单项选择题
Your company consists of a single Active Directory domain that is configured in Windows 2000 native mode. All servers run Windows Server 2003 Service Pack 2 (SP2). You deploy a Routing and Remote Access server to provide VPN access to the network.You need to ensure that only members of a group named Sales can access the network through the VPN. The solution must minimize the administrative effort required to manage remote access.
What should you do?()
A.Allow dial-in access for the user accounts of all Sales group members.
B.Deny dial-in access for the user accounts of all users except the Sales group members.
C.Create a remote access policy and assign the Allow - Remote Access permission. Add the Windows-Groups condition and specify the Sales group.
D.Create a remote access policy and assign the Deny - Remote Access permission. Add the Windows-Groups condition and specify all Active Directory groups except for Sales.
相关考题
-
多项选择题
YournetworkconsistsofasingleActiveDirectorydomain.AllserversrunWindowsServer2003ServicePack2(SP2).YouhaveaVPNservernamedServer1.YouhaveanInternetAuthenticationService(IAS)servernamedServer2.YouneedtoensurethatallVPNconnectionstoServer1areauthenticatedbyServer2.Whichtwoactionsshouldyouperform?()
A.From the Internet Authentication Service snap-in on Server2, create a new RADIUS client.
B.From the Internet Authentication Service snap-in on Server2, create a new remote access policy.
C.From the Routing and Remote Access snap-in, configure Server1 to use RADIUS accounting.
D.From the Routing and Remote Access snap-in, configure Server1 to use RADIUS authentication. -
单项选择题
YournetworkconsistsofasingleActiveDirectorydomain.TheremoteaccesspermissionforallusersissettoControlaccessthroughRemoteAccessPolicy.YouhaveaVPNservernamedServer1thatrunsWindowsServer2003ServicePack2(SP2).ThecurrentconfigurationallowsallauthenticateduserstoestablishVPNconnectionstoServer1.YoucreateaglobalgroupnamedGroup1.YouneedtopreventallmembersofGroup1fromestablishingVPNconnectionstoServer1.Whatshouldyoudo?()
A.From the local computer policy on Server1, modify the Account Policies settings.
B.From Active Directory Users and Computers, modify the Security settings of Group1.
C.From the Routing and Remote Access snap-in, create a new remote access policy.
D.From the Routing and Remote Access snap-in, open the properties of Server1 and modify the security options. -
单项选择题
ouhaveaserverthatrunsWindowsServer2003ServicePack2(SP2).RoutingandRemoteAccessisenabledandtheserverisconfiguredasaremoteaccessserver.YouneedtoconfiguretheservertosupportonlytheMS-CHAPv2authenticationprotocolforremoteaccess authentication.WhatshouldyoudofromtheRoutingandRemoteAccesssnap-in?()
A.Configure the port properties.
B.Create and configure a new demand-dial interface.
C.From the server’s properties, modify the security options.
D.From the Connections to Microsoft Routing and Remote Access Server policy, add a new condition.
