Feedback
Home
You may like this!
46.
You are the network administrator for WillPanek.com. You set up an enterprise certification authority (CA) named ServerCA1. You are planning to issue certificates based on the User certificate template. You need to make sure that the issued certificates are valid for two years and that they also support auto-enrollment. What should you do first?
  • A.
    Run the certutil.exe command and specify the resubmit parameter.
  • B.
    Duplicate the User certificate template.
  • C.
    Add a new certificate template for CA1 to issue.
  • D.
    Modify the Request Handling settings for the CA.
  • Answer & Explanation
  • Report
Answer : [B]
Explanation :
Since you are planning to issue certificates based on a User certificate template, you need to first copy that template so that you can alter it to the new settings.
Report
Name Email  
47.
You have set up an enterprise root certification authority (CA) named Server1. Computers on the network have successfully enrolled and received certificates that will expire in one year. The certificates are based on a template named CA_Template1. You need to ensure that new certificates based on CA_Template1 are valid for three years. What should you do to make sure that they are valid for three years?
  • A.
    Modify the Validity period for the certificate template.
  • B.
    Instruct users to request certificates by running the certreq.exe command.
  • C.
    Instruct users to request certificates by using the Certificates console.
  • D.
    Modify the Validity period for the root CA certificate.
  • Answer & Explanation
  • Report
Answer : [A]
Explanation :
You change the validity period of a certificate template, an administrator needs to modify the validity period setting for the certificate template.
Report
Name Email  
48.
You are the network administrator for a large company. You need to make sure that certificate clients check the CRL at least every 30 minutes to see whether a certificate has been revoked or not. Which of the following should you configure to accomplish this goal?
  • A.
    Key recovery agent
  • B.
    CRL publication interval
  • C.
    Delta CRL publication interval
  • D.
    Certificate templates.
  • Answer & Explanation
  • Report
Answer : [C]
Explanation :
The reason that you check the Delta CRL is because the Delta CRL shows any changes since the last CRL update. So if you want clients to verify the CRL every 30 minutes, you would want to set the Delta CRL publication interval.
Report
Name Email  
49.
You are the network admin for your company. You need to see all of the location sets for the CRL distribution point (CDP). What PowerShell command would you use?
  • A.
    View-CACrlDistributionPoint
  • B.
    See-CACrlDistributionPoint
  • C.
    Add-CACrlDistributionPoint
  • D.
    Get-CACrlDistributionPoint
  • Answer & Explanation
  • Report
Answer : [D]
Explanation :
Administrators can use the Get-CACrlDistributionPoint command to view all the locations set for the CRL distribution point (CDP).
Report
Name Email  
50.
You are the network admin for your company. You need to see the list of templates set on the CA for issuance of certificates. What PowerShell command would you use?
  • A.
    Get-CATemplate
  • B.
    View-CATemplate
  • C.
    Add-CATemplate
  • D.
    New-CATemplate
  • Answer & Explanation
  • Report
Answer : [A]
Explanation :
Administrators can use the Get-CATemplate command to view the list of templates set on the CA for issuance of certificates.
Report
Name Email  
 
  © 2024 infibee.com. All Rights Reserved.   Copyright | Privacy Policy | Sitemap  
Contact us on : info@infibee.com  
 
 
Share   Facebook   Twitter   Google +   Digg