You are planning the implementation of two new servers that will be configured as RADIUS servers.
You need to recommend which configuration must be performed on the VPN servers. The solution must meet
the technical requirements.
Technical Requirements
The company identifies following technical requirements:
· All changes to Group Policies must be logged.
· Network Access Protection (NAP) policies must be managed centrally.
· Core networking services in each office must be redundant if a server fails.
· The possibility of IP address conflicts during the DHCP migration must be minimized.
· A central log of the IP address leases and the users associated to those leases must be created.
· All of the client computers must be able to resolve internal names and internet names.
· Administrators in the Paris office need to deploya series of desktop restrictions to the entire company by
using Group Policy.
· The new sales.contoso.com domain will contain a web application that will access data from a Microsoft SQL
Server located in the contoso.com domain. The web application must use integrated Windows authentication.
Users’ credentials must be passed from the web applications to the SQL Server.
What should you do on each VPN server?
A.
Install the Health Registration Authority role service.
B.
Add a RADIUS client.
C.
Enable DirectAccess.
D.
Modify the authentication provider.
Wrong: Correct answer is radius clients
Source? As far as I know, the VPN servers are the Radius Clients..
Also, I’m not exactly sure what the last Technical Requirement has to do with this, but I imagine you need to tell each VPN server that they need to use RADIUS for authentication.
Please correct me if I am wrong, but the given answer seems to be right.
https://technet.microsoft.com/nl-nl/library/cc784057%28v=ws.10%29.aspx
RADIUS clients do not process Access-Request messages by performing authentication, authorization, and accounting. Only RADIUS servers perform these functions.
https://msdn.microsoft.com/en-us/library/cc754033(v=ws.11).aspx
Implement RADIUS authentication for VPN connections. * The new sales.contoso.com domain will contain a web application that will access data from a Microsoft SQL Server located in the contoso.com domain. The web application must use integrated Windows authentication. Users’ credentials must be passed from the web applications to the SQL Server