单项选择题
Your company has a single Active Directory domain. All servers run Windows Server 2008. You install an iSCSI storage area network (SAN) for a group of file servers.
Corporate security policy requires that all data communication to and from the iSCSI SAN must be as secure as possible.
You need to implement the highest security available for communications to and from the iSCSI SAN.
What should you do?()
A.Create a Group Policy object (GPO) to enable the System objects: Strengthen default permission ofinternal systems objects setting.
B.Create a Group Policy object (GPO) to enable the System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing setting.
C.Implement IPsec security in the iSCSI Initiator Properties. Set up inbound and outbound rules by using Windows Firewall.
D.Implement mutual Microsoft Challenge Handshake Authentication Protocol (MS-CHAPv2) authentication in the iSCSI Initiator Properties. Set up inbound and outbound rules by using Windows Firewall.
相关考题
-
单项选择题
You have two servers named FC1 and FC2 that run Windows Server 2008 Enterprise Edition. Both servers have the Failover Clustering feature installed. You configure the servers as a two-node cluster. The cluster runs an application named APP1. Business hours for your company are 09:00 to 17:00. APP1 must be available during these hours. You configure FC1 as the preferred owner for APP1. You need to prevent failback of the cluster during business hours. What should you do?()
A.Set the Period option to 8 hours in the Failover properties.
B.Set the Allow failback option to allow failback between 17 and 9 hours in the Failover properties.
C.Enable the Prevent failback option in the Failover properties.
D.Enable the If resource fails, attempt restart on current node policy for all APP1 resources. Set the maximum restarts for specified period to 0. -
多项选择题
Your company named Contoso, Ltd. has a Network Load Balancing cluster named nlb.contoso.com. The cluster hosts are named WEB1 and WEB2. The cluster is configured with a single port rule that evenly distributes HTTP traffic between both hosts. You need to configure WEB2 to handle all HTTPS traffic for nlb.contoso.com. You must retain the even distribution of HTTP traffic between WEB1 and WEB2. Which two actions should you perform?()
A.In the properties for WEB2, change the Handling priority option for the TCP 443 port rule to the value of1.
B.In the properties for WEB1, change the Handling priority option for the TCP 443 port rule to the value of 0.
C.In the properties for the cluster, create a new port rule for port TCP 443 that has the Filtering mode option set to Single host.
D.In the properties for the cluster, create a new port rule for port TCP 443 that has the Filtering mode option set to Multiple host and the Affinity option set to the value of Single. -
多项选择题
Your company named Contoso, Ltd. has a two-node Network Load Balancing cluster. The cluster is intended to provide high availability and load balancing for only the intranet Web site. The name of the cluster is web.contoso.com. You discover that Contoso users can see the Network Load Balancing cluster in the network neighborhood and can connect to various services by using the web.contoso.com name. The web.contoso.com Network Load Balancing cluster is configured with only one port rule. You need to configure the web.contoso.com Network Load Balancing cluster to accept only HTTP traffic. Which two actions should you perform?()
A.Log on to one of the cluster nodes and run the wlbs disable all command.
B.Open the Network Load Balancing Clusters console and delete the default port rules.
C.Open the Network Load Balancing Clusters console and create a new Allow rule for TCP port 80.
D.Open the Network Load Balancing Clusters console and change the default port rule to a disabled port range rule.
