ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam 70-741 All Questions

View all questions & answers for the 70-741 exam
Go to Exam

Exam 70-741 topic 1 question 62 discussion

Actual exam question from Microsoft's 70-741
Question #: 62
Topic #: 1
[All 70-741 Questions]

Refer to the exhibit:

You plan to implement a VPN. FabRA1 will use the RADIUS proxy for authentication.
You need to ensure that VPN clients can be authenticated and can access internal resources. The solution must ensure that FabRS1 is used as a RADIUS server and FabRP1 is used as a RADIUS proxy.
Which two actions should you perform? Each correct answer presents part of the solution.

  • A. Create a connection request policy on FabRS1.
  • B. Create a connection request policy on FabRP1.
  • C. Create a network policy on FabRS1.
  • D. Delete the default connection request policy on FabRS1.
  • E. Create a network policy on FabRP1.
Show Suggested Answer Hide Answer
Suggested Answer: BC 🗳️
by TMW at June 7, 2019, midnight

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
[Removed]
Highly Voted 5 years, 5 months ago
I agree with TMW and RickSk. Radius proxy and Radius server can be confusing but there the two things you need as far as what it does. RADIUS server…. associate with Network Policy RADIUS proxy…. associate with Connection Request Policy
upvoted 17 times
lbs
4 years, 8 months ago
I agree. Answer is correct B and C
upvoted 2 times
...
...
khalid86
Highly Voted 4 years, 8 months ago
According to my deep study the answer is 100% correct. A connection request policy is a set of conditions that enable you to specify which RADIUS server performs the authorization and authentication process for specific RADIUS clients. Network policies determine which users and computers are authorized to connect to the network. Reference: Training Guide: Administering Windows Server® 2012 R2 by Orin Thomas
upvoted 6 times
Vortex_SA
4 years ago
but then it should be A & E still.. because you configure the connection request policy on the proxy and identify the Radius server as RP1 and the network policy on RS1 to specify which user is allowed to connect to the network
upvoted 1 times
Vortex_SA
4 years ago
sorry, RS1 and RP1 should be swapped around. The proxy is RP1 and the Radius server is RS1
upvoted 3 times
Vortex_SA
4 years ago
so yes.. B and C.. got confused and mixed the two up.
upvoted 4 times
...
...
...
...
lofzee
Most Recent 3 years, 11 months ago
B - because the connection request policy forwards the request from the proxy server (FabRP1) to the RADIUS server (FabRS1) C - because the network policy will sit on the RADIUS server (FabRS1) and to the authentication piece, then send it back through the proxy to the client.
upvoted 1 times
...
Ar_farazon
4 years, 9 months ago
The default connection request policy uses NPS as a RADIUS server and processes all authentication requests locally. Delete the default connection request policy on FabRS1 Create a connection request policy on FabRP1 https://docs.microsoft.com/en-us/windows-server/networking/technologies/nps/nps-crp-configure
upvoted 1 times
Ar_farazon
4 years, 9 months ago
Create a connection request policy on FabRS1. of course
upvoted 1 times
...
panda
3 years, 11 months ago
To delete default policy isn't needed. Any other policies have ha higher processing order and would take precedence over the default.(*1) (*1)Exam Ref70-740 Networking with Windows Server 2016 by Andrew Warren
upvoted 1 times
...
...
PatS
5 years ago
What about default connection request policy on FabRS1? Why before B-Create a connection request policy on FABRP1 we do not D-Delete the default connection request policy on FabRS1?
upvoted 1 times
...
coleman
5 years, 1 month ago
the answer is correct
upvoted 5 times
...
dan
5 years, 6 months ago
no I guess what you are saying it will be A and E?
upvoted 2 times
...
dan
5 years, 6 months ago
so what are the answers B and what?
upvoted 1 times
...
TMW
5 years, 6 months ago
Me thinks this one is incorrect. here is why: FABRA1 is the VPN (RAS) server that client requests will arrive on, it will forward the request to the Proxy server. (FABRP1) FABRP1 is the proxy, it will need a client created for the VPN (RAS) server, and then a server group (to identify the the RADIUS server to forward the request to), and connection request policy telling it to send the request to the RADIUS server listed in the server group. FABRS1 IS the RADIUS server, it will need a connection request policy to tell it to look to itself for authentication.
upvoted 2 times
RickSk
5 years, 5 months ago
I don't think your explanation is quite right. Radius servers don't actually need connection request policies, these ones are only needed for the proxy servers; in this case FabRP1. Moreover, in the proxy servers one needs to create the server groups and clients that you mention; these two are not listed in any of the answer options, though. Now, the Radius server (FabRS1) does need network policies for authentication. To summarize, I think answers B and C are correct.
upvoted 11 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago