+
Related Flashcards
Related Topics
Cards In This Set
| Front | Back |
|
What service allows devices, such as hardware-based routers and other network devices and appliances, to enroll for certificates within a Windows Server 2008 PKI that might not otherwise be able to do so? Network Device Enrollment Service or Network Hardware Service
|
NETWORK DEVICE ENROLLMENT SERVICE
|
|
What electronic piece of information proves the identity of the entity that has signed a particular document? Certificate Authority OR digital signature
|
DIGITAL SIGNATURE
|
|
Users with what predefined security role are tasked with issuing and managing certificates, including approving certificate enrollment and revocation requests? Certificate Manager OR
Auditors
|
CERTIFICATE MANAGER
|
  
4.
The Network Device Enrollment Service (NDES) enables network devices to enroll for certificates within a Windows Server 2008 PKI using the Certificates MMC snap-in. TRUE OR FALSE |
FALSE
|
|
What service responds to requests from clients concerning the revocation status of a particular certificate, returning a digitally signed response indicating the certificate’s current status?
Online Responder OR Web Enrollment
|
ONLINE RESPONDER
|
|
What identifies certificates that have been revoked or terminated? PKI Expiration List OR Certificate Revocation List
|
CERTIFICATE REVOCATION LIST
|
|
Which of the following are not able to be performed by those with the Auditor predefined security role? define key recovery agents OR
configure audit parameters
|
Define key recovery agents
|
|
What is at the top level of a CA hierarchy?
root CA OR subordinate CA
|
Root CA
|
|
What type of CA is not integrated with Active Directory and relies on administrator intervention to respond to certificate requests? standalone CA
dynamic CA
|
Standalone CA
|
|
Certificate templates are used by a Certificate Authority to simplify the administration and issuance of digital certificates. TRUE OR FALSE
|
TRUE
|
|
What consists of a number of elements that allow two parties to communicate securely, without any previous communication, through the use of a mathematical algorithm called public key cryptography? public key infrastructure OR
WEP codes
|
Public key infrastructure
|
|
What is used to request certificates on behalf of a user, computer, or service if self-enrollment is not practical or is otherwise an undesirable solution for reasons of security or auditing? enrollment agents OR access point
|
Enrollment agents
|
|
What type of CA can use certificate templates as well as Group Policy Objects to allow autoenrollment of digital certificates, as well as store digital certificates within the Active Directory database for easy retrieval by users and devices?
static CA OR enterprise CA
|
Enterprise CA
|
|
CAs can exist in a hierarchical structure consisting of a subordinate CA and one or more root CAs beneath the root. TRUE OR FALSE
|
FALSE
|
|
What are small physical devices on which a digital certificate is installed that are usually the size of a credit card or keychain fob? smart cards
OR RSA SecureID
|
Smart cards
|
