You need to ensure that client computers meet the company policy requirement

Your company uses Network Access Protection (NAP) to enforce policies on client computers that connect to the network.

Client computers run Windows 7. A Group Policy is used to configure client computers to obtain updates from Windows Server Update Services (WSUS).

Company policy requires that updates labeled Important and Critical must be applied before client computers can access network resources.

You need to ensure that client computers meet the company policy requirement.

What should you do?

Your company uses Network Access Protection (NAP) to enforce policies on client computers that connect to the network.

Client computers run Windows 7. A Group Policy is used to configure client computers to obtain updates from Windows Server Update Services (WSUS).

Company policy requires that updates labeled Important and Critical must be applied before client computers can access network resources.

You need to ensure that client computers meet the company policy requirement.

What should you do?

A.
Enable automatic updates on each client.

B.
Enable the Security Center on each client.

C.
Quarantine clients that do not have all available security updates installed.

D.
Disconnect the connection until the required updates are installed.

Show Hint

Leave a Reply 2

Your email address will not be published. Required fields are marked *

neopod

neopod

I feel like the answer here should be D. Disconnect the connection until the required updates are installed. C mentions security updates. While security updates are included in important and critical, not all important and critical updates are security updates. So waiting until security updates are installed might not be all that needs to happen.

Also, this is the first time I’ve actually seen attaching a computer to a remediation group referred to as quarantining a computer. There is no doubt that this is what is happening, but it’s generally referred to as connecting to remediation servers, not quarantining.

I think you need to tell the client they cannot connect until all required updates are installed, not just security updates. Someone please correct me if I’m wrong.

Reply

bengo

bengo

QUARANTINE, C.
From the training kit:
This exact scenario has happened to many organizations and resulted in countless financial
losses. NAP can prevent this scenario. When computers connect to your local area network
(LAN), they must meet specific health requirements, such as having recent updates installed.
If they can’t meet those health requirements, they can be quarantined to a network where
they can download updates, install antivirus software, and obtain more information about
how to meet the requirements of the LAN.

Reply