Which two are true about authentication？（）A、Form-based logins should NOT be used with HTTPS.B、When using Basic Authentication the target server is NOT authenticated.C、J2EE compliant web containers are NOT required to support the HTTPS protocol.D、Web conta

第1题：

Which two statements are true regarding firewall user authentication?（） (Choose two.)

• A、When configured for pass-through firewall user authentication, the user must first open a connection to the Junos security remote network resource.
• B、When configured for Web firewall user authentication only, the user must first open a connection to the Junos security remote network resource.
• C、If a Junos security device is configured for pass-through firewall user authentication, new sessions are automatically intercepted .
• D、If a Junos security device is configured for Web firewall user authentication, new sessions are automatically intercepted.

第2题：

Which two authentication mechanisms provide weaker protection than other mechanisms？（）

• A、 HTTP Basic Authentication
• B、 Form Based Authentication
• C、 HTTP Digest Authentication
• D、 HTTPS Client Authentication

第3题：

Which basic authentication type is optional for a J2EE 1.4 compliant web container？（）

• A、HTTP Basic Authentication
• B、Form Based Authentication
• C、HTTP Digest Authentication
• D、HTTPS Client Authentication

第4题：

Which two statements are true about using the isUserInRole method to implement security in a Java EEapplication？（）

• A、It can be invoked only from the doGet or doPost methods.
• B、It can be used independently of the getRemoteUser method.
• C、Can return "true" even when its argument is NOT defined as a valid role name in the deployment descriptor.
• D、Using the isUserInRole method overrides any declarative authentication related to the method in which it is invoked.

第5题：

Which two statements regarding external authentication servers for firewall user authentication are true?（） (Choose two.)

• A、Up to three external authentication server types can be used simultaneously.
• B、Only one external authentication server type can be used simultaneously.
• C、If the local password database is not configured in the authentication order, and the configured authentication server  bypassed.
• D、If the local password database is not configured in the authentication order, and the configured authentication server authentication is rejected.

第6题：

Your company has a server that runs Windows Server 2008. The server has the Web Server （IIS） role installed.  You need to activate SSL for the default Web site.  Which two actions should you perform？（）

• A、Obtain and import a server certificate by using the IIS Manager console.
• B、Select the Generate Key option in the Machine Key dialog box for the default Web site.
• C、Add bindings for the HTTPS protocol to the default Web site by using the IIS Manager console.
• D、Install the Digest Authentication component for the Web server role by using the Server Manager console.

第7题：

You work as the IT professional in an international company which is named Wiikigo. You are experiencedin implementing and administering a network operating system. You are specialized in deploying servers，configuring Windows Server 2008 Terminal services and network application services， and configuring aweb services infrastructure. You are in charge of a server that runs Windows Server 2008. The server hasthe Web Server （IIS） server role installed. The Web developer at your company creates a new Web sitethat runs an ASP.NET 3.0 Web application. The ASP.NET Web application must run under a securitycontext that is separate from any other ASP.NET application on the Web server. You create a local useraccount and grant account rights and permissions to run the ASP.NET Web application. Authentication forthe new Web site should be configured to support the Web application. What action should you perform？（）

• A、The ASP.NET Impersonation setting should be configured to Enabled. Edit the ASP.NET Impersonation setting by specifying the new local user account.
• B、The Windows Authentication setting should be configured to Enabled.
• C、The Forms Authentication setting should be configured to Enabled by using all the default settings.
• D、The ASP.NET State Service should be configured to log on to the new local user account by using the Services console.

第8题：

You manage a server that runs Windows Server 2008. The server has the Web Server （IIS） role installed. The Web developer at your company creates a new Web site that runs an ASP.NET 3.0 Web application.  The ASP.NET Web application must run under a security context that is separate from any other ASP.NET application on the Web server.  You create a local user account and grant account rights and permissions to run the ASP.NET Web application.  You need to configure authentication for the new Web site to support the Web application. What should you do？（）

• A、Configure the Windows Authentication setting to Enabled.
• B、Configure the Forms Authentication setting to Enabled by using all the default settings.
• C、Configure the ASP.NET State service to log on to the new local user account by using the Services console.
• D、Configure the ASP.NET Impersonation setting to Enabled. Edit the ASP.NET Impersonation setting by specifying the new local user account.

第9题：

You manage a server that runs Windows Server 2008. The server has the Web Server （IIS） role installed. The server hosts an Internet-accessible Web site that has a virtual directory named /orders/. A Web server certificate is installed and an SSL listener has been configured for the Web site. The /orders/ virtual directory must meet the following company policy requirements： Be accessible to authenticated users only. Allow authentication types to support all browsers. Encrypt all authentication traffic by using HTTPS.  All other directories of the Web site must be accessible to anonymous users and be available withoutSSL.  You need to configure the /orders/ virtual directory to meet the company policy requirements.  Which two actions should you perform？（）

• A、Configure the Web site to the Require SSL setting.
• B、Configure the /orders/ virtual directory to the Require SSL setting.
• C、Configure the Digest Authentication setting to Enabled for the /orders/ virtual directory.
• D、Configure the Basic Authentication setting to Enabled and the Anonymous Authentication setting to Disabled for the Web site.
• E、Configure the Basic Authentication setting to Enabled and the Anonymous Authentication setting to Disabled for the /orders/ virtual directory.

第10题：

第11题：

第12题：

第13题：

In the wireless Advanced Feature Set using lightweight access points， a virtual interface is used when supporting which of the following features？（）

• A、PSK authentication
• B、EAP authentication
• C、WPA authentication
• D、Web authentication

第14题：

Which activity supports the data integrity requirements of an application？（）

• A、Using HTTPS as a protocol
• B、Using an LDAP security realm
• C、Using HTTP Basic authentication
• D、Using forms-based authentication

第15题：

When using a form-based authentication， which action must be used in the login form？（）

• A、 j_login
• B、 j_get_user
• C、 j_login_check
• D、 j_get_security
• E、 j_security_check

第16题：

Which two statements regarding external authentication servers for firewall userauthentication are true？（）

• A、Up to three external authentication server types can be used simultaneously.
• B、Only one external authentication server type can be used simultaneously.
• C、If the local password database is not configured in the authentication order， and the configured authentication server is unreachable， authentication is not performed.
• D、If the local password database is not configured in the authentication order， and the configured authentication server rejects the authentication request， authentication is not performed

第17题：

Which two statements are true regarding firewall user authentication？（）

• A、When configured for pass-through firewall user authentication， the user must first open a connection to the JUNOS security platform before connecting to a remote network resource.
• B、When configured for Web firewall user authentication only， the user must first open a connection to the JUNOS security platform before connecting to a remote network resource.
• C、If a JUNOS security device is configured for pass-through firewall user authentication， new sessions are automatically intercepted to perform authentication.
• D、If a JUNOS security device is configured for Web firewall user authentication， new sessions are automatically intercepted to perform authentication.

第18题：

You are the network administrator for your company. The network consists of a single Active Directory domain. All servers run Windows Server 2003. The network contains a Web server that runs IIS 6.0 and hosts a secure intranet site. All users are required to connect to the intranet site by authenticating and using HTTPS. However， because an automated Web application must connect to the Web site by using HTTP， you cannot configure the intranet site to require HTTPS.  You need to collect information about which users are connecting to the Web site by using HTTPS.   What should you do？（）

• A、Check the application log on the Web server.
• B、Use Network Monitor to capture network traffic on the Web server.
• C、Review the log files created by IIS on the Web server.
• D、Configure a performance log to capture all Web service counters. Review the performance log data.

第19题：

You need to design an access control strategy for the external and intranet Web sites. Which two actions should you perform？（）

• A、Enable SSL on the external Web site by using a Microsoft cryptographic service provider （CSP）
• B、Enable Microsoft .NET Passport authentication on the external Web site. Use Passport Level 0 with SSL on the external Web site
• C、Enable SSL on the external Web site by using a commercial digital certificate
• D、Enable SSL on the intranet Web site by using an internal server certificate
• E、Enable SSL on the external Web site by using an internal server certificate

第20题：

You are an IIS Web server administrator implementing authentication settings for a new Web site.According to the requirements for the Human Resources Web site， users should be prompted forauthentication information when they attempt to access the site. The site will be accessed only by userswho have accounts in your organization’s Active Directory domain. You have already configured the filesystem permissions for the content based on the appropriate settings. You also want to maximize securityof the site. Which two actions should you take to meet these requirements？（）

• A、Enable Windows authentication.
• B、Enable basic authentication.
• C、Disable anonymous authentication.
• D、Enable anonymous authentication.

第21题：

You administer a SQL Server 2008 Reporting Services (SSRS) instance. You plan to design an authentication method for SSRS reports that use SQL Server data connections. You need to ensure that all SSRS reports communicate to the SQL Server instance by using the Kerberos authentication protocol. What should you do?（）

• A、Configure the default Web site on the instance to use the Integrated Security type.
• B、Configure the application pool used by the default Web site to use a domain account. 
• C、Configure the default Web site on the instance to use the Secure Sockets Layer (SSL) protocol.
• D、Register a service principal name (SPN) in the Active Directory directory service for the SSRS instance.

第22题：

第23题：