DRAG DROP
Your network contains an Active Directory domain named contoso.com.
You need to ensure that third-party devices can useWorkplace Join to access domain resources on the
Internet.
Which four actions should you perform in sequence?
To answer, move the appropriate four actions from the list of actions to the answer area and arrange them in
the correct order.
Answer: Claims provider trust, certificate, AD FS, DeviceRegistration Service
Explanation:
Install Thrird Party Cert; Install FS; Enable Devices Registration; Create a Claims Provider Trust. //Sascha
thanks sascha
I see no mention of creating a claims provider trust in the blogs found here: http://blogs.technet.com/b/keithmayer/archive/2013/11/09/why-r2-step-by-step-solve-byod-challenges-with-workplace-join.aspx
BUT I do see checking the certificate on another blog to join the device to the workplace using a web application proxy. https://technet.microsoft.com/en-gb/library/dn280938.aspx It’s not a necessary step though: https://technet.microsoft.com/en-us/library/dn614658.aspx so I think that may be the last step. Two other steps are mentioned, creating a group managed service account and adding in DNS entries. Those aren’t answers available though
Because the devices want to access Domain resources from the Internet, I would go with:
Install Third Party Cert; Install FS; Enable Devices Registration;Install and Configure Web Application Proxy
From: https://technet.microsoft.com/en-us/library/dn554247.aspx
To provide extranet access to the AD FS service, you must deploy the Web Application Proxy role service as the extranet facing role that proxies authentication requests in a secure manner to the AD FS service.
agree with clever4ever
-install third part certificate
-Install ADFS
-Enable device registration
-Config. web application proxy.