You administer a Windows Essential Business Server 2008 environment that uses Forefront Threat Management Gateway (TMG). The network contains a SharePoint Server that hosts multiple Web sites. You are configuring the Forefront TMG server for publishing the SharePoint Server sites. You are creating a Web Listener to publish the SharePoint Server sites. You want to configure the Web Listener to validate client credentials
Which authentication settings should you configure in the Web Listener? (Choose two. Each correct answer presents part of the solution.)
A.
Configure the Web Listener to use Digest authentication.
B.
Configure the Web Listener to use Windows integrated authentication.
C.
Configure the Web Listener to use the Windows (Active Directory) option to validate client credentials.
D.
Configure the Web Listener to use the LDAP (Active Directory) or RADIUS option to validate client credentials.
Explanation:
You should configure the Web Listener to use Windows integrated authentication and to use the Windows (Active Directory) option to validate client credentials. Forefront TMG helps you make SharePoint sites available to external users without compromising the security of your network. To configure SharePoint publishing by using Forefront TMG, you should create a Web Listener. You should perform the following steps to start the New Web Listener Wizard:1. In the Forefront TMG Management console tree, click the Firewall Policy node.
2. In the task pane, click the Toolbox tab.
3. On the Toolbox tab, click Network Objects, click New, and then select the Web Listener option to open the New Web Listener Wizard.You can configure the Web Listener to require Secure Sockets Layer (SSL) secured connections with clients. You can configure the Web Listener to use HTTP authentication, Basic authentication, or Windows integrated authentication. When your Forefront TMG server is deployed in a workgroup environment, you can select only Basic authentication. When Forefront TMG server is deployed in a domain environment, you can select any of the three authentication methods listed above.
You should not configure the Web Listener to use Digest authentication because this authentication method is not supported for creating a Web Listener in Forefront TMG. You can configure the Web Listener to use HTTP authentication, Basic authentication, or Windows integrated authentication.
You should not configure the Web Listener to use the LDAP (Active Directory) or RADIUS option to validate client credentials because this option can only be used if Forefront TMG is deployed in a workgroup and you configure the Web Listener to use Basic authentication.