C10 - Managing Security Flashcards
Bitlocker encrypts the entire Windows volume. T/F
True
NAP stands for Network Access Policy. T/F
False, Network Access Protection
Windows Firewall with Advanced Security allows rules based on port numbers. T/F
True
Encrypting File Services (EFS) provides hard drive encryption. T/F
False, provides folder level
Windows Firewall Exceptions lists the port numbers. T/F
False, lists the function only
Security Configuration Wizard allows you to _______ a server.
harden (or lock-down)
Windows Firewall Exceptions are for inbound or outbound traffic?
inbound
Which is not a Windows Firewall Profile? Public / private / domain / workgroup
workgroup
If you want to close an outbound port, then you need to use the ________ feature of Windows Firewall.
advanced
Encrypting File Services (EFS) uses _______ keys for encryption and decryption.
symmetric
You can do EFS via the command line with the ________ command.
cipher
EFS only encrypts _______ and __________.
folders / files
The difference between EFS and Bitlocker, is Bitlocker encrypts the ___________.
entire volume
To access the security risks on a server, run Microsoft’s
Baseline Security Analyzer
IPSec operates at what level of the OSI model?
3 - Network
If IPSec ran at layer 2 of the OSI model, then the router would need to _________ every packet.
inspect
If using IPSec between two networks, you should run _________ mode.
tunnel
If using IPSec between two hosts, you should run ___________ mode.
transport
If you want IPSec to secure and encrypt the packet, then you would run what security method?
Encapsulating Security Payload
If you want IPSec to secure and NOT encrypt the packet, then you would run what security method?
Authentication Header
Network Access Protection is not supported on an Windows OS before __________.
XP SP3
If using NAP and a client doesn’t meet the health standards, then NAP will ___________.
Prevent the client from connecting
