单选题An Enterprise decides to implement Authentication Proxy for per-user authentication for home offices. Each home office also supports an IP Phone. What should you do?()AConfigure Access Control Lists to ensure Voice over IP traffic is checked by Auth Proxy.BConfigure pNAT to ensure Voice over IP packets are properly translated.CConfigure IOS firewall to permit RTP port numbers through the firewall via VPN. DConfigure Access Control Lists to allow Voice over IP traffic to bypass Auth Proxy checking.
单选题
An Enterprise decides to implement Authentication Proxy for per-user authentication for home offices. Each home office also supports an IP Phone. What should you do?()
A
Configure Access Control Lists to ensure Voice over IP traffic is checked by Auth Proxy.
B
Configure pNAT to ensure Voice over IP packets are properly translated.
C
Configure IOS firewall to permit RTP port numbers through the firewall via VPN.
D
Configure Access Control Lists to allow Voice over IP traffic to bypass Auth Proxy checking.
参考解析
解析:
暂无解析
相关考题:
Consider the Mysql Enterprise Audit plugin. The following event detail is found in the audit log:Which two points can be concluded from the given event?() A.A connection as the user kate was successfulB.A connection failed due to authentication being unsuccessfulC.A connection was attempted via socket rather than TCPD.A connection was blocked by a firewall or a similar security mechanismE.A connection failed because the proxy user privileges did not match the login user
When using RADIUS as an external authentication method for 802.1X authentication for the Junos Pulse Access Control Service, what must you do to ensure that the RADIUS authentication works properly?() A. Configure IP helper to forward the authentication requests from the clients to the external RADIUS serverB. Configure the supplicant as anexternal authentication serverC. Configure RADIUS proxy on the realmD. Specify the correct RADIUS port 389 on the Junos Pulse Access Control Service
An administrator has been having problems with server security. Many of the servers have been infected with viruses in the past. Which of the following can be done to ensure that systems avoid OS exploits?()A. Implement an intrusion detection system (IDS).B. Implement a dual-factor authentication method.C. Implement a patch management process.D. Implement stronger user passwords.
Which statement about the S-Series native FTP proxy is not true?() A、 both active and passive modes FTP are supportedB、 by default the FTP proxy uses port 8021C、 access polices may apply to native FTP trafficD、 data loss prevention policies may apply to native FTP trafficE、 authentication is supported in transparent mode
What is a benefit of NTLMSSP over basic authentication?() A、 basic cannot be used in transparent proxy modeB、 basic requiresreauthentication with every new domainC、 NTLMSSP is compatible with open LDAPD、 NTLMSSP is more secure than basic
What are three features of the Cisco IOS Firewall feature set?()A、network-based application recognition (NBAR)B、authentication proxyC、stateful packet filteringD、AAA servicesE、proxy serverF、IPS
You need to design a PKI solution that meets business and security requirements. What should you do?()A、Implement an enterprise root CA in the corp.woodgrovebank.com domain.Implement subordinate CAs in each child domain. Take the root CA offlineB、Implement an enterprise root CA in the corp.woodgrovebank.com domainC、Implement an enterprise root CA in each of the child domains. Take the enterprise CA in each domain offlineD、Implement an enterprise root CA in the corp.woodgrovebank.com domain. Implement a stand-alone root CA in each of the child domains
You are the network administrator for Company. Company’s network consists of 200 Windows 2000 Professional computers. CompanyW1 is a Windows 2000 Server computer that hosts Company’s intranet site. CompanyP1 is a computer running Microsoft Proxy Server that is used by all computers on the network to access the Internet. You discover that CompanyP1 is experiencing performance degradation due to large number of requests to authenticate with the proxy server. You want to minimize the number of authentication requests to the proxy server. What should you do on each computer?()A、Configure the proxy server settings to have a Secure proxy address of CompanyP1.B、Configure the proxy server settings to bypass the proxy server for local addresses.C、Add CompanyW1 to the Local intranet zone.D、Add the CompanyW1 to the list of trusted sites.
Which statement describes the Authentication Proxy feature?()A、All traffic is permitted from the inbound to the outbound interface upon successful authentication of the user.B、A specific access profile is retrieved from a TACACS+ or RADIUS server and applied to an IOS Firewall based on user provided credentials.C、Prior to responding to a proxy ARP,the router will prompt the user for a login and password which are authenticated based on the configured AAA policy.D、The proxy server capabilities of the IOS Firewall are enabled upon successful authentication of the user.
Which statement about SNMP is true?()A、SNMP version 2 uses a proxy agent to forward GetNext message to SNMP version 3.B、SNMP version 2 supports message integrity to ensure that a packet has not been tampered withC、Proxy agents were used only in SNMP version 1.D、SNMP version 3 supports encryption and SNMP version 2 support authentication.E、GetBulk messages are converted to GetNext messages by the proxy agent and are then forwarded to the SNMP version 1 agent.
What is the S-Series Proxy Bypass List?() A、a list of proxy servers that are to be bypassedB、a list of clients and destinations that will bypass the proxy in transparent modeC、a list of clients and destinations that will bypass the proxy in explicit forward modeD、a list of user agents exempt from authentication
An administrator has been having problems with server security. Many of the servers have been infected with viruses in the past. Which of the following can be done to ensure that systems avoid OS exploits? ()A、 Implement an intrusion detection system (IDS).B、 Implement a dual-factor authentication method.C、 Implement a patch management process.D、 Implement stronger user passwords.
Consider the Mysql Enterprise Audit plugin. Which statement is true when you identify a connection event that has used external authentication?()A、The attribute "STATUS" is set to the string EXTERNAL_AUTHB、The attribute "PRIV_USER" contains the usernameC、The event type that is given in the attribute "NAME" is EXTERNAL_AUTHD、There is no differentiation between native and external authentication eventsE、External authentication is managed through external auditing logsF、The "PROXY_PRIV" user shows a username if external authentication is used
Your network consists of a single Active Directory domain. All domain controllers run Windows Server 2008 R2. The network contains 100 servers and 5,000 client computers. The client computers run either Windows XP Service Pack 1 or Windows 7. You need to plan a VPN solution that meets the following requirements: èStores VPN passwords as encrypted text èSupports Suite B cryptographic algorithms èSupports automatic enrollment of certificates èSupports client computers that are configured as members of a workgroup What should you include in your plan?() A、Upgrade the client computers to Windows XP Service Pack 3. Implement a stand-alone certification authority (CA). Implement an IPsec VPN that uses certificate-based authentication.B、Upgrade the client computers to Windows XP Service Pack 3. Implement an enterprise certification authority (CA) that is based on Windows Server?2008 R2. Implement an IPsec VPN that uses Kerberos authentication.C、Upgrade the client computers to Windows 7. Implement an enterprise certification authority (CA) that is based on Windows Server 2008 R2. Implement an IPsec VPN that uses pre-shared keys.D、Upgrade the client computers to Windows 7. Implement an enterprise certification authority (CA) that is based on Windows Server 2008 R2. Implement an IPsec VPN that uses certificate-based authentication.
You need to design a method of communication between the IT and HR departments. Your solution must meet business requirements. What should you do?()A、Design a custom IPSec policy to implement Encapsulating Security Payload (ESP) for all IP traffic Design the IPSec policy to use certificate-based authentication between the two departments’ computersB、Design a customer IPSec policy to implement Authentication Header (AH) for all IP traffic. Desing the IPSec policy to use preshared key authentication between the two departments’ computersC、Design a customer IPSec policy to implement Encapsulating Payload (ESP) for all IP traffic. Desing the IPSec policy to use preshared key authentication between the two departments’ computersD、Design a customer IPSec policy to implement Authentication Header (AH) for all IP traffic. Desing the IPSec policy to use certificate-based authentication between the two departments’ computers
多选题What are two valid reasons for using IBM Tivoli Access Manager for Enterprise Single Sign-On Graphical Identification and Authentication (GINA)?()AABBCCDDEE
单选题An enterprise has an internal web application that needs stickiness managed by a Cluster. Allemployees access the application through a proxy. What is the correct sticky load balancing policy? ()AurlhashBurl persistencyCcookie persistencyDdefault persistency
单选题Click the Exhibit button. What is the cause of the error shown in the exhibit?()A A RADIUS request is being received from a device that is not configured on the RADIUS Client page.B A user entered an incorrect password during RADIUS authentication.C A RADIUS proxy attempt failed to reach the configured proxy server.D The RADIUS shared secret is incorrect.
单选题You need to implement an authentication method on SQL4. The TravelOnline database will be accessed through a Web services application. You need to make the authentication method as secure as possible.What should you do?()ACreate an HTTP endpoint with NTLM authentication, and create a service principal name (SPN).BCreate an HTTP endpoint with digest authentication, and create a service principal name (SPN).CCreate an HTTP endpoint with integrated authentication, and create a service principal name (SPN).DCreate an HTTP endpoint with Kerberos authentication.
单选题What is the S-Series Proxy Bypass List?()Aa list of proxy servers that are to be bypassedBa list of clients and destinations that will bypass the proxy in transparent modeCa list of clients and destinations that will bypass the proxy in explicit forward modeDa list of user agents exempt from authentication
单选题Consider the Mysql Enterprise Audit plugin. Which statement is true when you identify a connection event that has used external authentication?()AThe attribute STATUS is set to the string EXTERNAL_AUTHBThe attribute PRIV_USER contains the usernameCThe event type that is given in the attribute NAME is EXTERNAL_AUTHDThere is no differentiation between native and external authentication eventsEExternal authentication is managed through external auditing logsFThe PROXY_PRIV user shows a username if external authentication is used
单选题You need to design a PKI solution that meets business and security requirements. What should you do?()AImplement an enterprise root CA in the corp.woodgrovebank.com domain.Implement subordinate CAs in each child domain. Take the root CA offlineBImplement an enterprise root CA in the corp.woodgrovebank.com domainCImplement an enterprise root CA in each of the child domains. Take the enterprise CA in each domain offlineDImplement an enterprise root CA in the corp.woodgrovebank.com domain. Implement a stand-alone root CA in each of the child domains
单选题You are installing a new deployment of the Junos Pulse Access Control Service. You have an existing RADIUS server that has a populated user file. You are considering using the RADIUS proxy feature.Which consideration must you take into account?()AYour RADIUS server database must be replicated onto another device for redundancy.BInner proxy creates a tunnel between the supplicant and the external server.CRADIUS proxy causes the role assignment process to be skipped.DOuter proxy configuration passes authentication data to the external RADIUS server in clear text.
单选题When using RADIUS as an external authentication method for 802.1X authentication for the Junos Pulse Access Control Service, what must you do to ensure that the RADIUS authentication works properly?()AConfigure IP helper to forward the authentication requests from the clients to the external RADIUS serverBConfigure the supplicant as anexternal authentication serverCConfigure RADIUS proxy on the realmDSpecify the correct RADIUS port 389 on the Junos Pulse Access Control Service
单选题What is a benefit of NTLMSSP over basic authentication?()A basic cannot be used in transparent proxy modeB basic requiresreauthentication with every new domainC NTLMSSP is compatible with open LDAPD NTLMSSP is more secure than basic
单选题Which of the following options would you choose to implement controlled access using remote authentication for your networks?()AOiDBRADIUSCWallet ManagerDOracle Names Server
单选题Which statement about the S-Series native FTP proxy is not true?()A both active and passive modes FTP are supportedB by default the FTP proxy uses port 8021C access polices may apply to native FTP trafficD data loss prevention policies may apply to native FTP trafficE authentication is supported in transparent mode
单选题An Enterprise decides to implement Authentication Proxy for per-user authentication for home offices. Each home office also supports an IP Phone. What should you do?()AConfigure Access Control Lists to ensure Voice over IP traffic is checked by Auth Proxy.BConfigure pNAT to ensure Voice over IP packets are properly translated.CConfigure IOS firewall to permit RTP port numbers through the firewall via VPN. DConfigure Access Control Lists to allow Voice over IP traffic to bypass Auth Proxy checking.