Configure a Network Policy Server infrastructure - Administering Windows Server 2012 R2

Information Technology Reference

In-Depth Information

3. You need to configure remediation server groups to support remediating your current

users who are not infected but just noncompliant. You need to have a separate policy

that will lock out a user who is infected.

You probably want to start by creating the policies and setting them to monitor mode

only, allowing access for noncompliant clients but logging their status. Doing this

enables you to work directly with problem users who haven't gotten compliant yet. But

the infected users should be locked out anyway to prevent another incident.

4.

Objective 4.3: review

Correct answer: B

1.

Incorrect . The Called Station ID is the phone number of the dial-up modem on

the server, not the client.

A.

Correct . The remote laptop fails because it hasn't checked for updates in more

than 72 hours.

B.

Incorrect . The laptop would fail, but instead automatically routed to a remedia-

tion server that autoremediated on the local network. Makes for a slowish logon,

however.

C.

Incorrect . This would not prevent the remote access on day four of the vacation.

D.

Correct answer: G

2.

Incorrect . This answer forms part of the total answer, but is not sufficient in and of

itself. The network access protection agent needs to start automatically.

A.

Incorrect . This answer forms part of the total answer, but is not sufficient in and of

itself. The DHCP Quarantine Enforcement Agent needs to be enabled.

B.

Incorrect . This answer forms part of the total answer, but is not sufficient in and of

itself. The EAP Quarantine Enforcement Agent needs to be enabled.

C.

Incorrect . This answer forms part of the total answer, but is not sufficient in and of

itself. The Group Policy needs to be changed.

D.

Incorrect . You need all four of the items A-D.

E.

Incorrect . You need all four of the items A-D.

F.

Correct . This answer choice includes all four required elements of the correct

answer.

G.

Correct answer: D

3.

Incorrect . By denying access, you prevent remediation.

A.

Incorrect . EAP is a remote access protocol.

B.

Incorrect . By denying access, you prevent remediation.

C.

Correct . Allows the client to be forwarded to the remediation server group.

D.

Administering Windows Server 2012 R2

Search WWH ::

Custom Search

Home