You are installing a new deployment of the Junos Pulse Access Control Service. You have an existing RADIUS server that has a populated user file. You are considering using the RADIUS proxy feature.Which consideration must you take into account?()A、Your RADIUS server database must be replicated onto another device for redundancy.B、Inner proxy creates a tunnel between the supplicant and the external server.C、RADIUS proxy causes the role assignment process to be skipped.D、Outer proxy configuration passes authentication data to the external RADIUS server in clear text.
You are installing a new deployment of the Junos Pulse Access Control Service. You have an existing RADIUS server that has a populated user file. You are considering using the RADIUS proxy feature.Which consideration must you take into account?()
- A、Your RADIUS server database must be replicated onto another device for redundancy.
- B、Inner proxy creates a tunnel between the supplicant and the external server.
- C、RADIUS proxy causes the role assignment process to be skipped.
- D、Outer proxy configuration passes authentication data to the external RADIUS server in clear text.
相关考题:
On the Junos Pulse Access Control Service, you have created a role called Secret that you only want to provide to users who present a certificate.Using the admin GUI, which two features would you configure to satisfy this requirement?()A. Sign-in PolicyB. Role Mapping RuleC. Role RestrictionsD. Trusted Server CA
When using RADIUS as an external authentication method for 802.1X authentication for the Junos Pulse Access Control Service, what must you do to ensure that the RADIUS authentication works properly?() A. Configure IP helper to forward the authentication requests from the clients to the external RADIUS serverB. Configure the supplicant as anexternal authentication serverC. Configure RADIUS proxy on the realmD. Specify the correct RADIUS port 389 on the Junos Pulse Access Control Service
You have a firewall enforcer receiving resource access policies from a Junos Pulse Access Control Service. You are using Network and Security Manager (NSM) for configuration management on that firewall. The firewall can also be configured using its built-in command-line interface (CLI) or Web-based user interface (WebUI).To avoid conflicting configurations, which two interfaces must you use to configure the firewall enforcer?()A. CLIB. WebUIC. NSMD. Junos Pulse Access Control Service
You want to provide 802.1X access for Windows clients using Junos Pulse as the agent. Which two considerations must you take into account() A.Junos Pulse out erauth entication uses EAP-PEAP.B.Junos Pulse ou terauth entication uses EAP-TTLS.C.Junos Pulse innerauth entication uses EAP-MSCHAP-V2.D.Theend point must use thenative Microsoft 802.1X supplicant.
You are setting up a Junos Pulse Access Control Service. You cannot obtain a device certificate from an external certificate authority.Which tool should you use to generate a device certificate?() A.OpenSSLB.OpenSSHC.OpenLDAPD.OpenRADIUS
You are installing a new deployment of the Junos Pulse Access Control Service. In your environment, you have VoIP handsets that support 802.1X authentication with EAP-MD5.Which deployment constraint must you consider?()A、EAP-MD5 is not supported by the Junos Pulse Access Control ServiceB、EAP-MD5 requires passwords to be stored in an encrypted format.C、EAP-MD5 requires passwords to be stored in a clear text format.D、EAP-MD5 performs a real time hash of the handset's MAC address.
On the Junos Pulse Access Control Service, you have created a role called Secret that you only want to provide to users who present a certificate.Using the admin GUI, which two features would you configure to satisfy this requirement?()A、Sign-in PolicyB、Role Mapping RuleC、Role RestrictionsD、Trusted Server CA
When using RADIUS as an external authentication method for 802.1X authentication for the Junos Pulse Access Control Service, what must you do to ensure that the RADIUS authentication works properly?()A、Configure IP helper to forward the authentication requests from the clients to the external RADIUS serverB、Configure the supplicant as anexternal authentication serverC、Configure RADIUS proxy on the realmD、Specify the correct RADIUS port 389 on the Junos Pulse Access Control Service
You have multiple realms configured on a MAG Series device. A user is authenticating with a non- Junos Pulse Access Control Service client. The username does not contain a realm suffix.Which behavior will the user experience?()A、The user will not be able to log-in, as the Junos Pulse Access Control Service device cannot map the user to a realm when the realm value is empty.B、The user will be mapped to all realms available to the user.C、The Junos Pulse Access Control Service device displays a page where the user must choose from a list of realms.D、The endpoint is assigned to the first realm in the list whose authentication server is a match with the endpoints software.
You want to create a security policy on an SRX240 that redirects unauthenticated users back to the Junos Pulse Access Control Service.Which two steps must you take to accomplish this task?()A、Configure a captive-portal service that redirects all traffic back to the Junos Pulse Access Control Service.B、Configure a security policy that references the unified-access-control captive-portal service.C、Configure a captive-portal service that redirects unauthenticated traffic back to the Junos Pulse Access Control Service.D、Configure a security policy that references the unified-access-control intranet-controller service.
A customer has purchased a third-party switch to use for Layer 2 access with their Junos Pulse Access Controe Service. When configuring the switch on the Junos Pulse Access Control Service, the customer does not find a make/model entry for it . Which two actions should the customer take to make the switch work with the Junos Pulse Access Control Service?()A、Add the switch to the Junos Pulse Access Control Service as a standard RADIUS.B、Add the switch to the Junos Pulse Access Control Service using the "Any" make/model.C、Add the switch as a firewall enforcer.D、Obtain and configure the RADIUS dictionary for the switch and use that vendor listing for the make/model.
Which three types of policies must you configure to allow remote users transparent access to protected resources using IF-MAP Federation between a Junos Pulse Secure Access Service and a Junos Pulse Access Control Service?()A、Session-Export policies on the Junos Pulse Secure Access ServiceB、Session-Export policies on the Junos Pulse Access Control ServiceC、Session-Import policies on the Junos Pulse Secure Access ServiceD、Session-Import policies on the Junos Pulse Access Control ServiceE、Resource access policies on the Junos Pulse Access Control Service
You want to provide all users in your corporation with a single agent that provides access to multiple connection types conditionally. For example, you connect to the Junos Pulse Access Control Service if you are connected to the intranet, but you connect to the Junos Pulse Secure Access Service if you are on a remote network. Which agent should you use for this type of connection requirement?()A、Junos Pulse should be configured with location awareness rules configured.B、Odyssey Access Client should be installed with Host Checker configured to check the client's location.C、Junos Pulse should be configured with all components installed.D、Agentless access should be enabled so that clients can connect to any service without concern for installing an agent.
You have three classes of users on your network: employee, contractor, and IT administrator. You configure the Junos Pulse Access Control Service to assign roles to each user class and require that a specific wireless SSID be preconfigured for the Odyssey Access Client based on the role. Which configuration method should you use to satisfy this scenario?()A、Create a "Settings Update file" in the Odyssey Access Client Administrator and upload it to the Junos Pulse Access Control Service under "User Roles" "Agent" "Odyssey Settings" "Preconfigured Installer".B、Configure a wired adapter and assign the required SSID under "User Roles" "Agent" "Odyssey Settings".C、Create a script in the Odyssey Access Client Administrator and upload it to the Junos Pulse Access Control Service under "User Roles" "Agent" "Odyssey Settings" "Preconfigured Installer".D、Create a "Preconfiguration file" in the Odyssey Access Client Administrator and upload it to the Junos Pulse Access Control Service under "User Roles" "Agent" "Odyssey Settings" "Preconfigured Installer".
You want to provide 802.1X access for Windows clients using Junos Pulse as the agent. Which two considerations must you take into account()A、Junos Pulse out erauth entication uses EAP-PEAP.B、Junos Pulse ou terauth entication uses EAP-TTLS.C、Junos Pulse innerauth entication uses EAP-MSCHAP-V2.D、Theend point must use thenative Microsoft 802.1X supplicant.
You are setting up a Junos Pulse Access Control Service. You cannot obtain a device certificate from an external certificate authority.Which tool should you use to generate a device certificate?()A、OpenSSLB、OpenSSHC、OpenLDAPD、OpenRADIUS
You have a firewall enforcer receiving resource access policies from a Junos Pulse Access Control Service. You are using Network and Security Manager (NSM) for configuration management on that firewall. The firewall can also be configured using its built-in command-line interface (CLI) or Web-based user interface (WebUI). To avoid conflicting configurations, which two interfaces must you use to configure the firewall enforcer?()A、CLIB、WebUIC、NSMD、Junos Pulse Access Control Service
You have a Junos Pulse Secure Access Service acting as an IF-MAP client, configured to federate all user roles to a Junos Pulse Access Control Service acting as an IF-MAP Federation server. A remote user using Junos Pulse logs in to the Junos Pulse Secure Access Service; the Junos Pulse Secure Access Service provisions a remote access session for that user.What happens next?()A、The Junos Pulse Secure Access Service redirects the user to the Junos Pulse Secure Access Service for authenticationB、The Junos Pulse Access Control Service provisions enforcement points to enable resource access for that user.C、The Junos Pulse Secure Access Service publishes user session and role information to the IF- MAP Federation server,D、The Junos Pulse Secure Access Service provisions enforcement points to enable resource access for that user.
You are the Exchange administrator for your organization.You need to move a user’s mailbox from the mailbox server role of an Exchange 2007 SP2 server to the mailbox server role of an Exchange 2010 server in the same forest.You must ensure that the end-user can still access their e-mail account.What action should you take?()A、Run the Move-Mailbox cmdletB、Run the New-MoveRequest cmdletC、Use the Exchange Management console to issue a New Remote Move RequestD、Run the Set-MailboxDatabaseCopy cmdlet
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service Pack 2 (SP2).You have a VPN server named Server1. You have an Internet Authentication Service (IAS) server named Server2. You need to ensure that all VPN connections to Server1 are authenticated by Server2.Which two actions should you perform?()A、From the Internet Authentication Service snap-in on Server2, create a new RADIUS client. B、From the Internet Authentication Service snap-in on Server2, create a new remote access policy. C、From the Routing and Remote Access snap-in, configure Server1 to use RADIUS accounting. D、From the Routing and Remote Access snap-in, configure Server1 to use RADIUS authentication.
Your network contains an Active Directory domain. You have a server that runs Windows Server 2008 R2 and has the Remote Desktop Services server role enabled. All client computers run Windows 7. You need to plan the deployment of a new line-of-business application to all client computers. The deployment must meet the following requirements: èUsers must access the application from an icon on their desktops. èUsers must have access to the application when they are not connected to the network. What should you do?()A、Publish the application as a RemoteApp.B、Publish the application by using Remote Desktop Web Access (RD Web Access).C、Assign the application to the Remote Desktop Services server by using a Group Policy object (GPO).D、Assign the application to all client computers by using a Group Policy object (GPO).
单选题You manage a computer running Windows 2000 Professional that belongs to a workgroup. You create a new user account (Tony) on that computer that is not a member of the Administrators group. You log on using the new account. You create a file with notepad in a folder that is on a volume formatted with NTFS. You encrypt the file. You give another user account defined on that computer, Luis the permission to take ownership of the file. Luis logs on using the account and takes ownership. However, she receives an error message reporting that access is denied when she tries to open the file. What can you do to allow Luis to open the file?()AInstruct Luis to decrypt the file before she tries to open it.BLog on with the account Tony and decrypt the file.CMove the file to a folder that is not encrypted on a different volume that is formatted with NTFS.DMove the file to a folder that is not encrypted on the same volume.
多选题You have a firewall enforcer receiving resource access policies from a Junos Pulse Access Control Service. You are using Network and Security Manager (NSM) for configuration management on that firewall. The firewall can also be configured using its built-in command-line interface (CLI) or Web-based user interface (WebUI). To avoid conflicting configurations, which two interfaces must you use to configure the firewall enforcer?()ACLIBWebUICNSMDJunos Pulse Access Control Service
单选题You are installing a new deployment of the Junos Pulse Access Control Service. You have an existing RADIUS server that has a populated user file. You are considering using the RADIUS proxy feature.Which consideration must you take into account?()AYour RADIUS server database must be replicated onto another device for redundancy.BInner proxy creates a tunnel between the supplicant and the external server.CRADIUS proxy causes the role assignment process to be skipped.DOuter proxy configuration passes authentication data to the external RADIUS server in clear text.
单选题You want to provide all users in your corporation with a single agent that provides access to multiple connection types conditionally. For example, you connect to the Junos Pulse Access Control Service if you are connected to the intranet, but you connect to the Junos Pulse Secure Access Service if you are on a remote network. Which agent should you use for this type of connection requirement?()AJunos Pulse should be configured with location awareness rules configured.BOdyssey Access Client should be installed with Host Checker configured to check the client's location.CJunos Pulse should be configured with all components installed.DAgentless access should be enabled so that clients can connect to any service without concern for installing an agent.
单选题You are installing a new deployment of the Junos Pulse Access Control Service. In your environment, you have VoIP handsets that support 802.1X authentication with EAP-MD5.Which deployment constraint must you consider?()AEAP-MD5 is not supported by the Junos Pulse Access Control ServiceBEAP-MD5 requires passwords to be stored in an encrypted format.CEAP-MD5 requires passwords to be stored in a clear text format.DEAP-MD5 performs a real time hash of the handset's MAC address.
多选题You want to provide 802.1X access for Windows clients using Junos Pulse as the agent. Which two considerations must you take into account()AJunos Pulse out erauth entication uses EAP-PEAP.BJunos Pulse ou terauth entication uses EAP-TTLS.CJunos Pulse innerauth entication uses EAP-MSCHAP-V2.DTheend point must use thenative Microsoft 802.1X supplicant.