Windows 2003 Exams - Question From 70-296 - Feedback Requested Snafu - Fri May 20, 2005 2:47 pm Post subject: Question From 70-296 - Feedback Requested
Some feedback please. One of the questions I've seen in the 70-292 dumps, has different answers depending which dump. please take a look and make a suggestion:-
Q. You are the network administrator for Contoso. All servers run Windows Server 2003. All client computers run Windows XP Professional. All computers are connected to the network by using a wireless access point.
You configure a certification authority (CA). You require certificate-based IEEE 802.1x authentication on the wireless access point.
You need to enable all computers to communicate on the wireless network.
What are two possible ways to achieve this goal? (Each correct answer presents a complete solution. Choose two)
A. Enter a 128-bit Wired Equivalent Privacy (WEP) key on the wireless access point and on the computers.
B. In the Wireless Network Connection properties on each computer, select the <B>The key is provided for me automatically</B> check box.
C. Temporarily connect each computer to an available Ethernet port on the wireless access point and install a computer certificate.
D. Install a computer certificate on each computer by using a floppy disk.
Which two do you think is is, and reasons please.
Thnx
cyrus_the_virus - Fri May 20, 2005 4:59 pm Post subject:
Hi Snafu,
i think B and d.
A: to much work
C: to much work
CU
Cyrus
Snafu - Fri May 20, 2005 5:10 pm Post subject:
Thats the third different permutation of answers that i've seen.
I'll provide my understanding when (or if) we get any more responses.
Thanks again Cyrus
Legolas - Sat May 21, 2005 2:25 am Post subject:
It's C and D. Bottom line is that you need a certificate on the computer to connect to the wireless network. Well, there are only so many ways to install a certificate on a computer.. Wired ethernet or floppy disk work!
Legolas
cyrus_the_virus - Sat May 21, 2005 9:40 am Post subject:
Hi Snafu,
let me explain why i think itīs B and D.
Answer A: it doesnīt make sense (nothing to do with a CA), if you have a Cert on the Computer.
Answer B: If you have a Cert an the Computer, then you can provide the key for the encryption automatically.
Answer C: I think itīs to much work because you have a max of 8 RJ45 Ports on an AP. Maybe, as legolas said itīs a correct answer, because it works.
Answer D: You need the Cert. on the Computers.
CU
Cyrus
Snafu - Sat May 21, 2005 10:07 am Post subject:
Does anyone else want to make a suggestion before I give my ideas?
Legolas - Sat May 21, 2005 5:04 pm Post subject:
Go ahead and post what you think Snafu..
BTW, here's why A and B are wrong...
A: WEP has nothing to do with certs. Also, each machine would have the SAME WEP key. That isn't what the question wants.
B: Obtain key automatically has to do with obtaining the WEP key from the router automatically. It has nothing to do with certificates.
Therefore, only C and D are left. Hence, correct.
Snafu - Sat May 21, 2005 5:28 pm Post subject:
To all Arsenal supporters. ( those who dont understand the term need not respond) A and B are correct.
To myself AND anyone else in the free world....... it has to be C and D. Not that i'm a MUFC supporter!
The original dump stated A + B, never C+ D.
I believe C + D are correect because... according to the explanation..
The 802.1X authentication An Institute of Electrical and Electronics Engineers (IEEE) standard for port-based network access control that provides authenticated network access to Ethernet networks and wireless 802.11 local area networks (LANs).
A PKI using computers running Windows Server 2003 can create certificates that support wireless network authentication. The increasing popularity of wireless local area networking (LAN) technologies, such as those based on the 802.11 standard, raises an important security issue. When you install a wireless LAN, you must make sure that only authorized users can connect to the network and that no one can eavesdrop on the wireless communications. You can use the Windows Server 2003 PKI to protect a wireless network by identifying and authenticating users before they are granted access to the network.
<B>Incorrect Answers:</B><BR>
<B>A: </B>WEP depends on encryption keys that are generated by a mechanism external to WEP itself, not certificates.
<B>B: </B>This option depends on encryption keys as well.
