Mark works as a Network Administrator for NetTech Inc. The company has a Windows Server 2008
domain-based network. Mark configures Network Access Protection (NAP) on the network. He then
configures secure wireless access to the network from all access points on the network. He also
configures 802.1x authentication for accessing the network. Mark wants to ensure that all
computers connecting to the network are checked by NAP for the required configuration and update
status. What will Mark do to accomplish the task?
A.
Configure all computers connecting to the network with IPSec.
B.
Configure all access points as RADIUS clients to Distributed File System.
C.
Configure Link-local Multicast Name Resolution (LLMNR) on the network.
D.
Configure all access points as RADIUS clients to Network Policy Server (NPS).
Explanation:
In order to accomplish the task, Mark will have to configure all access points as RADIUS clients to
Network Policy Server (NPS). Network Access Protection (NAP) is a set of operating system
components included with the Windows Server 2008 and Windows Vista/7 operating systems. It
ensures that the client computers on a private network meet administrator-defined requirements
for system health. NAP policies define the required configuration and update status for a client
computer’s operating system and critical software. For example, an administrator can set policies
that computers might be required to have antivirus software with the latest virus definition installed
and current operating system updates. Using NAP, a network administrator can enforce compliance
with health requirements for the client computers connection to the network. NAP helps network
administrators to reduce the risk caused by improperly configured client computers that might be
exposed to viruses and other malicious software.
Network Policy Server (NPS) is a Remote Authentication Dial-In User Service (RADIUS) server and
proxy in Windows Server 2008. It allows administrator to create and enforce network access policies
for client health, connection request authentication, and connection request authorization. It can be
used to centrally manage network access through a variety of network access servers, including
wireless access points, VPN servers, dial-up servers, and 802.1X authenticating switches. NPS can
also be used to deploy secure password authentication with Protected Extensible Authentication
Protocol (PEAP)-MS-CHAP v2 for wireless connections.Answer B is incorrect. Distributed file system (Dfs) is a network server component that makes it
easier for users to find files and resources on distributed enterprise networks. It permits the linking
of servers and shares into a simpler, more meaningful name space. Dfs provides improved load
sharing and data availability.Answer A is incorrect. IPSec has nothing to do with the solution.
Answer C is incorrect. Configuring Link-local Multicast Name Resolution (LLMNR) on the network
has nothing to do with the solution.