Chat with AI
Deck 9: Deploying Iis and Active Directory Certificate Services
Full screen (f)
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Question
Unlock Deck
Sign up to unlock the cards in this deck!
Unlock Deck
Unlock Deck
1/50
Play
Full screen (f)
Deck 9: Deploying Iis and Active Directory Certificate Services
1
When you set up a virtual directory,you give it an alias,which is a name to identify it to a Web browser.
True
2
Any enterprise or standalone subordinate,excluding nonintermediate subordinates,can have a subordinate under it.
False
3
The ____ is created automatically when you install the Web Server role.
A) DefaultApp
B) DefaultPool
C) ApplicationPool
D) DefaultAppPool
A) DefaultApp
B) DefaultPool
C) ApplicationPool
D) DefaultAppPool
D
4
A ____ is a special addressing format used to find,for example,particular Web locations or FTP sites.
A) URL
B) directory
C) URP
D) UML
A) URL
B) directory
C) URP
D) UML
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
5
The ____ Web site feature is used to configure the dll files,code files,and other files used to fulfill client requests.
A) object mappings
B) file mappings
C) handler mappings
D) application mappings
A) object mappings
B) file mappings
C) handler mappings
D) application mappings
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
6
Lists of certificates that have been revoked are known as ____.
A) URLs
B) CAs
C) CRLs
D) RRLs
A) URLs
B) CAs
C) CRLs
D) RRLs
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
7
A(n)____ is an ASP.NET process that runs on its own without using the same memory space as IIS.
A) master thread
B) worker process
C) control process
D) external thread
A) master thread
B) worker process
C) control process
D) external thread
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
8
A ____ is a network entity or host,typically a server that issues digital certificates of trust verifying the legitimacy of the certificate holders.
A) certificate master
B) certificate network
C) certificate authority
D) certificate director
A) certificate master
B) certificate network
C) certificate authority
D) certificate director
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
9
AD CS enables an organization to divide CA responsibilities into two roles: CA manager and certificate administrator.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
10
Windows Server 2008 offers the Active Directory ____ Services role as a way to implement a network infrastructure built on trust.
A) Client
B) Domain
C) Federation
D) Certificate
A) Client
B) Domain
C) Federation
D) Certificate
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
11
The ____ Web site feature is used to configure the accepted file extensions for files that don't change.
A) MIME types
B) handler mappings
C) application mappings
D) file mappings
A) MIME types
B) handler mappings
C) application mappings
D) file mappings
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
12
The ____ feature is used to manage Internet e-mail via e-mail programs that take advantage of the application programming interface,system.net.mail.
A) HTTP E-mail Page
B) SMTP E-mail Page
C) Web E-mail Page
D) SMTP Object Page
A) HTTP E-mail Page
B) SMTP E-mail Page
C) Web E-mail Page
D) SMTP Object Page
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
13
A ____ is really a physical folder or a redirection to a Uniform Resource Locator (URL)that points to a folder,so that it can be accessed over the Internet,an intranet,or VPN.
A) subordinate directory
B) secondary directory
C) virtual directory
D) Web directory
A) subordinate directory
B) secondary directory
C) virtual directory
D) Web directory
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
14
The virtual directory share permission ____ enables groups and users to read,execute,and add files,but can only modify and delete files provided by them.
A) owner
B) reader
C) co-owner
D) contributor
A) owner
B) reader
C) co-owner
D) contributor
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
15
____ enable you to group similar Web applications into groups for management.
A) Object pools
B) Management pools
C) Application pools
D) Server pools
A) Object pools
B) Management pools
C) Application pools
D) Server pools
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
16
A ____ is linking a public key or a combination of public and private keys to a user or network entity to verify that user or entity is trusted.
A) public key infrastructure
B) public key network
C) public key federation
D) public key structure
A) public key infrastructure
B) public key network
C) public key federation
D) public key structure
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
17
A CRL can grow to be quite large and reduce the efficiency of network communications,particularly when there are many revocations listed.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
18
A(n)____ CA does not have to be integrated with Active Directory and so does not have to use user and security group information derived from Active Directory.
A) standalone root
B) enterprise root
C) enterprise subordinate
D) standalone subordinate
A) standalone root
B) enterprise root
C) enterprise subordinate
D) standalone subordinate
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
19
____ is an encryption method that uses a public key and private key combination.
A) Symmetric key
B) Public key
C) Shared key
D) Universal key
A) Symmetric key
B) Public key
C) Shared key
D) Universal key
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
20
The certificate manager role is associated with the issue and manage certificates CA security permission.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
21
Through ____,network device administrators are given enrollment passwords.
A) Online Certificate Service
B) Network Device Enrollment Service
C) Certificate Management Service
D) Certificate Enrollment Service
A) Online Certificate Service
B) Network Device Enrollment Service
C) Certificate Management Service
D) Certificate Enrollment Service
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
22
Match each term with the correct statement below.
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
A list of certificates that have been revoked
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
A list of certificates that have been revoked
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
23
Match each term with the correct statement below.
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
A TCP/IP-based application protocol that handles file transfers over a network
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
A TCP/IP-based application protocol that handles file transfers over a network
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
24
Match each term with the correct statement below.
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
A group of DLL (dynamic link library)files that are applications and filters
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
A group of DLL (dynamic link library)files that are applications and filters
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
25
A(n)____ CA uses the same hierarchical subordinate structure as for an enterprise subordinate,but does not require integration with Active Directory.
A) standalone root
B) enterprise root
C) unlinked subordinate
D) standalone subordinate
A) standalone root
B) enterprise root
C) unlinked subordinate
D) standalone subordinate
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
26
Match each term with the correct statement below.
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
Role given to those who determine which users to enroll for certificates and when to revoke certificates
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
Role given to those who determine which users to enroll for certificates and when to revoke certificates
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
27
Credential roaming is configured as a ____,which enables it to be automatically applied to client computers running Windows operating systems such as Windows Vista and 7.
A) script
B) group policy
C) network policy
D) template
A) script
B) group policy
C) network policy
D) template
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
28
Match each term with the correct statement below.
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
Acts as an Internet gateway and in partnership with e-mail services,such as Microsoft Exchange,to accept incoming e-mail from the Internet and forward it to the recipient
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
Acts as an Internet gateway and in partnership with e-mail services,such as Microsoft Exchange,to accept incoming e-mail from the Internet and forward it to the recipient
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
29
PKI activity can be set up so that no action needs to be taken by users and very little action by CA administrators by using ____.
A) DHCP
B) DNS
C) autoenrollment
D) autoconfiguration
A) DHCP
B) DNS
C) autoenrollment
D) autoconfiguration
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
30
CRLs are issued at regular intervals as determined by the ____.
A) certificate requester
B) client
C) certificate manager
D) CRL issuer
A) certificate requester
B) client
C) certificate manager
D) CRL issuer
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
31
____ means that when a user logs into the network,the digital certificate information stored on the user's computer is automatically synchronized with the digital certification information for that user stored in Active Directory.
A) Credential roaming
B) Domain roaming
C) Credential hopping
D) Domain hopping
A) Credential roaming
B) Domain roaming
C) Credential hopping
D) Domain hopping
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
32
____________________ is intended for organizations that enable users to access network resources through the Web,rather than through user accounts.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
33
A(n)____________________ contains information on only the certificates revoked after the last full CRL was issued.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
34
Match each term with the correct statement below.
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
Role given to the person or persons who manage the CA server
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
Role given to the person or persons who manage the CA server
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
35
IIS ____________________ are used to automatically trigger programs,such as a Microsoft Access database lookup or a security program to authorize a user to access specific Web functions.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
36
When one key is used to encrypt data another other key is used to decrypt it,the method is called ____________________ encryption.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
37
Match each term with the correct statement below.
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
Software included with Windows Server 2008 that enables you to offer a complete Web site
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
Software included with Windows Server 2008 that enables you to offer a complete Web site
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
38
Match each term with the correct statement below.
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
A set of database access rules used by API for accessing databases and providing a standard doorway to database data
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
A set of database access rules used by API for accessing databases and providing a standard doorway to database data
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
39
The ____________________ CA is always configured before any other CAs.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
40
Match each term with the correct statement below.
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
The Online Responder Service relies on this to determine if a certificate is revoked
a.FTP
b.CRL
c.ODBC
d.Internet Information Services
e.CA administrator
f.SMTP server
g.OCSP
h.Internet Server Application Programming Interface
i.certificate manager
The Online Responder Service relies on this to determine if a certificate is revoked
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
41
What is the purpose of Network Device Enrollment Service?
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
42
Explain how to manage Active Directory Certificate Services,and give three examples of tasks you may need to perform.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
43
Describe the enterprise root CA.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
44
Explain why the autoenrollment options to Renew expired certificates,update pending certificates and remove revoked certificates and Update certificates that use certificate templates are generally selected.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
45
List three things that you can do through the Internet Information Services (IIS)Manager tool.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
46
Discuss why using Online Responder Service is an efficient solution to large CRL transmissions.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
47
List and describe two role services that you can implement when you install Active Directory Certificate Services.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
48
List three things that installing and using IIS on the Internet requires.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
49
List three pieces of information on a CRL.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
50
List and describe the three levels of certificate templates.
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
Unlock Deck
k this deck
Unlock Deck
Unlock for access to all 50 flashcards in this deck.
