You are the database administrator of the Verigon corporation. Your network contains a SQL Server 2005computer running on Windows 2000 Server with Mixed Mode authentication in the verigon.com domain. You want to upgrade the SQL server to SQL Server 2008 and enforce the domain password policy for the users of the verigon.com domain on the SQL Server. In addition, you want to use Kerberos authentication to provide bettersecurity. What should you do? (Choose all that apply. Each correct answer represents part of the solution.)
A.
Upgrade the server to Windows Server 2003 Service Pack 2 (SP2).
B.
Install Windows 2000 Service Pack 4 (SP4) on the server.
C.
Upgrade the SQL server to SQL Server 2008.
D.
Configure the SQL server to use Windows authentication.
E.
Configure the SQL server to use SQL Server authentication.
Explanation:
You should upgrade the server to Windows Server 2003 Service Pack 2 (SP2), upgrade the SQL server to SQLServer 2008, and configure the SQL server to use Windows authentication. SQL Server 2008 supports two typesof authentication modes: Windows authentication and SQL Server authentication. Windows authenticationenables users to connect to an instance of SQL Server by using Windows credentials. SQL Server authenticationenables users to connect to an instance of SQL Server by using both Windows authentication and SQL Serverauthentication. In this scenario, users from the domain will connecting to the SQL Server. You should WindowsAuthentication instead of SQL Server Authentication. Windows authentication provides better security because ituses Kerberos security protocol and supports features, such as account lockout and password expiration. Whenyou install SQL Server 2008 on a computer running Windows Server 2003 or higher, Windows authentication alsosupports password policy enforcement. You should not install Windows 2000 Service Pack 4 (SP4) on the server. You can enforce password policies byusing Windows authentication when SQL Server 2008 is installed on a Windows Server 2003 or higher operatingsystem. You should not configure the SQL server to use SQL Server authentication because SQL Server authenticationdoes not support Kerberos authentication. SQL Server authentication does support password policies.
Objective:
Managing SQL Server SecuritySub-Objective:
Manage logins and server roles.References:
TechNet > TechNet Library > Server Products and Technologies > SQL Server > SQL Server 2008 > ProductDocumentation > SQL Server 2008 Books Online > Database Engine > Operations > Administration >Administering Servers by Using Policy-Based Management > Monitoring and Enforcing Best Practices by UsingPolicy-Based Management > Authentication Mode