.
B. Alison is attempting to encrypt a folder on a FAT32 volume. Any resources that you attempt to encrypt on a Windows 2000 Professional system must be located on an NTFS volume.
C. Alison's user account is not a member of the local Administrators group. Only users of the local Administrators group have the ability to encrypt resources on a machine running Windows 2000 Professional. Alison should log in with the Administrator account.
D. Alison's machine is configured to dual-boot between Windows 98 and Windows 2000 Professional. Machines running multiple operating systems do not support EFS.
E. Alison is trying to encrypt folders. In Windows 2000 you are only able to encrypt files because data is not actually contained within folders but rather within the files.
F. Because Alison's computer is not a member of a domain, it has no root Certificate Authority to issue certificates. Unless such an authority is trusted by the computer, it cannot use encryption certificates.
And the answer is ....
Correct Answer: B
Encrypting files and folders makes them unreadable to unauthorized users. If a user attempting to access an encrypted file has the private key to that file (that is, if the user either encrypted the file personally or is a registered recovery agent), the user will be able to open the file and work with it transparently as a normal document. A user without the private key to the file is denied access. Encryption is available only on NTFS drives. Encryption is available to "normal" users - you don't need administrative rights to use it. EFS is available even when you don't have access to a Certificate Authority. | |
| jmcuellar 2002-07-24, 3:03 pm |
|  "B" as in "B"ill Gates,
Tomorrow I am sitting my 70-210 exam, I need all the luck!!! | |
|
|
|
|
