Users report the following message appears when browsing to the company's secure site: This website cannot be trusted. Which of the following actions should a security analyst take to resolve these messages? (Choose two.)
A.
Verify the certificate has not expired on the server.
B.
Ensure the certificate has a .pfx extension on the server.
C.
Update the root certificate into the client computer certificate store.
D.
Install the updated private key on the web server.
E.
Have users clear their browsing history and relaunch the session.
I usually tell people to clear their cookies when i update certs, sometimes this works. seems to me they know basic sysadmin shit and throw it on there to confuse us.
AD.
Engineer would always make sure that the certificate has not expired.
If it has expired, they would need to update the private key on the web server.
I would disagree with C because it would be a waste of time for engineer to update the root certificate on client computer certificate store, as that would need to be done on everyone's machine attempting to access company's secure server. The way you do this would be through Group Policy, or by using a paid certificate which already has global root CA on their stores.
it implies it's THE company's SECURE SITE. as it's secure and the user is getting that error, it's a certificate problem thing.
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.SY0-501 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
kdce
Highly Voted 4 years, 11 months agojjcode
Most Recent 2 years, 2 months agoTomaseito
2 years, 9 months agoVero00
4 years ago