Security

WHAT TO KNOW

to ace your MCSE 70-210 Windows 2000 Professional Certification Tests

with MOST of the type of questions you'll likely see on the exams


Installation

Hardware

Disks

Printers

Performance

Files & Folders

Networking

Backups

Security

Recovery

70-210 Edition

SECURITY

L2TP relies on this for data encryption
IPSec

an encrypted file COPIED to a non-encrypted NTFS folder
retains its encryption

a non-encrypted file COPIED to an encrypted NTFS folder
is encrypted

the least secure authentication protocol (no encryption)
PAP

encrypts passwords but NOT data
CHAP and SPAP

encrypts passwords and data
MSCHAP and MSCHAP v2

also encrypts passwords and data (the most secure authentication protocol)
EAP

CA used for smart card logons in a domain
enterprise CA

the GUEST account is ___ by default in win 2000
Disabled

Power users can install service packs
FALSE

service used during logon to authenticate a user
SAM

uses 56 bit key encryption
DES

by default it prevents system files from being altered or deleted
Windows File Protection

copying an encrypted file to a floppy
decrypts the file

least secure template
compatws.inf which allows win 9x and other legacy applications to run on win 2000

default security template
basicwk.inf

most secure template
hisecws.inf which ensures IPSec is used which only win 2000 supports. Win NT or 9x computers will not be able to access data on this computer


Security

Manage, configure, and troubleshoot:

  • local and domain security policies
  • Encrypting File System (EFS)
  • security templates
  • user's rights
  • authentication

1. Your company has just hired a new consultant that will working in your department for about one month. The department manager does not want this temporary employee to have access to the less secure Windows NT4, Windows 95, and Windows 98 computers. This temp employee will be using a Win 2000 computer and it will be OK for him to access the other Windows 2000 computers?

Deny access to the files he does not need to use in the local security policy
Install NTFS on this temps computer and FAT on the Windows NT4, Windows 95, and Windows 98 computers
Implement the Hisecws.inf security template to this temp employees computer

2. To ensure that your dial-up connection authentication is secure and that your data and logon password are encrypted before being sent over the network you should use ___ ?

MSCHAP or EAP
CHAP or MSCHAP
PAP or SPAP

3. You've just successfully upgraded a win 95 computer to win 2000. The only problem is now one of the win 95 applications the user needs won't work. What should you do?

use compatws.inf for your security profile
use basicwk.inf for your security profile
use hisecws.inf for your security profile

4. Jane COPIES one of her encrypted files from an NTFS-Partition on her Windows 2000 computer to a NTFS-Folder on Roger's Windows 2000 computer. What effect will this have on the encrypted file?

it remains encrypted
it is decrypted
you cannot copy an encrypted file or folder

5. Typed at the command prompt this provides additional encryption security of the database on a personal computer. Its use is very common on portable computers that may be stolen?

syskey
compact
crypto


 Grade =
Correct answers are:







Installation | Hardware | Disks | Printers | Performance

Files and Folders | Networking | Backups | Security | Disaster Recovery | 70-210 Edition

Any comments, suggestions, or questions about this site should be directed to aplus_omega@prodigy.net
Copyright ©2003 Aplus Omega Enterprises, Miami, FL USA
        All Rights Reserved