| Author |
how heavy is certificate services covered?
|
|
| greatgonzos 2002-02-04, 6:19 pm |
| I am getting set to take this beast in the next couple of weeks. Does the test cover much on the Certificate Services and related matter? Or will I be better off if I get a basic understanding and concentrate my focus on the heavy areas like DNS, RRAS, and DHCP? Any thoughts?? | |
| sebrojas 2002-02-04, 6:47 pm |
| Shit man, i would say that like 25% seems to be CA, another 25% is WINS/DNS, 25% seems to be RAS/DHCP/DHCP relay/BOOTP & the rest is mostly subnetting and easier questions. This is by the far the hardest MS exam. I was reading a study made by FASTTRAIN and the passing rate is close to 15%...most people take this exam over 3.4 times before passing it. Good luck, i'm taking mine in a couple of weeks too. | |
| cm2gj 2002-02-04, 11:25 pm |
| I fail the exam but i see in the forum that 70216 is a very hard exam so we need to recover all forces to study very hard and go to get the beast!!!!!!
good luck to everyone!!! | |
| jeff_j_black 2002-02-05, 5:12 am |
| Certificate sevices
Enterprise root
Enterprise subordinate
Stand alone root
Stand alone subordinate
Subordinates can only publish due to some root authority. They can provide support for heavy traffic. The root can be removed from the network and physically secured, for increased security.
Use enterprise when you are creating certificates that only support security within your enterprise. Its all about trust. If I hand you my cert right now, its meaningless because you don't know me and you don't know anyone who does. My cert is quite valid here at my home network, though.
Use stand alone when you are recieving a certificate from a recognizable authority. (Verasign, Thawte etc.) For there your ca will issue certs that anyone can verify the validity of, through the original authority.
Use code signing to let internet users verify that you activex (or whatever) is legit. (Stand alone)
Revoke (don't delete certs) Publish CRL. If your Root is kept offline for security reasons then you will have to manually publish.
CRL (Certificate Revocation List) is published automatically by a particular interval, but if you can't wait do it manually. | |
|
| Gonzo
I passed this last week and by god it was hard. I got hammered with DHCP DNS and RAS and Cert Services played quite a big part in mine but as I have seen in this forum and realise anyway that every exam is different.
I wouldn't advise that you pass on any subject really though a better understanding of DHCP DNS and RAS will help you as the questions I got on CA's etc were relatively straightforward and they always put in crap answers ...... eliminate the crap and you have more of a chance.
Good luck |
|
|
|