CompTIA
Exam Vouchers
Save money on CompTIA exams
| Question of the day
Sign up to receive
interactive practice questions
for MCSE, CompTIA
Cisco and other exams
| TestKing
Get MCSE, MCSD, CCNA, CCNP,A+, N+ and many more | * ExamSheets *
Guide for Success!
Actual Questions & Answers
MCSE, MCSD, A+ ,CCNA, CCNP
Oracle 8i, Oracle 9i Online practice tests
Certification sites Online university Online college Online education Distance learning Software forum Server administration forum Programming resources
|
|  |
| Author |
Remote access policies
|
seastwood
Junior Member
M
Registered: Sep 2001
Location: Auckland
Country: New Zealand (Aotearoa)
State:
Certifications: A+, CCA, MCP NT4, MSCA & MCSE 2000
Working on: MCSE 2003, CCA Metaframe XP
Total Posts: 29
|
|
 Remote access policies
I have a few questions.
1. Does anyone know of a good online resource explaining remote access policies?
2. Can anyone explain how to answer the following question?
Your company has branch offices in London and San Francisco. Branch offices will support their own routing and remote access server. To centralize admin you implement a RADIUS server. You remove the default remote access policy. You need to implement one company policy to require all dial-up communications to use 40-bit encryption. The network requires secure communications. You want to accomplish these goals using the least amount of administrative effort. What should you do? (Choose 2)
A. Enable the Server IPSec policy on the RADIUS server
B. Create one remote access policy on the RADIUS server
C. Enable the Secure Server IPSec policy on the RADIUS server
D. Set encryption to Basic for the remote access policy or policies.
E. Set encryption to Strong for the remote access policy or policies.
F. Create one remote access policy on each of the Routing and Remote access servers.
Thanks
Sean
Report this post to a moderator
|
|
 12-10-02 01:03 AM
|
|
freak
Moderator
M
Registered: Aug 2000
Location:
Country: USA
State:
Certifications: MA, M.Ed., Net+,I-Net+, Security+, CEH, CEI, CCA, CCNA, MCP+I, MCSA, MCSE NT 4.0, MCSE 2000, MCT
Working on: MCSE 2K3, Linux+, CISSP
Total Posts: 9688
|
|
read the Win2K help files on IAS -- MS' RADIUS server. Your answers are all there.
__________________
Freak, MA, M.Ed., Net+,I-Net+, Security+, CEH, CEI, CCA, CCNA, MCP+I, MCSA, MCSE NT, MCSE 2K, MCT
iCertify dot net: Free Forum, quizzes, study guides...
FreakNotes.com: free subnetting, DHCP, Network Security study guides! Also 120-page Security+ book and 100+ page Network+ book!
InfoSecWeb.com
Report this post to a moderator
|
|
|
12-10-02 02:12 AM
|
|
Slinky
Junior Member
Registered: Aug 2000
Location: 35° 24' N 97° 36' W
Country: US of A
State:
Certifications: A+, N+, MCSA
Working on: MCSE
Total Posts: 2009
|
|
|
I recommend reading the help files also, but to answer your question you will need to do B & D. You'll want to do B because RADIUS is all about centralized administration, and reating policys on every domain controller isn't very centralized, is it?  Basic encryption will give you a 40-bit strength, strong will be 56-bit and strongest will be 128-bit. IPSec is out the window because it can use either DES (56-bit) or 3DES both of which are stronger than basic.
Report this post to a moderator
|
|
|
12-10-02 03:27 AM
|
|
Spid
Moderator
M
Registered: Oct 2000
Location: Cleveland
Country: United States
State:
Certifications: B.S. CIS, Net+, MCSA, MCSE NT4, MCSE Win2K
Working on: avoiding resume' generating events
Total Posts: 4096
|
|
quote:
Originally posted by Slinky
I recommend reading the help files also, but to answer your question you will need to do B & D. You'll want to do B because RADIUS is all about centralized administration, and reating policys on every domain controller isn't very centralized, is it? Basic encryption will give you a 40-bit strength, strong will be 56-bit and strongest will be 128-bit. IPSec is out the window because it can use either DES (56-bit) or 3DES both of which are stronger than basic.
Yup. RADIUS is for centralized administration of RAS and Basic encryption is 40 Bit. B and D are your answers as Slinky stated. 
__________________
"I was planning to take over the world, but got distracted by something sparkly..."
Report this post to a moderator
|
|
|
12-10-02 06:21 AM
|
|
Kidvegas19
Member
Registered: Sep 2002
Location:
Country: United States
State:
Certifications: A+, 70-210, 215, The Beast
Working on: MCSE
Total Posts: 61
|
|
|
Re: Remote access policies
quote:
Originally posted by seastwood
You need to implement one company policy to require all dial-up communications to use 40-bit encryption. The network requires secure communications.
quote:
Originally posted by Slinky
IPSec is out the window because it can use either DES (56-bit) or 3DES both of which are stronger than basic.
Interesting factoid: There is a one line special note in my training kit that reads "For dial-up networking connections, Windows 2000 uses MPPE"
Hmmmm... missed that the first 127 times I went over that page. I like how Slinky reasoned it out better IMHO.
__________________
How long do you have to be a member before you get assigned a really cool saying to post here?
Report this post to a moderator
|
|
|
12-11-02 06:06 AM
|
|
Slinky
Junior Member
Registered: Aug 2000
Location: 35° 24' N 97° 36' W
Country: US of A
State:
Certifications: A+, N+, MCSA
Working on: MCSE
Total Posts: 2009
|
|
|
|
12-11-02 02:09 PM
|
|
|
Click here for list of 70-216
study guides
MCSE exam notes
70-216 exam details
Forum Rules:
Who Can Read The Forum? Any registered user or guest.
Who Can Post New Topics? Any registered user.
Who Can Post Replies? Any registered user.
Changes: Messages can be edited by their author.
Posts: HTML code is OFF. Smilies are ON. vB code is ON. [IMG] code is ON. |
|
ExamNotes forum archive
|
