You are the security administrator of your network. The network consists of an Active Directory domain. All computers on the network are in the domain. The domain controllers and file servers on the network run Windows Server 2003. The client computers run Windows XP Professional.
The file servers use a custom IPSec policy named Server Traffic. The Server Traffic policy contains rules to encrypt Telnet and SNMP traffic, as shown in the exhibit. (Refer to the Exhibit.) All client computers use the Client (Respond Only) IPSec policy. The default exemptions to IPSec filtering are disabled on the client computer. You want to configure the network so that Telnet, SNMP, and Kerberos traffic is encrypted by IPSec.
You do not want to encrypt other network protocols. What should you do? (Each correct answer presents part of the solution. Choose two.)
A.
On the client computers, enable the default exemptions to IPSec filtering.
B.
On the file servers, enable the default exemptions to IPSec filtering.
C.
On the file servers, configure the IPSec policy in the local computer policy to encrypt Kerberos traffic.
D.
Add a new rule to the Server Traffic policy to encrypt Kerberos traffic.
E.
Configure the Server Traffic policy to enable the Default Response rule.
F.
Configure the rules in the Server Traffic policy to use an authentication method other than Kerberos.