多选题A user is successfully authenticating to the network but is unable to access protected resources behind a ScreenOS enforcer. You log in to the ScreenOS enforcer and issue the command get auth table infranet and you do not see the user listed.Which two

第1题：

第2题：

第3题：

第4题：

A user calls the help desk and explains that they just purchased a Macintosh computer. When they log into the network, the Odyssey Access Client is not automatically downloaded as it was when the user used their Windows PC.How do you resolve this issue?（）

• A、Download the Macintosh installer from the Junos Pulse Access Control Service and manually install the Odyssey Access Client.
• B、Provide the user with the sign-in URL you set up for Macintosh users; this will push the Odyssey Access Client to the user's machine.
• C、Assist the user to configure the Macintosh native supplicant and provide the AppleScnptto expose the EAP-JUAC inner authentication protocol.
• D、Configure the user's role to install the Java agent, which is a requirement to allow the Junos Pulse Access Control Service to deploy the Odyssey Access Client.

第5题：

You are receiving reports of possible unauthorized access to resources protected by a firewall enforcer running the Junos OS. You want to verity which users are currently accessing resources through the enforcer.Which command should you use to verify user access on the enforcer?（）

• A、show services unified-access-control authentication-table
• B、show auth table
• C、show services unified-access-control policies
• D、show services unified-access-control captive-portal

第6题：

You have a firewall enforcer protecting resources in a data center. A user is experiencing difficulty connecting to a protected resource.Which two elements must exist so the user can access the resource?（）

• A、Resource access policy on the MAG Series device
• B、IPsec routing policy on the MAG Series device
• C、General traffic policy blocking access through the firewall enforcer
• D、Auth table entry on the firewall enforcer

第7题：

You navigate to "UAC" > "Infranet Enforcer" > "Auth Table Mapping" in the admin GUI. You see one policy, which is the unmodified, original default policy.Which statement is true?（）

• A、Dynamic auth table mapping is not enabled.
• B、A successful authentication attempt will result in a new authentication table entry, which will be delivered only to the Junos enforcer protecting the network from which the user has authenticated.
• C、To create a static auth table mapping, you must delete the default policy.
• D、The default policy applies only to the factory-default role User.

第8题：

You administer a network containing SRX Series firewalls. New policy requires that you implement MAG Series devices to provide access control for end users. The policy requires that the SRX Series devices dynamically enforce security policy based on the source IP address of the user. The policy also requires that the users communicate with protected resources using encrypted traffic. Which two statements are true?（）

• A、The endpoints can use agentless access.
• B、Encrypted traffic flows between the endpoint and the enforcer.
• C、Encrypted traffic flows between the endpoint and the protected resource
• D、The endpoints can use the Odyssey Access Client.

第9题：

You are a network administrator for Your network consists of a single Active Directory domain named All servers run Windows Server 2003. A help desk user reports that a user object was accidentally deleted and the user can no longer log on to the domain and access resources. You confirm that the user object was included in the most recent backup. You need to enable the user to log on to the domain. You must ensure that the user retains access to resources. What should you do?（）

• A、Install a new domain controller. Install Active Directory from media by using the most recent backup. Manually initiate replication.
• B、Decrease the garbage collection interval. Perform a nonauthorative restoration of Active Directory by using the most recent backup.
• C、Perform a nonauthorative restoration of Active Directory by using the most recent backup. Authoritatively restore the user object that was deleted.
• D、Re-create a user object that has the same user principal name (UPN) as the user object that was deleted. Authoritatively restore this user object.

第10题：

The user cannot access some Internet websites, but can connect to resources inside the local network. The technician successfully uses the ping command to test the user’s connectivity. Which of the following commands can the technician run NEXT to troubleshoot the issue?（）

• A、net /?
• B、ipconfig /flushdns
• C、netstat -r
• D、nbtstat -R

第11题：

第12题：

第13题：

第14题：

第15题：

A user requests access to a new file share.The administrator adds the user to the group with the appropriate access.The user is still unable to access the share.Which of the following actions should the administrator do to resolve the permissions issue？（）

• A、Request the user to logoff and log back on.
• B、Add the user as an administrator on their local machine.
• C、Add the user as an administrator on the server.
• D、Run an ipconfig /renew on the user’s machine.

第16题：

You notice that during peak hours, some firewall enforcers contain a high number of auth table entries. As you investigate the issue, you discover that all users are getting auth table mappings to all firewalls, which is not acceptable. What should you do on the Junos Pulse Access Control Service to resolve this problem?（）

• A、Delete the default auth table mapping policy
• B、Create auth table mapping policies that route users to specific resources
• C、Create Resource Access policies that permit access to specific resources
• D、Create Source Interface policies that route users to specific resources

第17题：

A user is successfully authenticating to the network but is unable to access protected resources behind a ScreenOS enforcer. You log in to the ScreenOS enforcer and issue the command get auth table infranet and you do not see the user listed.Which two event log settings on the Junos Pulse Access Control Service must you enable to troubleshootthis issue?（）

• A、Connection Requests
• B、System Errors
• C、Enforcer Events
• D、Enforcer Command Trace

第18题：

Which parameter do you use to enable Junos Pulse Access Control Service enforcement on a policy on a ScreenOS platform?（）

• A、uac-policy
• B、ic-policy
• C、inyranet-auth
• D、uac-auth

第19题：

You have a firewall enforcer receiving resource access policies from a Junos Pulse Access Control Service. You are using Network and Security Manager (NSM) for configuration management on that firewall. The firewall can also be configured using its built-in command-line interface (CLI) or Web-based user interface (WebUI). To avoid conflicting configurations, which two interfaces must you use to configure the firewall enforcer?（）

• A、CLI
• B、WebUI
• C、NSM
• D、Junos Pulse Access Control Service

第20题：

You are designing a strategy to ensure that VPN users are able to access all internal resources.  What should you do？（）

• A、 Specify a static routing table entry on VPN1 for the Dallas network.
• B、 Specify a static routing table entry on VPN1 for the Seattle network.
• C、 Implement Internet Authentication Service （IAS） on VPN1.
• D、 Define a User Class option for Routing & Remote Access Clients on the DHCP Server.

第21题：

Your network contains an Active Directory forest. The forest schema contains a custom attribute for  user objects.   You need to give the human resources department a file that contains the last logon time and the custom  attribute values for each user in the forest.   What should you use（）

• A、the Dsquery tool
• B、the Export-CSV cmdlet
• C、the Get-ADUser cmdlet
• D、the Net.exe user command

第22题：

第23题：

第24题：