What should you identify?

HOTSPOT
Your network contains an Active Directory domain named contoso.com. The domain
contains the users shown in the following table.

You have a Network Policy Server (NPS) server that has the network policies shown in the following table.

User1, User2, and User3 plan to connect to the network by using a VPN. You need to
identify which network policy will apply to each user.
What should you identify?
To answer, select the appropriate policy for each user in the answer area.

HOTSPOT
Your network contains an Active Directory domain named contoso.com. The domain
contains the users shown in the following table.

You have a Network Policy Server (NPS) server that has the network policies shown in the following table.

User1, User2, and User3 plan to connect to the network by using a VPN. You need to
identify which network policy will apply to each user.
What should you identify?
To answer, select the appropriate policy for each user in the answer area.

Answer:

Explanation:

Show Hint

Leave a Reply 12

Your email address will not be published. Required fields are marked *

mina

mina

I understand user 1, but why for the other 2

Reply

mina

mina

correction I can’t figure why any of these

Reply

byzantine

byzantine

bc process order is like that

Reply

mina

mina

thanks byzantine

Reply

Edwin Catellanos

Edwin Catellanos

Here is an interesting article which mentions how the processing order works.

http://www.windowsecurity.com/articles-tutorials/Windows_Server_2012_Security/understanding-configuring-network-policy-access-services-server-2012-part2.html

When creating network policies, you need to keep in mind that a client request can match one connection policy and one network policy. It cannot match multiple policies of a type, so when a match is made, none of the other policies will be applied. That means the order of processing policies is important. The source of the request is also used in determining the order for evaluation.

If there are policies that specify a source, requests sent from a matching source are only evaluated against these policies. If none of the policies specify a source that matches, clients try to match policies with the Unspecified source. If there are multiple policies with the same source that matches the client source, the policy that’s highest in the processing order is used (and if it fails, the NPS goes down the list of policies in the processing order until it finds a policy that matches).

Reply

Mike

Mike

Do you agree with the answer being policy 2,1,1?

Reply

Pirulo

Pirulo

Yes, according to Edwin’s explanation, in the case of

User1: the first policy evaluated (Policy2) matches, so it’s the one applied
User2: Policy2 does not match, next policy (Policy1) is evaluated, matches, and it’s applied.
User3: Same as User2

Reply

Pablo

Pablo

This is exactly how I answered the question.

Reply

Pirulo

Pirulo

Did you pass the exam, Pablo ?

Reply

leonard

leonard

User1. policy 2
User2. Policy 1
User3. Policy 1

Reply