Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

MCSA 70-742 > Install and Configure AD CS > Flashcards

Install and Configure AD CS Flashcards

1
Q

How do you install Active Directory Certificate Services?

A

Through the Add Roles and Features wizard in Server Manager via the AD CS role.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the requirements to install an Active Directory Integrated CA?

A
  1. Must have AD CS role installed.
  2. Host must be domain-joined.
  3. User must be a member of Enterprise Admins group.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

How do you install an AD Integrated CA?

A
  1. Install AD CS role

2. Within AD CS Config wizard, choose Enterprise CA on CA Type screen.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the requirements to install a standalone CA?

A
  1. Must have AD CS role installed.

2. User must be a member of Local Administrator group

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

When setting a root and subordinate CA structure, which CA type is preferred, Enterprise or Standalone?

A

Standalone

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What management tool is used to manage CAs?

A

Certification Authority

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

How do you update the CRL?

A

Within CA tool, with the root CA selected, right click on Revoked Certificates and select All Tasks > Publish

A Publish CRL pop-up box will appear to create a new CRL, select New CRL > Ok

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

How do you install a subordinate CA?

A
  1. Install the AD CS role and CA Web Enrollment role service
  2. Within the AD CS Config wizard, specify Subordinate CA
  3. Move recently created Certificate request to a network share to be grabbed by Root CA server
  4. On Root CA server within AD CS, submit new certificate request and issue when complete
  5. Copy Issued Certificate to a file and place on network share to be reached by subordinate CA server
  6. Install Security Cert and CA Cert (from File Explorer and AD CS respectively)
  7. Create Public Key Infrastructure in a network share on the subordinate CA server
  8. Create Web Server utilizing IIS Manager
  9. Create forward lookup zone of web site (pki.domain.com)
  10. Within Certification Authority on subordinate CA server, start service
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How do you install Online Responder?

A

On a member server, install the AD CS Online Responder role

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

How do you implement administrative role separation?

A

Security groups can be assigned CA permissions within AD CS to fulfill role separation.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

How do you perform a back up of the CA?

A

Within Certification Authority, right click on CA server and select All Tasks > Back up CA

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

How do you perform a restore of the CA?

A

Within Certification Authority, right click on CA server and select All Tasks > Restore CA

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

MCSA 70-742 (12 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions