MCSE 70-299考試題庫由KillTest認證題庫網資深IT認證講師和MCSE產品專家結合PROMETRIC或VUE的真實70-299考試環境最新原題傾心打造。題庫覆蓋了當前最新的真實考題,並且全部附有正確答案,我們承諾題庫對MCSE 70-299(Implementing and Administering Security in a Microsoft Windows Server 2003 Network)考試原題完整覆蓋。70-299題庫助您輕鬆通過認證考試,一次不過全額退款。
MCSE 70-299(Implementing and Administering Security in a Microsoft Windows Server 2003 Network)考題由我們的資深IT認證講師和MCSE產品專家精心打造,包括了當前最新的真實70-299考題,全部附有正確答案。所有購買KillTest 70-299 題庫的客戶都將得到60天的免費升級服務,保證了客戶的一次通過率。KillTest IT認證題庫網助您一次通過MCSE 70-299考試。
You are a security administrator for your company. The network consists of a single Active Directory domain.
Servers run either Windows Server 2003 or Windows 2000 Server. All client computers run Windows 2000 Professional. The latest operating system service pack is installed on each computer.
Thirty Windows Server 2003 computers are members of the domain and function as file servers. Client computers access files on these file servers over the network by using the Server Message Block (SMB) protocol. You are concerned about the possible occurrence of man-in-the-middle attacks during SMB communications.
You need to ensure that SMB communications between the Windows Server 2003 file servers and the client computers are cryptographically signed. The file servers must not communicate with client computers if the client computers cannot sign SMB communications. Client computers must be able to use unsigned SMB
communications with all other computers in the domain.
What should you do to configure the file servers?
A. Apply a security template that enables the Microsoft network server: Digitally sign communications (always) setting.
B. Apply a security template that enables the Microsoft network server: Digitally sign communications (if client agrees) setting.
C. Apply a security template that enables the Domain member: Digitally sign secure channel data (when possible)setting.
D. Apply a security template that enables the Domain member: Digitally encrypt or sign secure channel data(always) setting.
Answer: A