What are three elements the Junos Pulse Access Control Service uses to establish endpoint access to protected resources?()A、sign-in policyB、authentication realmsC、role restrictionsD、policy realmsE、routing policy
题目
What are three elements the Junos Pulse Access Control Service uses to establish endpoint access to protected resources?()
- A、sign-in policy
- B、authentication realms
- C、role restrictions
- D、policy realms
- E、routing policy
相似考题
参考答案和解析
更多“What are three elements the Junos Pulse Access Control Service uses to establish endpoint access to protected resources?()A、sign-in policyB、authentication realmsC、role restrictionsD、policy realmsE、routing policy”相关问题
-
第1题:
In a Junos Pulse Access Control Service firewall enforcement configuration, what is the purpose of the source IP policy?()A. to specify the destination addresses to which access is permitted
B. to specify the source address permitted to access the resource
C. to specify the services to which access is permitted
D. to inform the enforcer to expect policy information from the Junos Pulse Access Control Service
参考答案:D
-
第2题:
What are three elements the Junos Pulse Access Control Service uses to establish endpoint access to protected resources?()A. sign-in policy
B. authentication realms
C. role restrictions
D. policy realms
E. routing policy
参考答案:A, B, C
-
第3题:
Which three types of policies must you configure to allow remote users transparent access to protected resources using IF-MAP Federation between a Junos Pulse Secure Access Service and a Junos Pulse Access Control Service?()
A. Session-Export policies on the Junos Pulse Secure Access Service
B. Session-Export policies on the Junos Pulse Access Control Service
C. Session-Import policies on the Junos Pulse Secure Access Service
D. Session-Import policies on the Junos Pulse Access Control Service
E. Resource access policies on the Junos Pulse Access Control Service
参考答案:A, D, E
-
第4题:
A company has completed two acquisitions over the previous year. Each of the acquired companies was allowed to keep its own independent authentication server. The network administrator has been asked to roll out the Junos Pulse Access Control Service to users within the original company along with each of the two acquired organizations.The administrator configures three authentication realms, one for each independent authentication server, and associates them all with a single sign-in policy. All of the client endpoints are running Junos Pulse on their Windows XP desktops.When a user signs in to the Junos Pulse Access Control Service, which statement is correct?()
A. The first authentication realm that was added to the sign-in policy is used by default.
B. The user is allowed to choose the correct authentication realm from a list presented by Junos Pulse.
C. When Junos Pulse is initially installed on the desktop, it must be configured with the correct realm.
D. This is not an allowed configuration; the administrator should configure separate sign-in policies for each realm.
参考答案:B
-
第5题:
You have created a security policy on an SRX240 that permits traffic from any source-address, any destination-address, and any application. The policy will be a source IP policy for use with the Junos Pulse Access Control Service. What must you add to complete the security policy configuration?()
- A、The intranet-auth authentication option
- B、The redirect-portal application service
- C、The uac-policy application service
- D、The ipsec-vpn tunnel
正确答案:C -
第6题:
When using RADIUS as an external authentication method for 802.1X authentication for the Junos Pulse Access Control Service, what must you do to ensure that the RADIUS authentication works properly?()
- A、Configure IP helper to forward the authentication requests from the clients to the external RADIUS server
- B、Configure the supplicant as anexternal authentication server
- C、Configure RADIUS proxy on the realm
- D、Specify the correct RADIUS port 389 on the Junos Pulse Access Control Service
正确答案:C -
第7题:
Your security policy requires that users authenticating to the Junos Pulse Access Control Service are connecting from a domain member endpoint on the internal corporate network.Which set of role access restrictions must you configure to enforce this security policy?()
- A、Source IP and browser
- B、Source IP and certificate
- C、Certificate and Host Checker
- D、Host Checker and source IP
正确答案:D -
第8题:
Which Junos Pulse feature allows the user to log in once through a Junos Pulse Secure Access Service on the network and then access resources protected by a Junos Pulse Access Control Service without reauthentication?()
- A、Roaming Session
- B、Session Migration
- C、Location Awareness
- D、Persistent Session
正确答案:B -
第9题:
Which parameter do you use to enable Junos Pulse Access Control Service enforcement on a policy on a ScreenOS platform?()
- A、uac-policy
- B、ic-policy
- C、inyranet-auth
- D、uac-auth
正确答案:C -
第10题:
What are two use cases enabled by IF-MAP Federation?()
- A、Users authenticated to one Junos Pulse Access Control Service can transparently access resources protected by another Junos Pulse Access Control Service.
- B、Users authenticated to a Junos Pulse Access Control Service can transparently access resources protected by a Junos Pulse Secure Access Service.
- C、Remote access users authenticated to a Junos Pulse Secure Access Service can transparently access resources protected by a Junos Pulse Access Control Service.
- D、Remote access users authenticated to one Junos Pulse Secure Access Service can transparently access resources protected by another Junos Pulse Secure Access Service.
正确答案:A,C -
第11题:
You have a Junos Pulse Secure Access Service acting as an IF-MAP client, configured to federate all user roles to a Junos Pulse Access Control Service acting as an IF-MAP Federation server. A remote user using Junos Pulse logs in to the Junos Pulse Secure Access Service; the Junos Pulse Secure Access Service provisions a remote access session for that user.What happens next?()
- A、The Junos Pulse Secure Access Service redirects the user to the Junos Pulse Secure Access Service for authentication
- B、The Junos Pulse Access Control Service provisions enforcement points to enable resource access for that user.
- C、The Junos Pulse Secure Access Service publishes user session and role information to the IF- MAP Federation server,
- D、The Junos Pulse Secure Access Service provisions enforcement points to enable resource access for that user.
正确答案:C -
第12题:
多选题What are three benefits of IF-MAP Federation?()AEnables seamless access for remote access users to firewall enforcer protected resources.
BScales a Junos Pulse Access control Service deployment beyond the capacity of a single cluster.
CEnables dynamic configuration synchronization across multiple MAG Series devices.
DProvides a substitute for WAN clustering among geographically separated MAG Series devices.
EShares non-localized DP integration and IPsec configuration information between multiple Junos Pulse Access Control Service instances.
正确答案: C,B解析: 暂无解析 -
第13题:
On the Junos Pulse Access Control Service, you have created a role called Secret that you only want to provide to users who present a certificate.Using the admin GUI, which two features would you configure to satisfy this requirement?()
A. Sign-in Policy
B. Role Mapping Rule
C. Role Restrictions
D. Trusted Server CA
参考答案:B, C
-
第14题:
When using RADIUS as an external authentication method for 802.1X authentication for the Junos Pulse Access Control Service, what must you do to ensure that the RADIUS authentication works properly?()A. Configure IP helper to forward the authentication requests from the clients to the external RADIUS server
B. Configure the supplicant as anexternal authentication server
C. Configure RADIUS proxy on the realm
D. Specify the correct RADIUS port 389 on the Junos Pulse Access Control Service
参考答案:C
-
第15题:
In a Junos Pulse Access Control Service active/active clustered environment, which statement is true about VIPs?()A. VIP is not required when using only agentless access for all endpoint platforms.
B. VIP is not required when using Junos Pulse or Odyssey Access Client for all endpoint platforms.
C. VIP is not required when using Junos Pulse and agentless access for all endpoint platforms.
D. VIP is not required when using Odyssey Access Client and agentless access for all endpoint platforms.
参考答案:B
-
第16题:
What are two steps to configure user authentication for a Junos Pulse Access Control Service?()
- A、Configure an authentication policy as part of the user role definitions.
- B、Configure a Sign-in Policy.
- C、Configure authentication agents as part of the user role definitions
- D、Configure an authentication policy as part of the authentication realm definition.
正确答案:B,D -
第17题:
On the Junos Pulse Access Control Service, you have created a role called Secret that you only want to provide to users who present a certificate.Using the admin GUI, which two features would you configure to satisfy this requirement?()
- A、Sign-in Policy
- B、Role Mapping Rule
- C、Role Restrictions
- D、Trusted Server CA
正确答案:B,C -
第18题:
In a Junos Pulse Access Control Service firewall enforcement configuration, what is the purpose of the source IP policy?()
- A、to specify the destination addresses to which access is permitted
- B、to specify the source address permitted to access the resource
- C、to specify the services to which access is permitted
- D、to inform the enforcer to expect policy information from the Junos Pulse Access Control Service
正确答案:D -
第19题:
You want to create a security policy on an SRX240 that redirects unauthenticated users back to the Junos Pulse Access Control Service.Which two steps must you take to accomplish this task?()
- A、Configure a captive-portal service that redirects all traffic back to the Junos Pulse Access Control Service.
- B、Configure a security policy that references the unified-access-control captive-portal service.
- C、Configure a captive-portal service that redirects unauthenticated traffic back to the Junos Pulse Access Control Service.
- D、Configure a security policy that references the unified-access-control intranet-controller service.
正确答案:B,C -
第20题:
Which three types of policies must you configure to allow remote users transparent access to protected resources using IF-MAP Federation between a Junos Pulse Secure Access Service and a Junos Pulse Access Control Service?()
- A、Session-Export policies on the Junos Pulse Secure Access Service
- B、Session-Export policies on the Junos Pulse Access Control Service
- C、Session-Import policies on the Junos Pulse Secure Access Service
- D、Session-Import policies on the Junos Pulse Access Control Service
- E、Resource access policies on the Junos Pulse Access Control Service
正确答案:A,D,E -
第21题:
What are three benefits of IF-MAP Federation?()
- A、Enables seamless access for remote access users to firewall enforcer protected resources.
- B、Scales a Junos Pulse Access control Service deployment beyond the capacity of a single cluster.
- C、Enables dynamic configuration synchronization across multiple MAG Series devices.
- D、Provides a substitute for WAN clustering among geographically separated MAG Series devices.
- E、Shares non-localized DP integration and IPsec configuration information between multiple Junos Pulse Access Control Service instances.
正确答案:A,B,E -
第22题:
What is the function of Host Checker?()
- A、To allow clientless access to the network
- B、To restrict access to protected resources on the network
- C、To scan an endpointfor compliance with security policies
- D、To push a firewall policy to the endpoint's local firewall application
正确答案:B -
第23题:
多选题What are three elements the Junos Pulse Access Control Service uses to establish endpoint access to protected resources?()Asign-in policy
Bauthentication realms
Crole restrictions
Dpolicy realms
Erouting policy
正确答案: E,A解析: 暂无解析