ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam 70-741 All Questions

View all questions & answers for the 70-741 exam
Go to Exam

Exam 70-741 topic 1 question 121 discussion

Actual exam question from Microsoft's 70-741
Question #: 121
Topic #: 1
[All 70-741 Questions]

You have multiple servers that run Windows Server 2016 and are configured as VPN servers.
You deploy a server named NPS1 that has Network Policy Server (NPS) installed.
You need to configure NPS1 to accept authentication requests from the VPN servers.
What should you configure on NPS1?

  • A. From RADIUS Clients and Servers, add a remote RADIUS server group.
  • B. From Policies, add a connection request policy.
  • C. From Policies, add a network policy.
  • D. From RADIUS Clients and Servers, add RADIUS clients.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by TMW at June 10, 2019, 1:30 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
MrRiver
Highly Voted 5 years, 2 months ago
read carefull : NPS1 needs to accept authentication requests ... he does not need to authorize anything ... so first things first ... add the vpn server as radius client
upvoted 9 times
...
panda
Highly Voted 4 years ago
At first "What should you configure on NPS1" means "What should you configure on NPS1 console". Next. A and B aren't correct. Because you don't use RADIUS proxy. C and D are used in this sinario, you must perform D and then C. Therefore, the question should say "What should you configure on NPS1 first". https://docs.microsoft.com/en-us/windows-server/networking/technologies/nps/nps-plan-server
upvoted 5 times
gd1f365
4 years ago
Agreed. Authentication requests need to be handled by network policy, so C needs to be done. However, the clients it accepts the requests from needs to be specified before that, so D is the answer I would choose for this question.
upvoted 3 times
...
...
lofzee
Most Recent 3 years, 11 months ago
Key info in the question: 'You need to configure NPS1 to accept authentication requests from the VPN servers.' You can't configure the NPS server to accept authentication requests from the VPN servers in either the Connection Policy or the Network Policy. You configure this bit by adding a RADIUS client to the NPS server. You would then configure the connection policy, to tell it to authenticate locally and then you would configure the network policy to tell it to accept requests based on certain conditions, i.e. the user being in a specific security group. Answer is D.
upvoted 1 times
lofzee
3 years, 11 months ago
Just to add a bit more info in the complete set up. After configuring a RADIUS client on the NPS server. You would head over to your VPN server and then configure a RADIUS group OR, configure the connection request to forward requests onto your NPS server. Inside the connection request settings, it gives you the ability to create a RADIUS group as well.
upvoted 1 times
...
...
Yebubbleman
3 years, 12 months ago
The Exam Ref 70-741 book seems to indicate that C comes before D, but it sounds like both are ultimately necessary.
upvoted 2 times
...
NickTim
4 years, 1 month ago
Got this in a exam
upvoted 4 times
...
coleman
5 years ago
double RADIUS Clients s
upvoted 2 times
...
coleman
5 years ago
Instead of using New-NpsRadiusClient cmdlet, you could also add RADIUS Clients to a NPS1 using the following nps.msc console, under "RADIUS Clients and Servers", select "RADIUS Clients", add a new RADIUS Client IP address and Shared Secret for VPN Servers
upvoted 4 times
...
Paz
5 years, 4 months ago
https://docs.microsoft.com/en-us/windows-server/networking/technologies/nps/nps-radius-clients-configure
upvoted 1 times
...
TMW
5 years, 6 months ago
In this scenario, You would need both a Radius Client, AND a connection request policy...... configuring a connection request policy without the client for the VPN server will not achieve the goal.
upvoted 1 times
RickSk
5 years, 5 months ago
Wouldn't the default connection request policies suffice to use the NPS as a local Radius server? I believe you need to modify the default connection request policies only if you need to use remote Radius servers.
upvoted 2 times
...
AliBen
5 years, 1 month ago
a network request policy is used only to mention if the requests will be processed locally or forwarded to a remote RADIUS Server.
upvoted 2 times
...
TA77
4 years, 3 months ago
No, you don't need a connection request policy. You will need a connection request policy if you want to forward the received requests on an NPS to other Radius servers.
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago