X

AZ-801 / Q14 / T1

  • 4 views
Exam
Microsoft AZ-801
Answer needs confirmation
Question

You have 10 servers that run Windows Server in a workgroup.
You need to configure the servers to encrypt all the network traffic between the servers. The solution must be as secure as possible.
Which authentication method should you configure in a connection security rule?

 

Proposed answer
  • A. NTLMv2
  • B. pre-shared key
  • C. Kerberos V5
  • D. computer certificate
Suggested answer
  • D. computer certificate

 

Correct answer
 
starseed

3 months ago 

correct anser d
upvoted 1 times 
 
 
syu31svc

1 year, 7 months ago 

Selected Answer: D
A. NTLMv2: NTLMv2 is an authentication protocol that is used for authentication between client and server, but it does not provide encryption. Additionally, NTLMv2 is susceptible to various attacks and has known vulnerabilities. B. Pre-shared key: Pre-shared key authentication involves sharing a secret key between two devices. While this method provides some level of authentication and encryption, it has some disadvantages such as the difficulty of managing and distributing keys in large environments. C. Kerberos V5: Kerberos is an authentication protocol that provides mutual authentication between client and server. While it provides some level of security, it is vulnerable to several attacks such as brute-force attacks and pass-the-ticket attacks. Answer is D
upvoted 4 times 
 
 
xxxxx85xx

2 years, 8 months ago 

Correct Answer
upvoted 3 times 
 
51007

2 years, 5 months ago 

if you could've spared an extra few seconds to clarify why you say "correct answer", it would have really been appreciated by those of us who want to learn.
upvoted 8 times 
 
WMG

2 years, 4 months ago 

If you want to learn, why not read the reference? A. Wrong - NTLMv2 is Authentication for the device. B. Wrong - This is not very secure. C. Wrong - This is the same reason as A Leaving us with one option, D) Certificate, which is the most secure way to encrypt traffic between the servers.
upvoted 6 times 
 
51007

2 years, 2 months ago 

I do read the references. Doesn't make me appreciate a well-thought out comment any less............
upvoted 8 times 
 
 
jimmyjose

2 years, 1 month ago 

Certificate form part of PKI (public key infrastructure), and are used for authentication and encryption purposes. Also, since they are workgroup based servers, NTLM and Kerberos cannot be suitable answers because these protocols are domain-based. Lastly, a pre-shared key is used to authenticate 2 VPN Gateways. Hence, the answer is 'D'.
upvoted 13 times