What should you do?

You work as the database administrator at Domain.com. The Domain.com network consists of a single Active Directory domain named Domain.com. Some of the servers on the Domain.com network run Windows Server 2003 while the rest run Windows NT 4.0 Server. The client computers run Windows 98, Windows NT 4.0 Workstation and Windows XP Professional.
The Domain.com network contains a SQL Server 2005 database server named Certkiller -DB01. Certkiller -DB01 runs Windows Server 2003 and hosts a database named CK_Projects. You need to enable the CK_Projects database to accept Simple Object Access protocol (SOAP) requests. You plan to accomplish this by creating a Hypertext Transfer Protocol (HTTP) endpoint. You want to ensure that the most secure authentication method is used when client computers connect to the HTTP endpoint.
What should you do?

You work as the database administrator at Domain.com. The Domain.com network consists of a single Active Directory domain named Domain.com. Some of the servers on the Domain.com network run Windows Server 2003 while the rest run Windows NT 4.0 Server. The client computers run Windows 98, Windows NT 4.0 Workstation and Windows XP Professional.
The Domain.com network contains a SQL Server 2005 database server named Certkiller -DB01. Certkiller -DB01 runs Windows Server 2003 and hosts a database named CK_Projects. You need to enable the CK_Projects database to accept Simple Object Access protocol (SOAP) requests. You plan to accomplish this by creating a Hypertext Transfer Protocol (HTTP) endpoint. You want to ensure that the most secure authentication method is used when client computers connect to the HTTP endpoint.
What should you do?

A.
Use the AUTHENTICATION = (INTEGRATED) clause in the CREATE ENDPOINT statement.

B.
Use the AUTHENTICATION = (KERBEROS) clause in the CREATE ENDPOINT statement.

C.
Use the AUTHENTICATION = (NTLM) clause in the CREATE ENDPOINT statement.

D.
Use the AUTHENTICATION = (DIGEST) clause in the CREATE ENDPOINT statement.

E.
Use the AUTHENTICATION = (BASIC) clause in the CREATE ENDPOINT statement.

Explanation:
When the authentication type of an endpoint is specified as INTEGRATED, the endpoint will respond with either Kerberos or NTLM, depending on which type the client uses in requesting authentication. No other authentication method will be used if authentication fails.
Incorrect Answers:
B: Kerberos authentication is supported by Windows 2000 and later. It is not supported by Windows 98 and Windows NT 4.0.
C: NTLM authentication is supported by Windows 98 and Windows NT 4.0. It is not as secure as Kerberos but Windows 98 and Windows NT 4.0 do not support Kerberos. Windows XP Professional can use NTLM but if integrated authentication is used, Windows 98 and Windows NT 4.0 will use NTLM and Windows XP Professional will use Kerberos.
D: Digest authentication is more secure than basic authentication but is not as secure as NTLM or Kerberos.
E: Basic authentication uses easily decoded base64-encoding and should only be used as a last resort unless the user that is granted permissions to the endpoint is a local user on the server computer itself.
Reference:
Microsoft SQL Server 2005 Books Online (2006), Index: CREATE ENDPOINT statement
Microsoft SQL Server 2005 Books Online (2006), Index: authentication [SQL Server], HTTP endpoints

Show Hint

Leave a Reply 0

Your email address will not be published. Required fields are marked *