Your company is using a dynamic VPN configuration on their SRX device. Your manager
asks you to enforce password expiration policies for all VPN users. Which authentication
method meets the requirement?
A.
LDAP
B.
local password database
C.
TACACS+
D.
RADIUS
Explanation:
Shouldn’t it be D because see chapter 7 slide 34 AJSEC…?
Alternately, you can configure the SRX device to use a RADIUS server to handle the authentication and IP assignment.
I should be “D”.
It will be LDAP , GOD willing 🙂
https://kb.juniper.net/InfoCenter/index?page=content&id=KB21978&actp=search
Although SRX supports LDAP, I believe the correct answer should be D.
http://www.juniper.net/documentation/en_US/junos12.1×47/topics/concept/dynamic-vpn-enhancement-understanding.html
There are two cases to consider when configuring dynamic VPN:
– When users are configured locally, …..
– Users can be configured on an external authentication server, such as a RADIUS server…
LDAP is not mentioned as authentication method in AJSEC 12
Passed JN0-633 exam recently!
65 multiple choice questions, a little difficult to pass.
Pay close attention to questions on AppQoS, Routing (OSPF, BGP) in VPN (group, auto and hub-and-spoke), AppSecure, troubleshoot of IPSec, etc.
I learned valid JN0-633 dumps here:
http://www.passleader.com/jn0-633.html (209Q VCE and PDF)
Recommend to you!
P.S.
You can download that 209Q dumps for free, here:
https://doc.co/Tek7cT
Good Luck!