多項(xiàng)選擇題

Your company has a server that runs Windows Server 2008. Certification Services is configured as a stand-alone Certification Authority （CA） on the server. You need to audit changes to the CA configuration settings and the CA security settings. Which two tasks should you perform（）

A.Configure auditing in the Certification Services snap-in.
B.Enable auditing of successful and failed attempts to change permissions on files in the %SYSTEM32% \CertSrv directory.
C.Enable auditing of successful and failed attempts to write to files in the %SYSTEM32%\CertLog directory.
D.Enable the Audit object access setting in the Local Security Policy for the Certification Services server.

你可能感興趣的試題

單項(xiàng)選擇題

Your company uses a Windows 2008 Enterprise certificate authority （CA） to issue certificates. You need to implement key archival. What should you do（）

A.Archive the private key on the server.
B.Apply the Hisecdc security template to the domain controllers.
C.Configure the certificate for automatic enrollment for the computers that store encrypted files.
D.Install an Enterprise Subordinate CA and issue a user certificate to users of the encrypted files.

單項(xiàng)選擇題

ou have a Windows Server 2008 Enterprise Root CA. Security policy prevents port 443 and port 80 from being opened on domain controllers and on the issuing CA. You need to allow users to request certificates from a Web interface. You install the AD CS role. What should you do next（）

A.Configure the Online Responder Role Service on a member server.
B.Configure the Online Responder Role Service on a domain controller.
C.Configure the Certification Authority Web Enrollment Role Service on a member server.
D.Configure the Certification Authority Web Enrollment Role Service on a domain controller.