Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

MCSA 70-741 > NPS/RADIUS > Flashcards

NPS/RADIUS Flashcards

1
Q

What are two policies found within the framework of the NPS that governs whether or not a client gets access to the network?

A

Connection Request Policies and Network Policies

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What does RADIUS stand for?

A

Remote Access Dial-In User Service.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is the difference between Connection Request Policies and Network Policies?

A

Connection Request Policies determine where a client’s authentication takes place, e.g., RADIUS server or locally.

Network Policies provides authorization to allow the VPN traffic.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Even if the Network Policy Server role is not installed, a “lite” version of the NPS is installed with Remote Access. True or False?

A

True.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Within the Connection Request Policies, the processing order is determined numerically starting with the lowest numbers. True or False?

A

True.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Using the Routing and Remote Access tool, which policy can be configured?

A

Network policies.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which tab within the properties of a Connection Request policy, configures where authentication will take place for VPN clients?

A

Settings tab.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

When viewing the Connection Request Policy properties, which tab provides the option to enable or disable the policy?

A

Overview tab.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Once a network policy is matched, no other network policies are considered. True or False?

A

True.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

How do you alter the order of Network Policies within the Network Policies list?

A

Right click on the policy and select “Move Up or Move Down”.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Within a user’s account, what are their Dial-In properties set to by default?

A

Control access through NPS Network Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

A Network Policy can override a user’s Dial-In permissions if the proper box is checked within the Network Policies Overview tab. True or False?

A

True.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Which role installs the Network Policy Server tool and turns a server into a NPS server?

A

Network Policy Server.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

How do you configure a RADIUS server?

A
  1. Install the Network Policy and Access Services role
  2. Within the NPS tool, utilize the Getting Started screen and choose, from the drop down list, what your going to be using the RADIUS server for (VPN, wireless, or wired connections).
  3. For VPN connections, you’ll use the Configure VPN or Dial-Up Wizard.

As a result of the wizard, you’ll have created both Connection Request Policies and Network Policies for that connection (VPN/Dial-Up).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

How do you configure a RAS server to forward authentication requests to a centralized RADIUS server?

A
  1. Navigate to: RAS server > NPS tool > Connection Request Polices > R-Click on policy > Settings tab > Authentication
  2. Click on “New” (to create a new Security group for our RADIUS servers) and add each RADIUS server to the group.
  3. Select the “Forward requests to the following remote RADIUS server group for authentication” radio button.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What filter in Wireshark will only show RADIUS packets?

A

RADIUS (for the RADIUS protocol)

17
Q

The Network Access Server (NAS) or Remote Access Server (RAS) can forward authentication requests over to a centralized RADIUS server through a properly configured Connection Request Policy. True or False?

A

True.

18
Q

When using a connection request policy to forward authentication requests to a remote RADIUS server group, the RADIUS server will be used for the network policy for that connection. True or False?

A

True.

19
Q

What is a RADIUS proxy?

A

The middleman between the RADIUS server and the client.

20
Q

From the perspective of a device using a RADIUS proxy, the proxy appears as a RADIUS server. True or False?

A

True.

21
Q

By inserting a RADIUS proxy between the clients and the servers, it could help with a more even distribution of authentication requests to the actual servers. True or False?

A

True.

22
Q

RADIUS servers see the RADIUS proxies as _____.

A

Clients.

23
Q

How do we configure RADIUS proxies?

A
  1. On the backend RADIUS server, navigate to NPS tool > RADIUS clients. Configure the RADIUS server to listen only for the IPs of the servers acting as RADIUS proxies.
  2. On the RADIUS proxy, navigate to NPS tool > RADIUS Clients. Add the RADIUS client to the list by inputting their IP Address and the shared password.
  3. Still within the NPS tool, add the RADIUS server group containing the RADIUS servers to the list in “Remote RADIUS Server Groups”. Each server will need to have the shared secret, IP Address, and optional load balancing settings configured to be added to the group.
  4. On the proxy, configure it to forward authentication requests to the RADIUS server group by creating/editing a Connection Request Policy and, within the Authentication setting of the Settings tab, select the “Forward requests to the following remote RADIUS server group for authentication” radio button.
  5. On the RADIUS client, navigate to the NPS tool > Remote RADIUS Server Groups > Add/Edit a RADIUS server group to point to the IP Address of the RADIUS proxy.
24
Q

What is the difference between Authentication, Authorization, and Accounting?

A

Authentication is defining who someone is.

Authorization is about what their authorized to do.

Accounting defines what they did.

25
Q

Where is the default log file location?

A

C:\Windows\System32\LogFiles

26
Q

How do you configure a RADIUS client to forward accounting data to the RADIUS server?

A
  1. From the RADIUS client, within the NPS tool. Navigate to Connection Request Policies > Edit existing policy > Settings > Accounting.
  2. Check the box that says “Forward accounting requests to this remote server group”.
27
Q

If a RAS server is sending accounting records to a centralized RADIUS server, it MUST also use that same server for authentication request processing as well. True or False?

A

False.

28
Q

To send accounting records to a separate RADIUS server, what is modified on a RADIUS client?

A

Connection Request Policy.

MCSA 70-741 (21 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions