单选题You have multiple realms configured on a MAG Series device. A user is authenticating with a non- Junos Pulse Access Control Service client. The username does not contain a realm suffix.Which behavior will the user experience?()A The user will not be ab

题目
单选题
You have multiple realms configured on a MAG Series device. A user is authenticating with a non- Junos Pulse Access Control Service client. The username does not contain a realm suffix.Which behavior will the user experience?()
A

The user will not be able to log-in, as the Junos Pulse Access Control Service device cannot map the user to a realm when the realm value is empty.

B

The user will be mapped to all realms available to the user.

C

The Junos Pulse Access Control Service device displays a page where the user must choose from a list of realms.

D

The endpoint is assigned to the first realm in the list whose authentication server is a match with the endpoints software.

相似考题

1.Which Junos Pulse feature allows the user to log in once through a Junos Pulse Secure Access Service on the network and then access resources protected by a Junos Pulse Access Control Service without reauthentication?()A. Roaming SessionB. Session MigrationC. Location AwarenessD. Persistent Session

2.You are validating the configuration of your SRX Series device and see the output shown below.What does this indicate?()A.The SRX Series device has been configured correctly, the Junos Pulse Access Control Service is reachable on the network, and the SRX Series device is waiting to receive the initial connection from the Junos Pulse Access Control Service.B.The SRX Series device has confirmed that the Junos Pulse Access Control Service is configured and is reachable on the network, the SRX Series device is waiting to receive the connection from the Junos Pulse Access Control Service, and all that remains to be accomplished is to configure the SRX Series device.C.The SRX Series device is configured correctly and connected to the Junos Pulse Access Control Service. All that remains to be done to complete the configuration is to configure the SRX Series device on the Junos Pulse Access Control Service.D.Both the Junos Pulse Access Control Service and the SRX Series device are configured correctly and communicating with each other.

3.You have a firewall enforcer receiving resource access policies from a Junos Pulse Access Control Service. You are using Network and Security Manager (NSM) for configuration management on that firewall. The firewall can also be configured using its built-in command-line interface (CLI) or Web-based user interface (WebUI).To avoid conflicting configurations, which two interfaces must you use to configure the firewall enforcer?()A. CLIB. WebUIC. NSMD. Junos Pulse Access Control Service

4.What are two steps to configure user authentication for a Junos Pulse Access Control Service?()A. Configure an authentication policy as part of the user role definitions.B. Configure a Sign-in Policy.C. Configure authentication agents as part of the user role definitionsD. Configure an authentication policy as part of the authentication realm definition.

更多“单选题You have multiple realms configured on a MAG Series device. A user is authenticating with a non- Junos Pulse Access Control Service client. The username does not contain a realm suffix.Which behavior will the user experience?()A The user will not be ab”相关问题

  • 第1题:

    What information does the Junos Pulse Access Control Service provide to Security Threat Response Manager (STRM)?()

    A. Session length

    B. User browser information

    C. Session IP address

    D. User identity information


    参考答案:C, D

  • 第2题:

    You have configured the Odyssey Access Client with a profile which has the "Disable Server Verification" setting cleared.What will be the result if the device certificate on the MAG Series device has expired and the user attempts to authenticate?()

    A. The user will be instructed to call the network administrator.

    B. The user will fail authentication.

    C. The user will be prompted to install a new device certificate on the MAG Series device.

    D. The user will successfully authenticate and have full network access.


    参考答案:B

  • 第3题:

    A company has completed two acquisitions over the previous year. Each of the acquired companies was allowed to keep its own independent authentication server. The network administrator has been asked to roll out the Junos Pulse Access Control Service to users within the original company along with each of the two acquired organizations.The administrator configures three authentication realms, one for each independent authentication server, and associates them all with a single sign-in policy. All of the client endpoints are running Junos Pulse on their Windows XP desktops.When a user signs in to the Junos Pulse Access Control Service, which statement is correct?()

    A. The first authentication realm that was added to the sign-in policy is used by default.

    B. The user is allowed to choose the correct authentication realm from a list presented by Junos Pulse.

    C. When Junos Pulse is initially installed on the desktop, it must be configured with the correct realm.

    D. This is not an allowed configuration; the administrator should configure separate sign-in policies for each realm.


    参考答案:B

  • 第4题:

    A user calls the help desk and explains that they just purchased a Macintosh computer. When they log into the network, the Odyssey Access Client is not automatically downloaded as it was when the user used their Windows PC.How do you resolve this issue?()

    • A、Download the Macintosh installer from the Junos Pulse Access Control Service and manually install the Odyssey Access Client.
    • B、Provide the user with the sign-in URL you set up for Macintosh users; this will push the Odyssey Access Client to the user's machine.
    • C、Assist the user to configure the Macintosh native supplicant and provide the AppleScnptto expose the EAP-JUAC inner authentication protocol.
    • D、Configure the user's role to install the Java agent, which is a requirement to allow the Junos Pulse Access Control Service to deploy the Odyssey Access Client.

    正确答案:A

  • 第5题:

    You have multiple realms configured on a MAG Series device. A user is authenticating with a non- Junos Pulse Access Control Service client. The username does not contain a realm suffix.Which behavior will the user experience?()

    • A、The user will not be able to log-in, as the Junos Pulse Access Control Service device cannot map the user to a realm when the realm value is empty.
    • B、The user will be mapped to all realms available to the user.
    • C、The Junos Pulse Access Control Service device displays a page where the user must choose from a list of realms.
    • D、The endpoint is assigned to the first realm in the list whose authentication server is a match with the endpoints software.

    正确答案:D

  • 第6题:

    Which Junos Pulse feature allows the user to log in once through a Junos Pulse Secure Access Service on the network and then access resources protected by a Junos Pulse Access Control Service without reauthentication?()

    • A、Roaming Session
    • B、Session Migration
    • C、Location Awareness
    • D、Persistent Session

    正确答案:B

  • 第7题:

    You have a firewall enforcer receiving resource access policies from a Junos Pulse Access Control Service. You are using Network and Security Manager (NSM) for configuration management on that firewall. The firewall can also be configured using its built-in command-line interface (CLI) or Web-based user interface (WebUI). To avoid conflicting configurations, which two interfaces must you use to configure the firewall enforcer?()

    • A、CLI
    • B、WebUI
    • C、NSM
    • D、Junos Pulse Access Control Service

    正确答案:C,D

  • 第8题:

    单选题
    Which Junos Pulse feature allows the user to log in once through a Junos Pulse Secure Access Service on the network and then access resources protected by a Junos Pulse Access Control Service without reauthentication?()
    A

    Roaming Session

    B

    Session Migration

    C

    Location Awareness

    D

    Persistent Session


    正确答案: C
    解析: 暂无解析

  • 第9题:

    单选题
    A company has completed two acquisitions over the previous year. Each of the acquired companies was allowed to keep its own independent authentication server. The network administrator has been asked to roll out the Junos Pulse Access Control Service to users within the original company along with each of the two acquired organizations.The administrator configures three authentication realms, one for each independent authentication server, and associates them all with a single sign-in policy. All of the client endpoints are running Junos Pulse on their Windows XP desktops. When a user signs in to the Junos Pulse Access Control Service, which statement is correct?()
    A

    The first authentication realm that was added to the sign-in policy is used by default.

    B

    The user is allowed to choose the correct authentication realm from a list presented by Junos Pulse.

    C

    When Junos Pulse is initially installed on the desktop, it must be configured with the correct realm.

    D

    This is not an allowed configuration; the administrator should configure separate sign-in policies for each realm.


    正确答案: C
    解析: 暂无解析

  • 第10题:

    单选题
    A user calls the help desk and explains that they just purchased a Macintosh computer. When they log into the network, the Odyssey Access Client is not automatically downloaded as it was when the user used their Windows PC.How do you resolve this issue?()
    A

    Download the Macintosh installer from the Junos Pulse Access Control Service and manually install the Odyssey Access Client.

    B

    Provide the user with the sign-in URL you set up for Macintosh users; this will push the Odyssey Access Client to the user's machine.

    C

    Assist the user to configure the Macintosh native supplicant and provide the AppleScnptto expose the EAP-JUAC inner authentication protocol.

    D

    Configure the user's role to install the Java agent, which is a requirement to allow the Junos Pulse Access Control Service to deploy the Odyssey Access Client.


    正确答案: B
    解析: 暂无解析

  • 第11题:

    单选题
    A user signs into the Junos Pulse Access Control Service on a wired network. The user then migrates to a wireless network, receives a new IP address, and notices that the session is disconnected.In the admin GUI, what must be configured for the user to stay connected when migrating from a wired to a wireless network?()
    A

    Persistent session

    B

    Dynamic evaluation

    C

    Roaming session

    D

    Browser request follow-through


    正确答案: B
    解析: 暂无解析

  • 第12题:

    单选题
    You have a Junos Pulse Secure Access Service acting as an IF-MAP client, configured to federate all user roles to a Junos Pulse Access Control Service acting as an IF-MAP Federation server. A remote user using Junos Pulse logs in to the Junos Pulse Secure Access Service; the Junos Pulse Secure Access Service provisions a remote access session for that user.What happens next?()
    A

    The Junos Pulse Secure Access Service redirects the user to the Junos Pulse Secure Access Service for authentication

    B

    The Junos Pulse Access Control Service provisions enforcement points to enable resource access for that user.

    C

    The Junos Pulse Secure Access Service publishes user session and role information to the IF- MAP Federation server,

    D

    The Junos Pulse Secure Access Service provisions enforcement points to enable resource access for that user.


    正确答案: D
    解析: 暂无解析

  • 第13题:

    You have multiple realms configured on a MAG Series device. A user is authenticating with a non- Junos Pulse Access Control Service client. The username does not contain a realm suffix.Which behavior will the user experience?()

    A. The user will not be able to log-in, as the Junos Pulse Access Control Service device cannot map the user to a realm when the realm value is empty.

    B. The user will be mapped to all realms available to the user.

    C. The Junos Pulse Access Control Service device displays a page where the user must choose from a list of realms.

    D. The endpoint is assigned to the first realm in the list whose authentication server is a match with the endpoints software.


    参考答案:D

  • 第14题:

    A user is successfully authenticating to the network but is unable to access protected resources behind a ScreenOS enforcer. You log in to the ScreenOS enforcer and issue the command get auth table infranet and you do not see the user listed.Which two event log settings on the Junos Pulse Access Control Service must you enable to troubleshootthis issue?()

    A. Connection Requests

    B. System Errors

    C. Enforcer Events

    D. Enforcer Command Trace


    参考答案:C, D

  • 第15题:

    What are two steps to configure user authentication for a Junos Pulse Access Control Service?()

    • A、Configure an authentication policy as part of the user role definitions.
    • B、Configure a Sign-in Policy.
    • C、Configure authentication agents as part of the user role definitions
    • D、Configure an authentication policy as part of the authentication realm definition.

    正确答案:B,D

  • 第16题:

    What information does the Junos Pulse Access Control Service provide to Security Threat Response Manager (STRM)?()

    • A、Session length
    • B、User browser information
    • C、Session IP address
    • D、User identity information

    正确答案:C,D

  • 第17题:

    A user is successfully authenticating to the network but is unable to access protected resources behind a ScreenOS enforcer. You log in to the ScreenOS enforcer and issue the command get auth table infranet and you do not see the user listed.Which two event log settings on the Junos Pulse Access Control Service must you enable to troubleshootthis issue?()

    • A、Connection Requests
    • B、System Errors
    • C、Enforcer Events
    • D、Enforcer Command Trace

    正确答案:C,D

  • 第18题:

    You have three classes of users on your network: employee, contractor, and IT administrator. You configure the Junos Pulse Access Control Service to assign roles to each user class and require that a specific wireless SSID be preconfigured for the Odyssey Access Client based on the role. Which configuration method should you use to satisfy this scenario?()

    • A、Create a "Settings Update file" in the Odyssey Access Client Administrator and upload it to the Junos Pulse Access Control Service under "User Roles" > "Agent" > "Odyssey Settings" > "Preconfigured Installer".
    • B、Configure a wired adapter and assign the required SSID under "User Roles" > "Agent" > "Odyssey Settings".
    • C、Create a script in the Odyssey Access Client Administrator and upload it to the Junos Pulse Access Control Service under "User Roles" > "Agent" > "Odyssey Settings" > "Preconfigured Installer".
    • D、Create a "Preconfiguration file" in the Odyssey Access Client Administrator and upload it to the Junos Pulse Access Control Service under "User Roles" > "Agent" > "Odyssey Settings" > "Preconfigured Installer".

    正确答案:A,B,D

  • 第19题:

    You have a Junos Pulse Secure Access Service acting as an IF-MAP client, configured to federate all user roles to a Junos Pulse Access Control Service acting as an IF-MAP Federation server. A remote user using Junos Pulse logs in to the Junos Pulse Secure Access Service; the Junos Pulse Secure Access Service provisions a remote access session for that user.What happens next?()

    • A、The Junos Pulse Secure Access Service redirects the user to the Junos Pulse Secure Access Service for authentication
    • B、The Junos Pulse Access Control Service provisions enforcement points to enable resource access for that user.
    • C、The Junos Pulse Secure Access Service publishes user session and role information to the IF- MAP Federation server,
    • D、The Junos Pulse Secure Access Service provisions enforcement points to enable resource access for that user.

    正确答案:C

  • 第20题:

    单选题
    You are validating the configuration of your SRX Series device and see the output shown below. What does this indicate?()
    A

    The SRX Series device has been configured correctly, the Junos Pulse Access Control Service is reachable on the network, and the SRX Series device is waiting to receive the initial connection from the Junos Pulse Access Control Service.

    B

    The SRX Series device has confirmed that the Junos Pulse Access Control Service is configured and is reachable on the network, the SRX Series device is waiting to receive the connection from the Junos Pulse Access Control Service, and all that remains to be accomplished is to configure the SRX Series device.

    C

    The SRX Series device is configured correctly and connected to the Junos Pulse Access Control Service. All that remains to be done to complete the configuration is to configure the SRX Series device on the Junos Pulse Access Control Service.

    D

    Both the Junos Pulse Access Control Service and the SRX Series device are configured correctly and communicating with each other.


    正确答案: The SRX Series device has been configured correctly, the Junos Pulse Access Control Service is reachable on the network, and the SRX Series device is waiting to receive the initial connection from the Junos Pulse Access Control Service., The SRX Series device has confirmed that the Junos Pulse Access Control Service is configured and is reachable on the network, the SRX Series device is waiting to receive the connection from the Junos Pulse Access Control Service, and all that remains to be accomplished is to configure the SRX Series device., The SRX Series device is configured correctly and connected to the Junos Pulse Access Control Service. All that remains to be done to complete the configuration is to configure the SRX Series device on the Junos Pulse Access Control Service., Both the Junos Pulse Access Control Service and the SRX Series device are configured correctly and communicating with each other.
    解析: 暂无解析

  • 第21题:

    多选题
    You have a firewall enforcer receiving resource access policies from a Junos Pulse Access Control Service. You are using Network and Security Manager (NSM) for configuration management on that firewall. The firewall can also be configured using its built-in command-line interface (CLI) or Web-based user interface (WebUI). To avoid conflicting configurations, which two interfaces must you use to configure the firewall enforcer?()
    A

    CLI

    B

    WebUI

    C

    NSM

    D

    Junos Pulse Access Control Service


    正确答案: A,D
    解析: 暂无解析

  • 第22题:

    多选题
    What are three benefits of IF-MAP Federation?()
    A

    Enables seamless access for remote access users to firewall enforcer protected resources.

    B

    Scales a Junos Pulse Access control Service deployment beyond the capacity of a single cluster.

    C

    Enables dynamic configuration synchronization across multiple MAG Series devices.

    D

    Provides a substitute for WAN clustering among geographically separated MAG Series devices.

    E

    Shares non-localized DP integration and IPsec configuration information between multiple Junos Pulse Access Control Service instances.


    正确答案: C,B
    解析: 暂无解析

  • 第23题:

    单选题
    You have configured the Odyssey Access Client with a profile which has the "Disable Server Verification" setting cleared.What will be the result if the device certificate on the MAG Series device has expired and the user attempts to authenticate?()
    A

    The user will be instructed to call the network administrator.

    B

    The user will fail authentication.

    C

    The user will be prompted to install a new device certificate on the MAG Series device.

    D

    The user will successfully authenticate and have full network access.


    正确答案: A
    解析: 暂无解析

相关内容