4.3.7 Practice Questions
You need to implement a solution for the sales reps who complain that they are unable to establish VPN connections when they travel because the hotel or airport firewalls block the necessary VPN ports. Which VPN security protocol can you use to resolve this issue?
SSTP
You are a new system administrator, and your company has just mandated that users need to work from home and connect to files and folders on the network. Which option will allow users to connect to the corporate network remotely and securely?
Set up a virtual private network (VPN) on the server side and install the client on each remote user's laptop.
You are configuring an application trigger and split tunneling on your VPN connections for your users. Match each command with its description.
Set up the app trigger Add-VpnConnectionTriggerApplication -Name %Name of VPN% -ApplicationID %Path to Application% Enable split tunneling Set-VpnConnection -Name %Name of VPN% -SplitTunneling $True Set the idle disconnect time Set-VpnConnection -Name $vpn -IdleDisconnectSeconds 5 Remove auto-trigger Remove-VpnConnectionTriggerApplication -Name $vpn -ApplicationID $app Confirm auto-trigger settings Get-VpnConnectionTrigger -Name $vpn
You're the new systems administrator for a consulting firm, and you've been tasked with implementing an appropriate VPN option. The firm has salespeople and technicians spread out across the United States. You need to develop a VPN solution that will allow these users to remote into their network drive to upload various reports and data. Because your users are so spread out, there's no easy way to hold a training for them. You want to reduce the number of help desk support calls regarding the VPN, so you need to create a solution that makes everything seamless and easy for your users. You decide to implement a VPN that's triggered only when the user opens the Remote Desktop Connection application. This will allow your users to connect to the internet normally and shouldn't require extra steps to start the VPN or switch networks on the Remote Desktop Connection application. You're working on a PowerShell script that users can run to enable and configure the app-triggered VPN. Which PowerShell command enables the split tunneling option?
Set-VpnConnection -Name %Name of VPN% -SplitTunneling $True
You're the new systems administrator for a consulting firm, and you've been tasked with implementing an appropriate VPN option. The firm has salespeople and technicians spread out across the United States. You need to develop a VPN solution that will allow these users to remote into their network drive to upload various reports and data. Because your users are so spread out, there's no easy way to hold a training for them. You want to reduce the number of help desk support calls regarding the VPN, so you need to create a solution that makes everything seamless and easy for your users. You decide to implement a VPN that's triggered only when the user opens the Remote Desktop Connection application. This will allow your users to connect to the internet normally and shouldn't require extra steps to start the VPN or switch networks on the Remote Desktop Connection application. Which of the following do you have to enable before the app-triggered VPN will work properly?
Split tunneling
You use a VPN connection on your Windows desktop system to access resources on a corporate intranet. In addition to accessing the intranet resources, you need to access the internet while the VPN connection is active. How can you prevent internet traffic from going through the VPN connection?
Configure the Advanced TCP/IP Settings of the VPN connection.
You have all Windows 10 devices in your cloud-based Intune environment. You want to set up Always On VPN on each device to utilize the built-in VPN client in Windows 10. What is the fastest way for you to configure all your devices?
Create an Always On VPN configuration profile in Intune and assign it to the AllUsers group.
You have a user remotely connecting to the corporate network from a client location. They can connect to the corporate network file server. But they cannot access files and folders they need on the client LAN in order to work on their project. What would you enable in order to allow the user to access resources on both networks while the VPN is connected?
Enable split tunneling
You have been put in charge of providing a VPN solution for employees who work remotely. When these employees change locations, they lose their VPN connection. You want them to automatically reconnect if the VPN connection is lost or disconnected. Which VPN security protocol supports the VPN Reconnect functionality?
IKEv2
The sales reps in your organization use a VPN connection on their Windows notebook systems to access the corporate network while traveling. You are concerned that a sales rep has configured his VPN connection to automatically remember his credentials for accessing the VPN server. This violates your organization's security policy. Click the option in the VPN Connection Properties dialog you would use to disable this functionality.
Options