You need to ensure that User1 can establish VPN connections to Server1

Your network contains an Active Directory domain named contoso.com. The domain contains a
server named Server1 that runs Windows Server 2012 R2.

You enable and configure Routing and Remote Access (RRAS) on Server1.
You create a user account named User1.
You need to ensure that User1 can establish VPN connections to Server1.
What should you do?

Your network contains an Active Directory domain named contoso.com. The domain contains a
server named Server1 that runs Windows Server 2012 R2.

You enable and configure Routing and Remote Access (RRAS) on Server1.
You create a user account named User1.
You need to ensure that User1 can establish VPN connections to Server1.
What should you do?

A.
Modify the members of the Remote Management Users group

B.
Add a RADIUS client

C.
Modify the Dial-in setting of User1

D.
Create a connection request policy

Show Hint

Leave a Reply 3

Your email address will not be published. Required fields are marked *

Implementer2016

Implementer2016

Dial-in settings have default network access permission as “Control access through NPS Network Policy”.

You can use this property to set remote access permission to be explicitly allowed, denied, or determined through NPS Network policies. In all cases, Network policies are used to authorize the connection attempt. If access is explicitly allowed, network policy conditions, user account properties, or profile properties can still deny the connection attempt.

In my opinion, correct answer here would be D as leaving default setting in AD and configuring connection request policy is the way to go.
I think this question is testing understanding of how NPS works rather than how AD works.

Reply

Implementer2016

Implementer2016

In the Active Directory Users and Computers snap-in, on the Dial-in tab of user account properties, the Network Access Permission setting is used by NPS to make authorization decisions, as follows:

If the value of Network Access Permission is Deny access, the user is always denied access to the network by NPS, regardless of any settings in network policy.
If the value of Network Access Permission is Allow access, the user is allowed network access unless there is a network policy that explicitly denies access to the user.
If the value of Network Access Permission is Control access through NPS Network Policy, NPS makes authorization decisions based solely on network policy settings.
http://technet.microsoft.com/en-us/library/cc732724(v=ws.10).aspx

Reply