The Company security administrator wants to prevent VLAN hopping on the network.  What is one  method that can be used to do this？  （）

相似题目

• The Company security administrator is concerned with layer 2 network attacks.  Which two  statements about these attacks are true？ （）

  A .  ARP spoofing attacks are attempts to redirect traffic to an attacking host by encapsulating a  false 802.1Q header on a frame and causing traffic to be delivered to the wrong VLAN. B .  ARP spoofing attacks are attempts to redirect traffic to an attacking host by sending an ARP  message with a forged identity to a transmitting host. C .  MAC address flooding is an attempt to force a switch to send all information out every port byoverloading the MAC address table. D .  ARP spoofing attacks are attempts to redirect traffic to an attacking host by sending an ARP  packet that contains the forged address of the next hop router. E .  MAC address flooding is an attempt to redirect traffic to a single port by associating that port  with all MAC addresses in the VLAN.

  查看最佳答案

• The Company security administrator is concerned with VLAN hopping based attacks. Which two  statements about these attacks are true？ （）

  A .  Attacks are prevented by utilizing the port-security feature. B .  An end station attempts to gain access to all VLANs by transmitting Ethernet frames in the  802.1q encapsulation. C .  Configuring an interface with the switchport mode dynamic command will prevent VLAN  hopping. D .  An end station attempts to redirect VLAN traffic by transmitting Ethernet frames in the 802.1q  encapsulation. E .  Configuring an interface with the "switchport mode access" command will prevent VLAN  hopping.

  查看最佳答案

• You are responsible for increasing the security within the Company LAN. Of the following choices  listed below，  which is true regarding layer 2 security and mitigation techniques？ （）

  A .  Enable root guard to mitigate ARP address spoofing attacks. B .  Configure DHCP spoofing to mitigate ARP address spoofing attacks. C .  Configure PVLANs to mitigate MAC address flooding attacks. D .  Enable root guard to mitigate DHCP spoofing attacks. E .  Configure dynamic APR inspection （DAI） to mitigate IP address spoofing on DHCP untrusted  ports. F .  Configure port security to mitigate MAC address flooding   G .  None of the other alternatives apply

  查看最佳答案

• You need to recommend a solution for managing the address information of the user accounts. The solution must meet the company’s security requirements. What should you include in the recommendation？（）

  A . Active Directory delegation B . Authorization Manager C . built-in security groups D . user rights assignment

  查看最佳答案

• You need to recommend a strategy for managing the domain controllers in the branch offices thatmeets the company security requirements.What should you include in the recommendation？（）

  A . Configure Administration Role Separation. B . Add the BranchAdmins group to the Domains Admins group. C . Add the BranchAdmins group to the Server Operators group. D . Assign the permission for the domain controller computer objects to the BranchAdmins group.

  查看最佳答案

• You need to recommend changes to the existing environment that meet the company’s security requirements for the file server on the main campus. What should you recommend？（）

  A . Deploy Network Policy Server （NPS） and create a network policy. B . Deploy Print and Document Services and create a custom printer filter. C . Deploy File Server Resource Manager （FSRM） and create a file classification rule. D . Deploy Active Directory Rights Management Services （AD RMS） and create an AD RMS rights policy  template.

  查看最佳答案

• You need to recommend a strategy for delegating administrative rights to Admin1. The strategy must support the company’s planned changes.What should you include in the recommendation？（）

  A . the Authorization Manager snap-in on Node1 and Node2 B . the Authorization Manager snap-in on the VMs C . the Network Configuration Operators local group on each VM D . the Network Configuration Operators local group on Node1 and Node2

  查看最佳答案

• You need to recommend a solution for starting the servers in the San Francisco office from Windows Recovery Environment （Windows RE）. The solution must meet the company’s security requirements.   What should you include in the recommendation？（）

  A . an iSCSI initiator B . the Multipath I/O feature C . Wake On LAN D . Windows Deployment Services （WDS）

  查看最佳答案

• You need to recommend changes to the DFS infrastructure that meet the company’s security requirements.   What should you recommend？（）

  A . Modify the NTFS permissions and the share permissions of the DFS targets. B . Modify the referrals settings of the DFS namespace and the NTFS permissions of the DFS targets. C . Migrate the namespace to Windows Server 2008 mode and modify the referrals settings. D . Migrate the namespace to Windows Server 2008 mode and enable access-based enumeration.

  查看最佳答案

• You need to recommend a solution to ensure that all of the client computers that run Windows 7 meet the company’s security requirements.   What should you include in the recommendation？（）

  A . Encrypted File System （EFS） B . the AppLocker Group Policy settings C . the IPSec enforcement method D . Windows BitLocker Drive Encryption （BitLocker）

  查看最佳答案

• You need to recommend a delegation solution for CA1 that meets the company’s security requirements.   What should you include in the recommendation？（）

  A . access-based enumeration （ABE） B . Active Directory delegation C . Authorization Manager D . role separatio

  查看最佳答案

• Which should be the key driver for a company security policy’s creation， implementation and enforcement？（）

  A .  the business knowledge of the IT staff B .  the technical knowledge of the IT staff C .  the company’s business objectives D .  the company’s network topology E .  the IT future directio

  查看最佳答案

• You need to ensure that Admin2 can administer Active Directory to meet the company’s technical requirements.   What should you do？（）

  A . Add Admin2 to the Domain Admins global group. B . Add Admin2 to the Backup Operators domain local group. C . Delegate full control ofall objects in graphicdesigninstitute.com to Admin2. D . Delegate full control of all objects in the Domain Controllers organizational unit（OU）to Admin2.

  查看最佳答案

• You need to design a security patch management strategy. Your solution must meet business and security requirements， and it must accommodate the company’s resource restrictions. What should you do？（）

  A . Test and manually deploy updates B . Deploy a Software Update Services （SUS） server. Test all updates and then approve them. Configure all client computers to automatically obtain updates from the server C . Test all updates and then use a third-party utility to repackage updates in a Windows Installer file. Deploy the -.msi files by using Group Policy D . Configure all client computers to use Automatic Updates to obtain security updates from the Windows Update Web site. Test all updates posted to the Windows Update Web site

  查看最佳答案

• You need to recommend a security strategy for WebApp2 that meets the company’s applicaton  requirements.What should you include in the recommendation？（）

  A . Basic authentication and connection security rules B . Basic authentication and SSL C . Digest authentication and connection security rules D . Digest authentication and SSL

  查看最佳答案

• You need to recommend changes to the infrastructure to ensure that DFS meets the company’s  security requirements.   What should you include in the recommendation？（）

  A . Upgrade DFS2 to Windows Server 2008 R2. B . Implement access-based enumeration （ABE）. C . Implement Authentication Mechanism Assurance. D . Configure the DFS namespace to use Windows Server 2008 mode.

  查看最佳答案

• You need to recommend a solution for managing the service accounts for SQL1 and SQL2. The  solution must meet the company’s security requirements. What should you include in the recommendation？（）

  A . a custom password filter B . a Password Settings object （PSO） C . managed service accounts D . manual password change

  查看最佳答案

• The Company is concerned about Layer 2 security threats.  Which statement is true about these  threats？ （）

  A .  MAC spoofing attacks allow an attacking device to receive frames intended for a different  network host. B .  Port scanners are the most effective defense against dynamic ARP inspection. C .  MAC spoofing, in conjunction with ARP snooping, is the most effective counter-measure against reconnaissance attacks that use dynamic ARP inspection (DAI) to determine vulnerable  attack points. D .  Dynamic ARP inspection in conjunction with ARP spoofing can be used to counter DHCP  snooping attacks. E .  DHCP snooping sends unauthorized replies to DHCP queries. F .  ARP spoofing can be used to redirect traffic to counter dynamic ARP inspection. G .  None of the other alternatives apply.

  查看最佳答案

• You need to design a domain model that meets the company business and security requirements for controlling access to the new Web-based ordering application. What should you do？（）

  A . Create a child OU within the existing domain B . Create a child domain of the existing domain C . Create a new domain in a new forest. Configure the new domain to trust the existing domain D . Create a new tree in the existing forest. Configure the new domain to trust the existing domai

  查看最佳答案

• （）means the person designated as responsible for the development, implementation, revision and maintenance of the port facility security plan and for liaison with the ship security officers and company security officers.

  A . Ship security officer B . Company security officer C . Port facility security officer D . PSC officer

  查看最佳答案

• You need to recommend a management solution for Server1 that meets the company's security  requirements.   What should you include in the recommendation？（）

  A . access-based enumeration （ABE） B . Authentication Mechanism Assurance C . Authorization Manager D . Hyper-V Manager

  查看最佳答案

• You need to recommend a NAP enforcement method that meets the company¯s security requirements. Which method should you recommend？（）

  A . 802.1X B . DHCP C . IPSec D . VPN

  查看最佳答案

• You need to design a security strategy that will ensure that unauthorized users cannot access personnel data. Your solution must comply with security requirements and the company’s new administrative model.What should you do？（）

  A . In the Default Domain Policy Group Policy object （GPO） for the corp.woodgrovebank.com domain， add the LA\HRUsers group to the Restricted Groups list. Add only the HR department user accounts to the Allowed Members list B . In the Default Domain Policy Group Policy object （GPO） for the la.corp.woodgrovebank.com domain， add the LA\HRUsers group to the Restricted Groups list. Add only the HR department user accounts to the Allowed Members list C . In the Default Domain Policy Group Policy object （GPO） for the corp.woodgrovebank.com domain， add the LA\HRUsers group and the CORP\Backup Operators group to the Restricted Groups list. Add only the HR department user accounts and the administrator user accounts to the Allowed Members list for each group D . In the Default Domain Policy Group Policy object （GPO） for the la.corp.woodgrovebank.com domain， add the LA\HRUsers group and the CORP\Backup Operators group to the Restricted Groups list. Add only the HR department user accounts to the Allowed Members list for the LA\HRUsers group. Add only the administrator user accounts to the Allowed Members list for the CORP\Backup Operators grou

  查看最佳答案

• Society is a （joint-stock) company, in which the members agree, （for) the better （securing

  Society is a (joint-stock) company, in which the members agree, (for) the better (securing of )bread for each shareholder, (to surrender to) the liberty and culture of each individual. A．joint-stock B．for C．securing of D．to surrender to

  查看最佳答案