YourcompanyscorporatenetworkusesNetworkAccessProtection（NAP）.Usersareabletoconnecttothecor

Your companys corporate network uses network access protection (NAP). Users are able to connect to the corporate network remotely. You need to ensure that data transmissions between remote client computers and the corporate network are as secure as possible. What should you do?（）

A.Apply an IPsec NAP policy.

B.Configure a NAP Policy for 802.1x Wireless connections.

C.Configure VPN connections to use MS-CHAP v2 authentication.

D.Restrict dynamic host configuration protocol (DHCP) clients by using NAP.

Your company uses Network Access Protection (NAP) to enforce policies on client computers that connect to the network.Client computers run Windows 7. A Group Policy is used to configure client computers to obtain updates from Windows Server Update Services (WSUS).Company policy requires that updates labeled Important and Critical must be applied before client computers can access network resources.You need to ensure that client computers meet the company policy requirement.What should you do？（）

A. Enable automatic updates on each client.

B. Enable the Security Center on each client.

C. Quarantine clients that do not have all available security updates installed.

D. Disconnect the connection until the required updates are installed.

YourcompanyusesNetworkAccessProtection（NAP）toenforcepoliciesonclientcomputersthatconnecttothenetwork.ClientcomputersrunWindowsVista.AGroupPolicyisusedtoconfigureclientcomputerstoobtainupdatesfromWindowsServerUpdateServices（WSUS）.CompanypolicyrequiresthatupdateslabeledImportantandCriticalmustbeappliedbeforeclientcomputerscanaccessnetworkresources.Youneedtoensurethatclientcomputersmeetthecompanypolicyrequirement.Whatshouldyoudo？（）

A.Enableautomaticupdatesoneachclient.

B.EnabletheSecurityCenteroneachclient.

C.Quarantineclientsthatdonothaveallavailablesecurityupdatesinstalled.

D.Disconnecttheconnectionuntiltherequiredupdatesareinstalled.

YourcompanyhasActiveDirectoryCertificateServices（ADCS）andNetworkAccessProtection（NAP）deployedonthenetwork.YouneedtoensurethatNAPpoliciesareenforcedonportablecomputerstahtuseawirelessconnectiontoaccessthenetwork.Whatshouldyoudo？（）

A.Configureallaccesspointstouse802.1Xauthentication

B.ConfigureallprotablecomputerstouseMS-CHAPv2authentication

C.UsetheGroupPolicyManagementConsoletoaccessthewirelessgrouppolicysettings，andenablethePreventconnectionstoad-hocnetworksoption.

D.UsetheGroupPolicyManagementConsoletoaccessthewirelessgrouppolicysettings，anddisablethePreventconnectionstoinfrastructurenetworksoption.

Your company has Active Directory Certificate Services (AD CS) and Network Access Protection (NAP) deployed on the network.You need to ensure that NAP policies are enforced on portable computers that use a wireless connection to access the network.What should you do?（）

A. Configure all access points to use 802.1X authentication.

B. Configure all portable computers to use MS-CHAP v2 authentication.

C. Use the Group Policy Management Console to access the wireless Group Policy settings, and enable the Prevent connections to ad-hoc networks option.

D. Use the Group Policy Management Console to access the wireless Group Policy settings, and disable the Prevent connections to infrastructure networks option.

Your company has active directory certificate services (AD CS) and network access protection (NAP) deployed on the network. You need to ensure that NAP policies are enforced on portable computers that use a wireless connection to access the network. What should you do?（）

A.Configure all access points to use 802.1x authentication.

B.Configure all protable computers to use MS-CHAP v2 authentication.

C.Use the group policy management console to access the wireless group policy settings, and enable the prevent connections to ad-hoc network option.

D.Use the group policy management console to access the wireless group policy settings, and disable the prevent connections to infrastructure networks option.

Your network has Network Access Protection (NAP) deployed. The network contains two servers named Server1 and Server2. Server1 is a Network Policy Server (NPS). Server2 has a third-party antivirus solution installed.Server1 is configured to use a custom system health validator provided by the antivirus vendor. The system health validator uses Server2 to identify the version of the current antivirus definition.You need to ensure that NAP clients are considered noncompliant if Server1 cannot connect to Server2.Which error code resolution setting should you configure？（）

A. SHA not responding to NAP client

B. SHA unable to contact required services

C. SHV not responding

D. SHV unable to contact required services

YourcompanyhasdeployedNetworkAccessProtection（NAP).Youconfiguresecurewirelessaccesstothenetworkbyusing802.1xauthenticationfromanyaccesspoint.YouneedtoensurethatallclientcomputersthataccessthenetworkareevaluatedbyNAP.whatshouldyoudo（）？

A.ConfigureallaccesspointsasRADIUSclientstotheRemediationServers

B.ConfigureallaccesspointsasRADIUSclientstotheNetworkPolicyServer（NPS）

C.CreateaNetworkPolicythatdefinesRemoteAccessServerasanetworkconnectionmethod

D.CreateaNetworkPolicythatspecifiesEAP-TLSastheonlyavailibleauthenticationmethod.

Your company has active directory certificate services (AD CS) and network access protection (NAP) deployed on the network. You need to configure the wireless network to accept smart cards. What should you do?（）

A.Configure the wireless network to use WPA2, PEAP and MSCHAP v2.

B.Configure the wireless network to use WPA2, 802.1X authentication and EAP-TLS.

C.Configure the wireless network to use WEP, 802.1X authentication, PEAP, and MSCHAP v2.

D.Configure the wireless network to use WEP,PEAP, and MSCHAP v2 and also require strong user passwords.

You are a network administrator for your company. The network consists of a single Active Directorydomain.A user named Mary works in the information technology security department. Mary is a member of theITSecurity global group. Mary reports that no one in the ITSecurity global group can access the securitylog from the console of a computer named Server1.You need to grant the ITSecurity global group the minimum rights necessary to view the security log onServer1.How should you modify the local security policy?（）

A. Assign the Generate security audits user right to the ITSecurity global group.

B. Assign the Manage auditing and security logs user right to the ITSecurity global group.

C. Assign the Allow logon through Terminal Services user right to the ITSecurity global group.

D. Assign the Act as part of the operating system user right to the ITSecurity global group.