单选题Your network contains a stand-alone certification authority (CA) and a Web server. The Web server hosts a secure Web site. The Web site uses a server certificate that was issued from the CA. Users report that they receive a certificate warning message 

题目
单选题
Your network contains a stand-alone certification authority (CA) and a Web server. The Web server hosts a secure Web site. The Web site uses a server certificate that was issued from the CA. Users report that they receive a certificate warning message when they connect to the Web site. You need to prevent users from receiving the certificate warning message when they connect to the Web site. What should you do from the Internet Options in Internet Explorer?()
A

Import the CA certificate to the trusted root CA certificate store. 

B

Import the server authentication certificate to the trusted publishers certificate store.

C

Clear the Check for publisher's certificate revocation check box. 

D

Clear the Require server verification (https:) for all sites in this zone check box for the Trusted sites zone.

相似考题

1. our network contains a Web server named Server1 that runs Windows Server 2003 and Internet Information Server (IIS). Server1 has a server certificate from an Enterprise Certificate Authority (CA) installed.External users report that when they try to access the Web site from outside the corporate network by using a Web browser, they receive the following warning message: “There is a problem with this Web site’s security certificate. The security certificate presented by this Web site was not issued by a trusted certificate authority.”  You find that users on the corporate network do not receive this error.You need to ensure that external users do not receive the warning message when connecting to Server1.  What should you do?()A、In IIS Manager, enable the Enable client certificate mapping option. B、In IIS Manager, replace the certificate with a certificate obtained from a public Certification Authority. C、In Local Security Policy, enable Domain Member: Require strong (Windows 2000 or later) session key. D、In Local Security Policy, enable Domain Member: Digitally encrypt or sign secure channel data

2. You have an enterprise root certification authority (CA) that runs Windows Server 2008 R2.     You need to ensure that you can recover the private key of a certificate issued to a Web server.     What should you do()A、From the ca, run the Get-PfxCertificate cmdlet.B、From the Web server, run the Get-PfxCertificate cmdlet.C、From the ca, run the certutil.exe tool and specify the -exportpfx parameter.D、From the Web server, run the certutil.exe tool and specify the -exportpfx parameter.

3. You are the network administrator for your company. The network consists of a single Active Directory domain. All servers run Windows Server 2003. The network contains a Web server that runs IIS 6.0 and hosts a secure intranet site. All users are required to connect to the intranet site by authenticating and using HTTPS. However, because an automated Web application must connect to the Web site by using HTTP, you cannot configure the intranet site to require HTTPS.  You need to collect information about which users are connecting to the Web site by using HTTPS.   What should you do?()A、Check the application log on the Web server.B、Use Network Monitor to capture network traffic on the Web server.C、Review the log files created by IIS on the Web server.D、Configure a performance log to capture all Web service counters. Review the performance log data.

4. You are a systems administrator troubleshooting a problem with accessing a Web server running WindowsServer 2008. Previously, another administrator created and installed a server certificate on the computer.Users report that they are able to connect to the site using HTTP but that they receive a warning in InternetExplorer when trying to connect by HTTPS. You want to enable users to connect using both HTTP andHTTPS. You attempt to access the site by using an instance of Internet Explorer on the server itself, andyou receive the same warning message for HTTPS connections. How can you resolve this issue?()A、Change the site binding for the Web site to enable connections on port 443.B、Change the SSL settings for the Web site to enable the Require SSL option.C、Obtain and install an Internet Certificate on the Web server.D、Export and re import the existing security certificate.

参考答案和解析
正确答案: C
解析: 暂无解析
更多“单选题Your network contains a stand-alone certification authority (CA) and a Web server. The Web server hosts a secure Web site. The Web site uses a server certificate that was issued from the CA. Users report that they receive a certificate warning message ”相关问题

  • 第1题:

    Your network contains a stand-alone certification authority (CA) and a Web server. The Web server hosts a secure Web site. The Web site uses a server certificate that was issued from the CA. Users report that they receive a certificate warning message when they connect to the Web site. You need to prevent users from receiving the certificate warning message when they connect to the Web site. What should you do from the Internet Options in Internet Explorer?() 

    • A、Import the CA certificate to the trusted root CA certificate store. 
    • B、Import the server authentication certificate to the trusted publishers certificate store.
    • C、Clear the Check for publisher's certificate revocation check box. 
    • D、Clear the Require server verification (https:) for all sites in this zone check box for the Trusted sites zone.

    正确答案:A

  • 第2题:

    Your network contains a Web server named Server1 that runs Windows Server 2003 and Internet Information Server (IIS). Server1 has a server certificate from an Enterprise Certificate Authority (CA) installed. External users report that when they try to access the Web site from outside the corporate network by using a Web browser, they receive the following warning message: There is a problem with this Web sites security certificate. The security certificate presented by this Web site was not issued by a trusted certificate authority. You find that users onthe corporate network do not receive this error. You need to ensure that external users do not receive the warning message when connecting to Server1.   What should you do?()

    • A、In IIS Manager, enable the Enable client certificate mapping option.
    • B、In IIS Manager, replace the certificate with a certificate obtained from a public Certification Authority.
    • C、In Local Security Policy, enable Domain Member: Require strong (Windows 2000 or later) session key.
    • D、In Local Security Policy, enable Domain Member: Digitally encrypt or sign secure channel data (always).

    正确答案:B

  • 第3题:

    You have an Exchange Server 2010 organization.Users on the network use HTTPS to connect to Outlook Web App (OWA).The Client Access server uses a certificate issued by an internal certification authority (CA).You plan to deploy an e-mail encryption solution for all users. You need to ensure that users can send and receive encrypted e-mail messages by using S/MIME from OWA.What should you do?()

    • A、Issue a certificate to each user
    • B、Instruct all OWA users to import a root CA certificate
    • C、Modify the authentication settings of the OWA virtual directory
    • D、Configure the Client Access Server to use a certificate issued by a third-party CA

    正确答案:A

  • 第4题:

    Your company has an internal Web site that requires HTTPS. The Web site s certificate is self-signed. Youhave a computer that runs Windows 7 and Windows Internet Explorer 8. You use HTTPS to browse to theWeb site and receive the following warning message: There is a problem with this website s security certificate. You need to prevent the warning message from appearing when you access the Web site.  What should you do?()

    • A、From Internet Explorer, enable InPrivate Browsing.
    • B、From Internet Explorer, add the Web site to the Trusted sites zone.
    • C、From Certificate Manager, import the Web site s certificate into your Personal store.
    • D、From Certificate Manager, import the Web site s certificate into your Trusted Root CertificationAuthorities store.

    正确答案:D

  • 第5题:

    Your network contains a Web server named Server1 that runs Windows Server 2003 and Internet Information Server (IIS). Server1 has a server certificate from an Enterprise Certificate Authority (CA) installed.External users report that when they try to access the Web site from outside the corporate network by using a Web browser, they receive the following warning message: “There is a problem with this Web site’s security certificate. The security certificate presented by this Web site was not issued by a trusted certificate authority.”  You find that users on the corporate network do not receive this error. You need to ensure that external users do not receive the warning message when connecting to Server1.  What should you do?()

    • A、In IIS Manager, enable the Enable client certificate mapping option.
    • B、In IIS Manager, replace the certificate with a certificate obtained from a public Certification Authority.
    • C、In Local Security Policy, enable Domain Member: Require strong (Windows 2000 or later) session key.
    • D、In Local Security Policy, enable Domain Member: Digitally encrypt or sign secure channel data (always).

    正确答案:B

  • 第6题:

    You are the network administrator for your company. The network consists of a single Active Directory domain. All servers run Windows Server 2003.The network contains a Web server named Server1 that runs IIS 6.0 and hosts a secure Web site. The Web site is accessible from the intranet, as well as from the Internet. All users must authenticate when they connect to Server1. All users on the Internet must use a secure protocol to connect to the Web site. Users on the intranet do not need to use a secure protocol.You need verify that all users are using a secure protocol to connect to Server1 from the Internet.   What are two possible ways to achieve this goal?()

    • A、Monitor the events in the application log on Server1.
    • B、Monitor the events in the security log on Server1.
    • C、Monitor the Web server connections on Server1 by using a performance log.
    • D、Monitor network traffic to Server1 by using Network Monitor.
    • E、Monitor the IIS logs on Server1.

    正确答案:D,E

  • 第7题:

    多选题
    Your network contains an Active Directory domain named contoso.com. Contoso.com contains  three servers.The servers are configure as shown in the following table.     Server name   Server roel Service   Server1                          Certification authority (CA)   Server2                         Certificate Enrollment Web Service  Server3                          Certificate Enrollment Policy Web Service   You need to ensure that users can manually enroll and renew their certificates by using the  Certificate Enrollment Web Service.     Which two actions should you perform()
    A

    Configure the policy module setting.

    B

    Configure the issuance requeriments for the certificate templates.

    C

    Configure the Certificate Services Client - Certificate Enrollment Policy Group Policy setting.

    D

    Configure the delegation setting for the Certification Enrollment Web Service application pool account.


    正确答案: B,C
    解析: 暂无解析

  • 第8题:

    单选题
    You are the network administrator for your company. The network consists of a single Active Directory domain. All servers run Windows Server 2003. The network contains a Web server that runs IIS 6.0 and hosts a secure intranet site. All users are required to connect to the intranet site by authenticating and using HTTPS. However, because an automated Web application must connect to the Web site by using HTTP, you cannot configure the intranet site to require HTTPS.  You need to collect information about which users are connecting to the Web site by using HTTPS.   What should you do?()
    A

    Check the application log on the Web server.

    B

    Use Network Monitor to capture network traffic on the Web server.

    C

    Review the log files created by IIS on the Web server.

    D

    Configure a performance log to capture all Web service counters. Review the performance log data.


    正确答案: B
    解析: 暂无解析

  • 第9题:

    单选题
    You are a systems administrator troubleshooting a problem with accessing a Web server running WindowsServer 2008. Previously, another administrator created and installed a server certificate on the computer.Users report that they are able to connect to the site using HTTP but that they receive a warning in InternetExplorer when trying to connect by HTTPS. You want to enable users to connect using both HTTP andHTTPS. You attempt to access the site by using an instance of Internet Explorer on the server itself, andyou receive the same warning message for HTTPS connections. How can you resolve this issue?()
    A

    Change the site binding for the Web site to enable connections on port 443.

    B

    Change the SSL settings for the Web site to enable the Require SSL option.

    C

    Obtain and install an Internet Certificate on the Web server.

    D

    Export and re import the existing security certificate.


    正确答案: D
    解析: 暂无解析

  • 第10题:

    单选题
    Your network contains a Web server named Server1 that runs Windows Server 2003 and Internet Information Server (IIS). Server1 has a server certificate from an Enterprise Certificate Authority (CA) installed.External users report that when they try to access the Web site from outside the corporate network by using a Web browser, they receive the following warning message: “There is a problem with this Web site’s security certificate. The security certificate presented by this Web site was not issued by a trusted certificate authority.”  You find that users on the corporate network do not receive this error. You need to ensure that external users do not receive the warning message when connecting to Server1.  What should you do?()
    A

    In IIS Manager, enable the Enable client certificate mapping option.

    B

    In IIS Manager, replace the certificate with a certificate obtained from a public Certification Authority.

    C

    In Local Security Policy, enable Domain Member: Require strong (Windows 2000 or later) session key.

    D

    In Local Security Policy, enable Domain Member: Digitally encrypt or sign secure channel data (always).


    正确答案: D
    解析: 暂无解析

  • 第11题:

    单选题
    Your network contains a stand-alone certification authority (CA) and a Web server. The Web server hosts a secure Web site. The Web site uses a server certificate that was issued from the CA. Users report that they receive a certificate warning message when they connect to the Web site. You need to prevent users from receiving the certificate warning message when they connect to the Web site. What should you do from the Internet Options in Internet Explorer?()
    A

    Import the CA certificate to the trusted root CA certificate store. 

    B

    Import the server authentication certificate to the trusted publishers certificate store.

    C

    Clear the Check for publisher's certificate revocation check box. 

    D

    Clear the Require server verification (https:) for all sites in this zone check box for the Trusted sites zone.


    正确答案: D
    解析: 暂无解析

  • 第12题:

    单选题
    You are the network administrator for The network consists of a single Active Directory domain named All servers run Windows Server 2003. One domain controller on the network is configured as a certification authority (CA). The network contains a Web server that runs IIS 6.0 and hosts a secure intranet site. The server also hosts other sites that do not require HTTPS. You configure a server certificate on the IIS server by using a certificate from your internal CA. All users are required to connect to the intranet site by using HTTPS. Some users report that they cannot connect to the secure intranet site by using HTTPS. You confirm that all users can connect to the nonsecure sites hosted on the Web server by using HTTP. You want to view the failed HTTPS requests. What should you do?()
    A

    Review the log files created by IIS on the Web server.

    B

    Review the security log in Event Viewer on the Web server.

    C

    Review the security log in Event Viewer on the ca.

    D

    Review the contents of the Failed Requests folder on the ca.


    正确答案: C
    解析: 暂无解析

  • 第13题:

    Your network contains a server that runs Windows Server 2008 R2. The server is configured as an   enterprise root certification authority (CA).   You have a Web site that uses x.509 certificates for authentication. The Web site is configured to use a   many-to-one mapping.   You revoke a certificate issued to an external partner.   You need to prevent the external partner from accessing the Web site.  What should you do()

    • A、Run certutil.exe -crl.
    • B、Run certutil.exe -delkey.
    • C、From Active Directory Users and Computers, modify the membership of the IIS_IUSRS group.
    • D、From Active Directory Users and Computers, modify the Contact object for the external partner.

    正确答案:A

  • 第14题:

    Your company named Contoso, Ltd. has a Web server named WEB1.   The Web server runs Windows Server 2008. The fully qualified domain name of WEB1 is web1.contoso.com. The public DNS server has an alias record named owa.contoso.com that maps to web1.contoso.com. Users access WEB1 from the Internet by using http://owa.contoso.com.  The new company security policy states that the owa.contoso.com site must be available for Internet users only through secure HTTP (HTTPS) protocol. The security policy also states that users must not get security warnings when they connect to the site.  You need to request a certificate from a public certification authority (CA). Which Common Name should you use?()

    • A、Contoso, Ltd.
    • B、owa.contoso.com
    • C、WEB1
    • D、web1.contoso.com

    正确答案:B

  • 第15题:

    Your network contains a Web server named Server1 that runs Windows Server 2003 Service Pack 2 (SP2). Server1 has one Web site.  You configure Server1 to use a Web server certificate. Users report that they can access the Web site by using http://server1 and https://server1. You need to ensure that all traffic to, and from, Server1 is encrypted. What should you do?()

    • A、In IIS Manager, enable the Require secure channel (SSL) option.
    • B、In IIS Manager, enable the Digest authentication for Windows domain servers option.
    • C、In Local Security Policy, enable Domain Member: Require strong (Windows 2000 or later) session key.
    • D、In Local Security Policy, enable Domain Member: Digitally encrypt or sign secure channel data (always).

    正确答案:A

  • 第16题:

    You work as the IT professional in an international company which is named Wiikigo. You are experiencedin implementing and administering a network operating system. You are specialized in deploying servers,configuring Windows Server 2008 Terminal services and network application services, and configuring aweb services infrastructure. You are in charge of a member server that runs Windows Server 2008. Themember server has the Web Server (IIS) server role installed. The server hosts a Web site that is onlyaccessible to the executives of your company. According to the requirement of the company policy, theexecutives must use user certificates to access the confidential Web content. You have to make sure thatthe executives can only access the secure Web site by using their installed certificates. What action shouldyou perform to make sure of this?()

    • A、A Certificate Trust list should be configured to include the executives certification authority (CA)certificate.
    • B、The SSL settings should be configured to Require 128-bit SSL on the confidential Web site.
    • C、The Client Certificates settings should be configured to Accept on the SSL settings for the confidentialWeb site.
    • D、The Client Certificates settings should be configured to Require on the SSL settings for the confidentialWeb site.

    正确答案:D

  • 第17题:

    You are the network administrator for The network consists of a single Active Directory domain named All servers run Windows Server 2003. One domain controller on the network is configured as a certification authority (CA). The network contains a Web server that runs IIS 6.0 and hosts a secure intranet site. The server also hosts other sites that do not require HTTPS. You configure a server certificate on the IIS server by using a certificate from your internal CA. All users are required to connect to the intranet site by using HTTPS. Some users report that they cannot connect to the secure intranet site by using HTTPS. You confirm that all users can connect to the nonsecure sites hosted on the Web server by using HTTP. You want to view the failed HTTPS requests. What should you do?()

    • A、Review the log files created by IIS on the Web server.
    • B、Review the security log in Event Viewer on the Web server.
    • C、Review the security log in Event Viewer on the ca.
    • D、Review the contents of the Failed Requests folder on the ca.

    正确答案:A

  • 第18题:

    单选题
    Your company has an internal Web application that uses a self-signed SSL certificate.  The company has an internal certification authority (CA) with autoenrollment.When users attempt to start the Web application, Internet Explorer displays an error message that recommends closing the Web page rather than continuing to the application.    You need to ensure that Internet Explorer does not display the error message.   What should you do?()
    A

    Issue a certificate from the internal CA and install it on the application server

    B

    Install the Web application’s certificate into the computer store on each client computer

    C

    Install the Web application’s certificate into the personal store on each client computer. Add the application’s URL to the Trusted Sites zone in Internet Explorer

    D

    Purchase a commercial certificate and install it on the internal CA


    正确答案: C
    解析: 暂无解析

  • 第19题:

    单选题
    Your network contains a server that runs Windows Server 2008 R2. The server is configured as an   enterprise root certification authority (CA).   You have a Web site that uses x.509 certificates for authentication. The Web site is configured to use a   many-to-one mapping.   You revoke a certificate issued to an external partner.   You need to prevent the external partner from accessing the Web site.  What should you do()
    A

    Run certutil.exe -crl.

    B

    Run certutil.exe -delkey.

    C

    From Active Directory Users and Computers, modify the membership of the IIS_IUSRS group.

    D

    From Active Directory Users and Computers, modify the Contact object for the external partner.


    正确答案: D
    解析: 暂无解析

  • 第20题:

    单选题
    Your network contains a Web server named Server1 that runs Windows Server 2003 and Internet Information Server (IIS). Server1 has a server certificate from an Enterprise Certificate Authority (CA) installed. External users report that when they try to access the Web site from outside the corporate network by using a Web browser, they receive the following warning message: There is a problem with this Web sites security certificate. The security certificate presented by this Web site was not issued by a trusted certificate authority. You find that users onthe corporate network do not receive this error. You need to ensure that external users do not receive the warning message when connecting to Server1.   What should you do?()
    A

    In IIS Manager, enable the Enable client certificate mapping option.

    B

    In IIS Manager, replace the certificate with a certificate obtained from a public Certification Authority.

    C

    In Local Security Policy, enable Domain Member: Require strong (Windows 2000 or later) session key.

    D

    In Local Security Policy, enable Domain Member: Digitally encrypt or sign secure channel data (always).


    正确答案: B
    解析: 暂无解析

  • 第21题:

    单选题
    our network contains a Web server named Server1 that runs Windows Server 2003 and Internet Information Server (IIS). Server1 has a server certificate from an Enterprise Certificate Authority (CA) installed.External users report that when they try to access the Web site from outside the corporate network by using a Web browser, they receive the following warning message: “There is a problem with this Web site’s security certificate. The security certificate presented by this Web site was not issued by a trusted certificate authority.”  You find that users on the corporate network do not receive this error.You need to ensure that external users do not receive the warning message when connecting to Server1.  What should you do?()
    A

    In IIS Manager, enable the Enable client certificate mapping option. 

    B

    In IIS Manager, replace the certificate with a certificate obtained from a public Certification Authority. 

    C

    In Local Security Policy, enable Domain Member: Require strong (Windows 2000 or later) session key. 

    D

    In Local Security Policy, enable Domain Member: Digitally encrypt or sign secure channel data


    正确答案: B
    解析: 暂无解析

  • 第22题:

    单选题
    Your company has an internal Web site that requires HTTPS. The Web site s certificate is self-signed. Youhave a computer that runs Windows 7 and Windows Internet Explorer 8. You use HTTPS to browse to theWeb site and receive the following warning message: There is a problem with this website s security certificate. You need to prevent the warning message from appearing when you access the Web site.  What should you do?()
    A

    From Internet Explorer, enable InPrivate Browsing.

    B

    From Internet Explorer, add the Web site to the Trusted sites zone.

    C

    From Certificate Manager, import the Web site s certificate into your Personal store.

    D

    From Certificate Manager, import the Web site s certificate into your Trusted Root CertificationAuthorities store.


    正确答案: B
    解析: 暂无解析

  • 第23题:

    单选题
    You have an Exchange Server 2010 organization.Users on the network use HTTPS to connect to Outlook Web App (OWA).The Client Access server uses a certificate issued by an internal certification authority (CA).You plan to deploy an e-mail encryption solution for all users. You need to ensure that users can send and receive encrypted e-mail messages by using S/MIME from OWA.What should you do?()
    A

    Issue a certificate to each user

    B

    Instruct all OWA users to import a root CA certificate

    C

    Modify the authentication settings of the OWA virtual directory

    D

    Configure the Client Access Server to use a certificate issued by a third-party CA


    正确答案: C
    解析: 暂无解析

  • 第24题:

    单选题
    Your company named Contoso, Ltd. has a Web server named WEB1.   The Web server runs Windows Server 2008. The fully qualified domain name of WEB1 is web1.contoso.com. The public DNS server has an alias record named owa.contoso.com that maps to web1.contoso.com. Users access WEB1 from the Internet by using http://owa.contoso.com.  The new company security policy states that the owa.contoso.com site must be available for Internet users only through secure HTTP (HTTPS) protocol. The security policy also states that users must not get security warnings when they connect to the site.  You need to request a certificate from a public certification authority (CA). Which Common Name should you use?()
    A

    Contoso, Ltd.

    B

    owa.contoso.com

    C

    WEB1

    D

    web1.contoso.com


    正确答案: B
    解析: 暂无解析

相关内容