AZ-801 / Q8 / T1

xxxxx85xx

Highly Voted 2 years, 8 months ago 

Correct - Require Kerberos V5 for both (minimize effort).

upvoted 8 times 

starseed

Most Recent 3 months ago 

Both GPO1 is the answer

upvoted 1 times 

fbx01

10 months, 2 weeks ago 

GPO 1 FOR BOTH

upvoted 2 times 

syu31svc

1 year, 7 months ago 

https://learn.microsoft.com/en-us/windows/security/threat-protection/windows-firewall/configure-authentication-methods Computer (NTLMv2). Selecting this option tells the computer to use and require authentication of the computer by using its domain credentials. This option works only with other computers that can use AuthIP. User-based authentication using Kerberos V5 isn't supported by IKE v1. User (NTLMv2). Selecting this option tells the computer to use and require authentication of the currently signed-in user by using their domain credentials, and uses the NTLMv2 protocol instead of Kerberos V5. This authentication method works only with other computers that can use AuthIP. User-based authentication using Kerberos V5 isn't supported by IKE v1. Answer is correct

upvoted 2 times 

Burnie

2 years ago 

Correct. Computer and User (using Kerberos V5). Selecting this option tells the computer to use and require authentication of both the computer and the currently logged-on user by using their domain credentials. https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-firewall/configure-authentication-methods

upvoted 3 times