which goal(s) are met?

You are the network administrator for ABC.com. The network consists of a single Active Directory
domain named thorntonlibraries.com. Each server on the network runs Windows Server 2003.
Certificate Services is deployed to support the company’s PKI infrastructure. The functional level
of the domain is Windows Server 2003. Each client computer runs the Windows XP Professional
operating system.
All desktop computers used by library employees are in locations that are accessible to library
visitors. The network also contains five kiosks that are used by library partners and visitors. Library
partners access shared files on the local network and can also access the Internet from the kiosks.
Library visitors use the kiosks only to perform searches and are not allowed the same level of
network access as the library partners. All library partners have been assigned domain user
accounts to provide specialized network access.
The library is implementing a new security policy to protect the library network. These goals must
be met:
Each employee must authenticate to their desktop computer using a smart card.
Each partner must authenticate to the kiosk computers using a smart card.
When an employee removes his smart card from his desktop computer, he must be allowed to

maintain a protected session.
When a partner removes their smart card from a kiosk, the user account is automatically logged
off.
You perform these actions:
Configure all employee and partner user accounts to require smart card authentication.
Create an organizational unit (OU) named Computer_OU and place all desktop computer
accounts in this OU. Create a new Group Policy Object (GPO) named Employee Smart Cards with
the Interactive Logon: Smart card removal behavior and enable the Force Logoff option. Link this
GPO to Computer_OU.
Create an OU named Partner_Comps_OU and place all kiosk computer accounts in this OU.
Create a new GPO named Smart Cards and configure this GPO with the Interactive Logon: Smart
card removal behavior and enable the Lock Workstation option. Link this GPO to the Partner_OU.
With these actions, which goal(s) are met? (Choose all that apply.)

You are the network administrator for ABC.com. The network consists of a single Active Directory
domain named thorntonlibraries.com. Each server on the network runs Windows Server 2003.
Certificate Services is deployed to support the company’s PKI infrastructure. The functional level
of the domain is Windows Server 2003. Each client computer runs the Windows XP Professional
operating system.
All desktop computers used by library employees are in locations that are accessible to library
visitors. The network also contains five kiosks that are used by library partners and visitors. Library
partners access shared files on the local network and can also access the Internet from the kiosks.
Library visitors use the kiosks only to perform searches and are not allowed the same level of
network access as the library partners. All library partners have been assigned domain user
accounts to provide specialized network access.
The library is implementing a new security policy to protect the library network. These goals must
be met:
Each employee must authenticate to their desktop computer using a smart card.
Each partner must authenticate to the kiosk computers using a smart card.
When an employee removes his smart card from his desktop computer, he must be allowed to

maintain a protected session.
When a partner removes their smart card from a kiosk, the user account is automatically logged
off.
You perform these actions:
Configure all employee and partner user accounts to require smart card authentication.
Create an organizational unit (OU) named Computer_OU and place all desktop computer
accounts in this OU. Create a new Group Policy Object (GPO) named Employee Smart Cards with
the Interactive Logon: Smart card removal behavior and enable the Force Logoff option. Link this
GPO to Computer_OU.
Create an OU named Partner_Comps_OU and place all kiosk computer accounts in this OU.
Create a new GPO named Smart Cards and configure this GPO with the Interactive Logon: Smart
card removal behavior and enable the Lock Workstation option. Link this GPO to the Partner_OU.
With these actions, which goal(s) are met? (Choose all that apply.)

A.
Each employee is configured to authenticate using a smart card.

B.
Each partner is configured to authenticate to the public computer using a smart card.

C.
Each partner is logged off when their smart card is removed from the computer.

D.
Each employee maintains a protected session when his smart card is removed.



Leave a Reply 0

Your email address will not be published. Required fields are marked *