Chapter 6: Lesson Review Answers
Lesson
Correct Answer: B
Incorrect: AH provides data authentication but not data encryption.
Correct: ESP is the protocol that provides encryption for IPsec.
Incorrect: A server-to-server type connection security rule is used to authenticate data between two endpoints on a network. It cannot be used to encrypt all traffic in a domain.
Incorrect: A tunnel type connection security rule is used to authenticate data between a tunnel endpoint and a client or set of clients. It cannot be used to encrypt all traffic in a domain.
Correct Answer: A
Correct: If both domains are in the same Active Directory forest, you can use the Kerberos protocol built into Active Directory to provide authentication for IPsec communication.
Incorrect: ...
Get Self-Paced Training Kit (Exam 70-642): Configuring Windows Server® 2008 Network Infrastructure now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.