You are the systems administrator for your company. The company’s network consists of a single Active Directory domain. You install Windows Essential Business Server 2008 Premium Edition on the network. You configure a Windows Server 2008 computer named TS1 as a Terminal Services Gateway (TS Gateway) server. TS1 contains a shared folder that should be accessed only by the company’s managers. You want to prevent all other users from accessing the shared folder on TS1.
What type of policy should you create to specify users that can connect to TS1?
A.
Create a TS Resource Authorization Policy (TS RAP).
B.
Create a TS Connection Authorization Policy (TS CAP).
C.
T Create both a TS CAP and a TS RAP.
D.
Configure a central TS CAP store.
Explanation:
You should create a TS CAP. TS Gateway is a role service in the Terminal Services server role in Windows Server 2008 that enables remote users to connect to resources located on a corporate network. After installing and configuring the TS Gateway, you must create TS CAPs and TS RAPs to ensure that TS Gateway functions correctly. TS CAPs are used to specify which users can connect to a TS Gateway server. While configuring a TS CAP, you can specify a user group that exists on the local TS Gateway server or in Active Directory Domain Services. TS CAPs also allows you to specify other conditions that users must meet to access a TS Gateway server.You should not create a TS RAP. TS RAPs are used to specify internal network resources that can be accessed by remote users through a TS Gateway server. To specify who can connect to a TS Gateway server, you should create TS CAPs.
You should not create both a TS CAP and a TS RAP. In this scenario, you want to allow specific users to connect to a TS Gateway server, which is achieved by creating a TS CAP. TS RAPs are used to specify internal network resources that can be accessed by remote users through a TS Gateway server.
You should not configure a central TS CAP store because this will not allow you to achieve the stated goal. A TS CAP store is used to specify whether to use TS CAPs stored on the local or central Network Policy Server (NPS).