Windows Network Administration: Chapter 09 - Configuring Remote Access Services
Modern Windows implementations of PPTP utilize either MPPE 40-bit encryption. (True/False)
False
Only Windows 8 or newer can access Remote Desktop Services on Windows Server 2016. (True/False)
False
What is NOT a requirement for the use of DirectAccess?
Client computers must be running Windows 10 or later
What Remote Desktop Services role related feature helps to prevent man-in-the-middle attacks by requiring authentication before RDS connections are established?
Network Level Authentication
What statement regarding the Password Authentication Protocol is accurate?
PAP can perform authentication, but does not require it
What statement regarding the Point-to-Point Protocol (PPP) is NOT accurate?
PPP supports only the TCP/IP protocol
Regarding the deployment of Windows Server 2016 VPN services, what VPN protocol is considered the least secure option?
PPTP (Point-to-Point Tunneling Protocol)
You have been tasked with implementing a VPN server that will allow clients to connect from mobile networks and from networks that utilize restrictive firewalls. What VPN tunneling protocol has the best chance to be successful, given the constraints?
Secure Socket Tunneling Protocol
What is T-Carrier communication technology?
T-Carriers are dedicated leased telephone lines that can be used for data communications over multiple channels
A DSL adaptor is a digital communications device that links a computer (or sometimes router) to a DSL telecommunications line. (True/False)
True
AN RFC 1514 compliant router will allow broadcast traffic to pass through the router for use with VPN services. (True/False)
True
By installing and using the Active Directory Certificate Services role, a Public Key Infrastructure (PKI) is established. (True/False)
True
What TCP port should be open and accessible to allow remote access VPN utilizing SSTP to function?
443
Microsoft's Point-to-Point Encryption uses encryption keys that have varying length of what size?
40 bits and 128 bits
After installing Routing and Remote Access, a default remote access policy is created. What is the default access permission defined in this policy?
Deny Access
When selecting authentication types for an RAS (Remote Access Service) server, what is considered to be the most secure authentication type?
Extensible Authentication Protocol
What communications technology utilizes packet switching and virtual connection techniques to transmit at rates from 56 Kbps to 45 Mbps?
Frame Replay
The Layer Two Tunneling Protocol uses what set of standards to provide encryption and security for a tunnel?
IP Security (IPSec)
What VPN tunneling protocol enables fowarding on the basis of MAC addressing?
Layer Two Tunneling Protocol
What authentication protocol can perform authentication, but does not require it, so that operating systems without password encryption capabilities can still connect to RAS (Remote Access Service)?
Password Authentication Protocol
What Remote Desktop Service role can be used when multiple RDS servers are on a network, and ensure that a client connects to the right server, as well as ensuring that clients are load balanced amongst servers?
Remote Desktop Connection Broker
What role service available through Remote Desktop Services enables clients to establish an encrypted connection to virtual desktops and RemoteApp programs to an RDS server through the Internet using HTTPS?
Remote Desktop Gateway
What role service available through Remote Desktop Services enables clients to use a web browser or the Start menu to view a list of RemoteApp programs and to start RemoteApp programs on the RDS server?
Remote Desktop Web Access
What RDS feature enables a client to run an application without loading a remote desktop on the client computer?
RemoteApp
What remote access tunneling protocol encapsulates data within HTTP packets for transit across the Internet?
SSTP (Secure Socket Transport Protocol)
What statement regarding the Secure Socket Tunneling Protocol is NOT accurate?
SSTP is viewed as more secure than PPTP or L2TP because it encrypts using a 128-bit key
You care configuring a Windows Server 2016 VPN server using L2TP and NAT. What is NOT one of the ports that need to be opened on the firewall for this configuration to work?
TCP 1723
You are deploying VPN services behind a router that is not RFC 1541 compliant. What will you need to do to ensure that clients receive IPs from the DHCP server on the network?
Utilize a DHCP relay agent to forward broadcasts to the client devices
What RAS (Remote Access Service) capability allows an organization to publish applications to be accessible to users outside of the organization, while still maintaining those applications on the organization's servers?
Web Application Proxy
In order to utilize SSTP, what is the minimum supported Windows version that must be installed for the client?
Windows Vista
