Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

MCSA 70-411 > Configure a Network Policy Server and Infrastructure > Flashcards

Configure a Network Policy Server and Infrastructure Flashcards

1
Q

You need to ensure that client computers can only access two server if they are not running anti-virus software. You deploy a new server. What should you configure to support Computers connecting to the network using an 802.1x authenticating switch or LAN?

A
  • Install the Network Policy Server Role as a RADIUS Server
  • Add each 802.1x authenticating switch as a RADIUS client
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is a Network Policy?

A

Used to set conditions under which users are allowed or blocked from connecting to the network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is a Connection Request Policy?

A

Sets of conditions and settings that allow network administrators to designate which RADIUS servers perform the authenication and authorization of connection requests. (Want this to be lest restrictive)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What does the following PowerShell CmdLet Do?

Add-BgpCustomRoute

A

Adds custom routes to the BGP routing table.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What does the following PowerShell CmdLet Do?

Add-BgpPeer

A

Adds a new BGP peer.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What does the following PowerShell CmdLet Do?

Add-BgpRouteAggregate

A

Adds a new aggregate route for specific BGP routes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What does the following PowerShell CmdLet Do?

Add-BgpRouter

A

Adds a BGP router for the specified Tenant ID.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What does the following PowerShell CmdLet Do?

Add-BgpRoutingPolicy

A

Adds a BGP routing policy to the policy store.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What does the following PowerShell CmdLet Do?

Add-BgpRoutingPolicyForPeer

A

Adds BGP routing policies to BGP peers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What does the following PowerShell CmdLet Do?

Add-DAAppServer

A

Adds a new application server security group to the DirectAccess (DA) deployment, adds an application servers to an application server security group that is already part of the DirectAccess deployment, and adds or updates application server Group Policy Object (GPO) in a domain.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What does the following PowerShell CmdLet Do?

Add-DAClient

A

Adds one or more client computer security groups (SGs) to the DirectAccess (DA) deployment, adds one or more DA client Group Policy Objects (GPOs) in one or more domains, adds one or more SGs of down-level clients to the DA deployment in a multi-site deployment, or adds one or more down-level DA client GPOs in one or more domains in a multi-site deployment.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What does the following PowerShell CmdLet Do?

Add-DAClientDnsConfiguration

A

Adds the specified DNS suffix, DNS server addresses, or proxy server set to the Name Resolution Policy Table (NRPT).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What does the following PowerShell CmdLet Do?

Add-DAEntryPoint

A

Adds an entry point to a multi-site deployment.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What does the following PowerShell CmdLet Do?

Add-DAMgmtServer

A

Adds the specified Management servers to the DirectAccess (DA) deployment.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What does the following PowerShell CmdLet Do?

Add-RemoteAccessIpFilter

A

Adds filters for traffic that passes through an interface.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What does the following PowerShell CmdLet Do?

Add-RemoteAccessLoadBalancerNode

A

Adds a server to the load balancing cluster.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

What does the following PowerShell CmdLet Do?

Add-RemoteAccessRadius

A

Adds a new external RADIUS server for VPN authentication, accounting for DirectAccess (DA) and VPN, or one-time password (OTP) authentication for DA.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

What does the following PowerShell CmdLet Do?

Add-VpnIPAddressRange

A

Adds a new IPv4 address range from which IPv4 addresses can be assigned to VPN clients.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

What does the following PowerShell CmdLet Do?

Add-VpnS2SInterface

A

Create a S2S interface with the specified parameters.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

What does the following PowerShell CmdLet Do?

Add-VpnSstpProxyRule

A

Adds a tenant ID to gateway mapping.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

What does the following PowerShell CmdLet Do?

Clear-BgpRouteFlapDampening

A

Clears the route flap dampening information for the specified set of BGP routes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

What does the following PowerShell CmdLet Do?

Clear-RemoteAccessInboxAccountingStore

A

Clears the inbox accounting store for the specified time period.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

What does the following PowerShell CmdLet Do?

Clear-VpnS2SInterfaceStatistics

A

Clears statistics for a site-to-site (S2S) interface.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

What does the following PowerShell CmdLet Do?

Connect-VpnS2SInterface

A

Connects a site-to-site (S2S) interface that is currently not connected.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

What does the following PowerShell CmdLet Do?

Disable-BgpRouteFlapDampening

A

Disables route dampening for the flapping BGP routes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

What does the following PowerShell CmdLet Do?

Disable-DAMultiSite

A

Disables a multi-site deployment that contains a single entry point.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

What does the following PowerShell CmdLet Do?

Disable-DAOtpAuthentication

A

Disables one-time password (OTP) authentication for DirectAccess (DA) users.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

What does the following PowerShell CmdLet Do?

Disable-RemoteAccessRoutingDomain

A

Disables remote access functions for a routing domain.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

What does the following PowerShell CmdLet Do?

Disconnect-VpnS2SInterface

A

Disconnect a site-to-site (S2S) interface that is currently connected.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

What does the following PowerShell CmdLet Do?

Disconnect-VpnUser

A

Disconnects a VPN connection originated by a specific user or originating from a specific client computer.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
31
Q

What does the following PowerShell CmdLet Do?

Enable-BgpRouteFlapDampening

A

Enables route dampening for the flapping BGP routes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
32
Q

What does the following PowerShell CmdLet Do?

Enable-DAMultiSite

A

Enables and configures a multi-site deployment, and adds the first entry point.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
33
Q

What does the following PowerShell CmdLet Do?

Enable-DAOtpAuthentication

A

Enables and configures one-time password (OTP) authentication for DirectAccess (DA) users.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
34
Q

What does the following PowerShell CmdLet Do?

Enable-RemoteAccessRoutingDomain

A

Enables VPN or S2S functions for a specified routing domain.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
35
Q

What does the following PowerShell CmdLet Do?

Get-BgpCustomRoute

A

Gets custom route information from the BGP router.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
36
Q

What does the following PowerShell CmdLet Do?

Get-BgpPeer

A

Gets configuration information for BGP peers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
37
Q

What does the following PowerShell CmdLet Do?

Get-BgpRouteAggregate

A

Gets all the aggregate BGP routes configured by the administrator.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
38
Q

What does the following PowerShell CmdLet Do?

Get-BgpRouteFlapDampening

A

Retrieves the configuration of a BGP route dampening engine.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
39
Q

What does the following PowerShell CmdLet Do?

Get-BgpRouteInformation

A

Retrieves BGP route information for one or more network prefixes from the BGP routing table.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
40
Q

What does the following PowerShell CmdLet Do?

Get-BgpRouter

A

Gets configuration information for BGP routers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
41
Q

What does the following PowerShell CmdLet Do?

Get-BgpRoutingPolicy

A

Gets configuration information of BGP routing policies.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
42
Q

What does the following PowerShell CmdLet Do?

Get-BgpStatistics

A

Retrieves BGP peering-related message and route advertisement statistics.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
43
Q

What does the following PowerShell CmdLet Do?

Get-DAAppServer

A

Displays the list of application server security groups that are part of the DirectAccess (DA) deployment and the properties of the connections made to the application servers in the groups.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
44
Q

What does the following PowerShell CmdLet Do?

Get-DAClient

A

Displays the list of client security groups that are part of the DirectAccess (DA) deployment and the client properties.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
45
Q

What does the following PowerShell CmdLet Do?

Get-DAClientDnsConfiguration

A

Displays all the Name Resolution Policy Table (NRPT) entries and the local name resolution property.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
46
Q

What does the following PowerShell CmdLet Do?

Get-DAEntryPoint

A

Displays the settings for an entry point.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
47
Q

What does the following PowerShell CmdLet Do?

Get-DAEntryPointDC

A

Retrieves a list of entry points and the associated domain controllers (DCs).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
48
Q

What does the following PowerShell CmdLet Do?

Get-DAMgmtServer

A

Displays the configured management servers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
49
Q

What does the following PowerShell CmdLet Do?

Get-DAMultiSite

A

Retrieves global settings applied to all entry points in a multi-site deployment.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
50
Q

What does the following PowerShell CmdLet Do?

Get-DANetworkLocationServer

A

Displays the detailed Network Location Server (NLS) configuration.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
51
Q

What does the following PowerShell CmdLet Do?

Get-DAOtpAuthentication

A

Displays one-time password (OTP) authentication settings for DirectAccess (DA).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
52
Q

What does the following PowerShell CmdLet Do?

Get-DAServer

A

Displays the properties of the DirectAccess (DA) server.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
53
Q

What does the following PowerShell CmdLet Do?

Get-RemoteAccess

A

Displays the configuration of DirectAccess (DA) and VPN (both Remote Access VPN and site-to-site VPN).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
54
Q

What does the following PowerShell CmdLet Do?

Get-RemoteAccessAccounting

A

Displays the accounting configuration for Remote Access, such as the different types of accounting that are enabled and the respective configuration.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
55
Q

What does the following PowerShell CmdLet Do?

Get-RemoteAccessConfiguration

A

Retrieves the remote access configuration.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
56
Q

What does the following PowerShell CmdLet Do?

Get-RemoteAccessConnectionStatistics

A

Displays the statistics of real-time, currently active DirectAccess (DA) and VPN connections and the statistics of DA and VPN historical connections for a specified time duration.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
57
Q

What does the following PowerShell CmdLet Do?

Get-RemoteAccessConnectionStatisticsSummary

A

Displays the summary statistics of real-time, currently active DirectAccess (DA) and VPN connections and the summary statistics of DA and VPN historical connections for a specified time duration.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
58
Q

What does the following PowerShell CmdLet Do?

Get-RemoteAccessHealth

A

Obtains the current health of a RemoteAccess (RA) deployment.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
59
Q

What does the following PowerShell CmdLet Do?

Get-RemoteAccessIpFilter

A

Retrieves IP filters on an interface.

60
Q

What does the following PowerShell CmdLet Do?

Get-RemoteAccessLoadBalancer

A

Displays load balanced cluster settings.

61
Q

What does the following PowerShell CmdLet Do?

Get-RemoteAccessRadius

A

Displays the list of RADIUS servers including RADIUS for VPN authentication, RADIUS for DirectAccess (DA) and VPN Accounting, and RADIUS for one-time password (OTP) authentication for DA.

62
Q

What does the following PowerShell CmdLet Do?

Get-RemoteAccessRoutingDomain

A

Retrieves configuration information for a routing domain.

63
Q

What does the following PowerShell CmdLet Do?

Get-RemoteAccessUserActivity

A

Displays the resources accessed over the active DirectAccess (DA) and VPN connections and the resources accessed over historical DA and VPN connections.

64
Q

What does the following PowerShell CmdLet Do?

Get-RoutingProtocolPreference

A

Displays preferences for routing protocols.

65
Q

What does the following PowerShell CmdLet Do?

Get-VpnAuthProtocol

A

Retrieves authentication parameters configured on a VPN server.

66
Q

What does the following PowerShell CmdLet Do?

Get-VpnS2SInterface

A

Retrieves configuration details for a site-to-site (S2S) interface.

67
Q

What does the following PowerShell CmdLet Do?

Get-VpnS2SInterfaceStatistics

A

Retrieves statistics of a site-to-site (S2S) interface.

68
Q

What does the following PowerShell CmdLet Do?

Get-VpnServerConfiguration

A

Gets VPN server properties.

69
Q

What does the following PowerShell CmdLet Do?

Get-VpnSstpProxyRule

A

Retrieves the Tenant ID to gateway mapping.

70
Q

What does the following PowerShell CmdLet Do?

Install-RemoteAccess

A

Performs prerequisite checks for DirectAccess (DA) to ensure that it can be installed, installs DA for remote access (RA) (includes management of remote clients) or for management of remote clients only, installs VPN (both Remote Access VPN and site-to-site VPN), and installs Border Gateway Protocol Routing..

71
Q

What does the following PowerShell CmdLet Do?

New-VpnSstpProxyRule

A

Creates a tenant ID to gateway mapping object.

72
Q

What does the following PowerShell CmdLet Do?

New-VpnTrafficSelector

A

Creates a VPN Traffic selector object that configures the IKE traffic selector.

73
Q

What does the following PowerShell CmdLet Do?

Remove-BgpCustomRoute

A

Removes custom routes from the BGP router.

74
Q

What does the following PowerShell CmdLet Do?

Remove-BgpPeer

A

Removes BGP peers from a router.

75
Q

What does the following PowerShell CmdLet Do?

Remove-BgpRouteAggregate

A

Removes the set of specified aggregate BGP routes.

76
Q

What does the following PowerShell CmdLet Do?

Remove-BgpRouter

A

Removes a BGP router.

77
Q

What does the following PowerShell CmdLet Do?

Remove-BgpRoutingPolicy

A

Removes routing policies from the policy store.

78
Q

What does the following PowerShell CmdLet Do?

Remove-BgpRoutingPolicyForPeer

A

Removes routing policies from BGP peers.

79
Q

What does the following PowerShell CmdLet Do?

Remove-DAAppServer

A

Removes the specified list of application server security groups (SGs) from the DirectAccess (DA) deployment, removes the specified application servers from the specified DA application server SG,and removes the application server Group Policy Objects (GPOs) in the specified domains.

80
Q

What does the following PowerShell CmdLet Do?

Remove-DAClient

A

Removes one or more client computer security groups (SGs) from the DirectAccess (DA) deployment, removes one or more DA client Group Policy Objects (GPOs) from domains, removes one or more SGs of down-level clients (down-level clients can connect only to the specified site) from the DA deployment in a multi-site deployment, and removes one or more down-level DA client GPOs from domains in a multi-site deployment.

81
Q

What does the following PowerShell CmdLet Do?

Remove-DAClientDnsConfiguration

A

Removes the Name Resolution Policy Table (NRPT) entry corresponding to the specified DNS suffix from the NRPT.

82
Q

What does the following PowerShell CmdLet Do?

Remove-DAEntryPoint

A

Removes an entry point from a multi-site deployment.

83
Q

What does the following PowerShell CmdLet Do?

Remove-DAMgmtServer

A

Removes the specified management servers from the DirectAccess (DA) deployment.

84
Q

What does the following PowerShell CmdLet Do?

Remove-RemoteAccessIpFilter

A

Removes an IP filter for an interface.

85
Q

What does the following PowerShell CmdLet Do?

Remove-RemoteAccessLoadBalancerNode

A

Removes a server from the network load balancing (NLB) cluster.

86
Q

What does the following PowerShell CmdLet Do?

Remove-RemoteAccessRadius

A

Removes an external RADIUS server from being used for VPN authentication, accounting for both DirectAccess (DA) and VPN, or one-time password (OTP) authentication for DA.

87
Q

What does the following PowerShell CmdLet Do?

Remove-VpnIPAddressRange

A

Removes an existing IPv4 address range from the pool for IP address assignment.

88
Q

What does the following PowerShell CmdLet Do?

Remove-VpnS2SInterface

A

Removes a specified site-to-site (S2S) interface.

89
Q

What does the following PowerShell CmdLet Do?

Remove-VpnSstpProxyRule

A

Removes one or more tenant IDs to gateway mappings for SSTP proxy.

90
Q

What does the following PowerShell CmdLet Do?

Set-BgpPeer

A

Updates the configuration of the specified BGP peer.

91
Q

What does the following PowerShell CmdLet Do?

Set-BgpRouteAggregate

A

Updates the properties of specified aggregate BGP route.

92
Q

What does the following PowerShell CmdLet Do?

Set-BgpRouteFlapDampening

A

Configures the BGP route dampening engine.

93
Q

What does the following PowerShell CmdLet Do?

Set-BgpRouter

A

Updates the configuration of the local BGP router for the specified tenant ID.

94
Q

What does the following PowerShell CmdLet Do?

Set-BgpRoutingPolicy

A

Modifies a routing policy configuration.

95
Q

What does the following PowerShell CmdLet Do?

Set-BgpRoutingPolicyForPeer

A

Modifies BGP routing policies for BGP peers.

96
Q

What does the following PowerShell CmdLet Do?

Set-DAAppServerConnection

A

Configures the properties of the connection to application servers and the IPsec security traffic protection policies for the connection.

97
Q

What does the following PowerShell CmdLet Do?

Set-DAClient

A

Configures the properties related to a DirectAccess (DA) client.

98
Q

What does the following PowerShell CmdLet Do?

Set-DAClientDnsConfiguration

A

Configures the DNS server and proxy server addresses of a Name Resolution Policy Table (NRPT) entry and configures the local name resolution property.

99
Q

What does the following PowerShell CmdLet Do?

Set-DAEntryPoint

A

Configures settings for the entry point.

100
Q

What does the following PowerShell CmdLet Do?

Set-DAEntryPointDC

A

Modifies domain controller (DC) settings for the entry point.

101
Q

What does the following PowerShell CmdLet Do?

Set-DAMultiSite

A

Configures global settings for all entry points in a multi-site deployment.

102
Q

What does the following PowerShell CmdLet Do?

Set-DANetworkLocationServer

A

Configures the Network Location Server (NLS).

103
Q

What does the following PowerShell CmdLet Do?

Set-DAOtpAuthentication

A

Configures one-time password (OTP) authentication settings for DirectAccess (DA).

104
Q

What does the following PowerShell CmdLet Do?

Set-DAServer

A

Sets the properties specific to the DirectAccess (DA) server.

105
Q

What does the following PowerShell CmdLet Do?

Set-RemoteAccess

A

Modifies the configuration that is common to both DirectAccess (DA) and VPN such SSL certificate, Internal interface, and Internet interface.

106
Q

What does the following PowerShell CmdLet Do?

Set-RemoteAccessAccounting

A

Sets the enabled state for inbox and RADIUS accounting for both external RADIUS and Windows accounting and configures the settings when enabled.

107
Q

What does the following PowerShell CmdLet Do?

Set-RemoteAccessConfiguration

A

Modifies the configuration of a remote access role.

108
Q

What does the following PowerShell CmdLet Do?

Set-RemoteAccessInboxAccountingStore

A

Modifies the size of the inbox accounting store.

109
Q

What does the following PowerShell CmdLet Do?

Set-RemoteAccessIpFilter

A

Modifies IP filter action.

110
Q

What does the following PowerShell CmdLet Do?

Set-RemoteAccessLoadBalancer

A

Configures load balancing on the Remote Access (RA) server or the cluster server.

111
Q

What does the following PowerShell CmdLet Do?

Set-RemoteAccessRadius

A

Edits the properties associated with an external RADIUS server being used for VPN authentication, accounting for DirectAccess (DA) and VPN, and one-time password (OTP) authentication for DA.

112
Q

What does the following PowerShell CmdLet Do?

Set-RemoteAccessRoutingDomain

A

Configures S2S VPN settings for a routing domain configuration.

113
Q

What does the following PowerShell CmdLet Do?

Set-RoutingProtocolPreference

A

Configures preferences for routing protocols.

114
Q

What does the following PowerShell CmdLet Do?

Set-VpnAuthProtocol

A

Configures the authentication method for incoming site-to-site (S2S) VPN interfaces on a Routing and Remote Access (RRAS) server.

115
Q

What does the following PowerShell CmdLet Do?

Set-VpnAuthType

A

Sets the authentication type to be used for connecting to a VPN.

116
Q

What does the following PowerShell CmdLet Do?

Set-VpnIPAddressAssignment

A

Configures the IPv4 address assignment method or the IPv6 prefix for IPv6 address assignment.

117
Q

What does the following PowerShell CmdLet Do?

Set-VpnS2SInterface

A

Updates parameters for an S2S Interface.

118
Q

What does the following PowerShell CmdLet Do?

Set-VpnServerConfiguration

A

Updates S2S server parameters.

119
Q

What does the following PowerShell CmdLet Do?

Set-VpnSstpProxyRule

A

This cmdlet updates the tenant ID to gateway mapping for SSTP Proxy.

120
Q

What does the following PowerShell CmdLet Do?

Start-BgpPeer

A

Starts routing sessions for BGP peers.

121
Q

What does the following PowerShell CmdLet Do?

Stop-BgpPeer

A

Stops routing sessions for BGP peers.

122
Q

What does the following PowerShell CmdLet Do?

Uninstall-RemoteAccess

A

Uninstalls DirectAccess (DA) and VPN, both Remote Access (RA) VPN and site-to-site VPN.

123
Q

What does the following PowerShell CmdLet Do?

Update-DAMgmtServer

A

Updates the list of Management servers of the DirectAccess (DA) deployment.

124
Q

What does a Remote Access Policy do?

A

Define how connections form remote users are either authorized or rejected

125
Q

RADIUS - Stands for?

A

Remote Authentication Dial-In User Service

126
Q

What is Microsoft’s version of RADIUS?

A

NPS - Network Policy Server

127
Q

What is RADIUS Proxy (NPS) is used for?

A

It is used for authenicated users for Remote Access

128
Q

What configurations do you need to make to the NPS Server?

A
  • Register the server in Active Directory
  • Create a RADIUS Client (the VPN Server) -only needed for multi-servers
    *
129
Q

How do you set up a RADIUS Client in NPS?

A
  • Select Enable this RADIUS Client - if enabled
  • Enter the Name and Address
    • Friendly Name
    • IP Address or DNS Name
  • Select a Shared Secret Template or Create a Share Secret
130
Q

How are Connection Request Policies processed?

A

They are processed based on Processing Order. The lowest number gets applied first

131
Q

What network policies are created by default?

A

Both Disallow Access to Remote Access

  • Connections to the Server
  • Connections to other access servers
132
Q
  1. Where on the NPS Network Policies can you configure Multilink and Bandwidth Allocation?
A

On the Settings Tab:

Select Routing and Remote Access - Multilink and Bandwidth Allocation Protocol

133
Q

What settings can you modify in the NPS Network Policy - Multilink and Bandwidth Allocation Protocol - Multilink?

A

Specifying how you would like to handle multiple connections to the network:

  • Server Settings determine Multilink usage
  • Do not allow multilink connections
  • Specifiy Max number of ports allowed
134
Q

What settings can you modify in the NPS Network Policy - Multilink and Bandwidth Allocation Protocol - Bandwidth Allocation Protocol?

A

If the lines of a Multilink connection fall below the follwoing percentage of capacity for a period of time reduce the connection by one line:

  • Percentage of Capacity
  • Period of Time
135
Q

What settings can you modify on the NPS Network Policy, Settings tab, under encryption?

A

The strength of Encyption (starting with the strongest until the computer accepts one):

  • Basic Encryption
  • Strong Encryption
  • Strongest Encryption
  • No encryption
136
Q

What settings can you modify on the NPS Network Policy, Settings tab, under IP Settings?

A

This is to specify how the client IP address gets assigned:

  • Server must supply an IP Address
  • Client may request an IP Address
  • Server Settings determine IP Address assignment
  • Assign a static IPv4 address
137
Q

What settings can you modify on the NPS Network Policy, Settings tab, under IP Filters?

A
138
Q

How do you configure NPS Accounting?

A

Select how you want to log:

  • Log to a SQL DB
  • Log to a Text file
  • Log to a Text file and SQL DB
  • Log to a SQL DB and use text logging for fail over

Select informaiton that will be logged:

  • Accounting Requests
  • Authentication Requests
  • Periodic Accouting Status
  • Periodic Authentication Status

If log file: Where log is stored.

Logging Failure Action: Discard connections requests - Yes/No

139
Q

When Importing NPS Policies, what do you need to configure still?

A

You need to set up logging if you are using sql.

140
Q

What does the following PowerShell cmdlet do?

Export-NpsConfiguration

A

Exports settings from the NPS Server to a file

141
Q

What does the following PowerShell cmdlet do?

Import-NpsConfiguration

A

This command imports NPS settings from a file

142
Q

What are the different ways that the NAP process can be started?

A
  • DHCP
  • 802.1x
  • VPN
  • IPSec
  • Remote Desktop Services
143
Q

When specifiying a new Network Policy with a health policy for failing a Health Check do you want to deny the computer access to the network?

And Why?

A

No you want to allow.

This is so you can set up a remediation Server so that the computer can be compliant.

144
Q

Where would you set up to have a computer enter the remediation network?

A
  • In the newtwork Policy
  • In the Settings tab
    • Under NAP Enforcement
    • Select Allow Limited Access
145
Q

What do you need to set up in DHCP for NAP?

A
  1. In the DHCP Scope
    1. Select Policies
    2. Create a new policy
      1. Policy will be for User Class
      2. Value is default network access protection class
      3. Select if it can find any DNS resource records
      4. Select the DNS Domain Name (Add the restricted remediation network name)
  2. In the DHCP Scope Properties
    1. You need to select the Network Access Protection Tab
    2. Select Enable for this scope
    3. Enter the Policy Name
146
Q

What clients are able to use DirectAccess to connect to the closest physical access point?

A

Only Windows 8 or 8.1

147
Q

What are the following CMDs?

  1. djoin /provision
  2. djoin /RequestODJ
A
  1. creates the computer account metadata. The output of this command is a .txt file that includes a base-64 encoded blob.
  2. inserts the computer account metadata from the .txt file into the Windows directory of the destination computer.

MCSA 70-411 (6 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions