70-680

QUESTION 1 Your network consists of an Active Directory domain and a DirectAccess infrastructure. You install Windows 7 on a new portable computer and join the computer to the domain. You need to ensure that the computer can establish DirectAccess connections. What should you do? A. B. C. D. Install a computer certificate. Create a new network connection. Enable the Network Discovery firewall exception. Add the computer account to the Network Configuration Operators group.

Correct Answer: A Explanation Explanation/Reference: 101 20192 Certificates The DirectAccess IPsec session is established when the client running Windows 7 and the DirectAccess server authenticate with each other using computer certificates. DirectAccess supports only certificate-based authentication. DirectAccess Client Configuration Clients receive their DirectAccess configuration through Group Policy. This differs from traditional VPN configuration where connections are configured manually or distributed through the connection manager administration kit. Once you have added the computer’s client account to the designated security group, you need to install a computer certificate on the client for the purpose of DirectAccess authentication. An organization needs to deploy Active Directory Certificate Services so that clients can automatically enroll with the appropriate certificates. QUESTION 2 You have a portable computer named Computer1 that runs Windows 7. You have a file server named Server1 that runs Windows Server 2008. Server1 contains a shared folder named Share1. You need to configure Computer1 to meet the following requirements: Ensure that cached files from Share1 are encrypted. Ensure that files located in Share1 are available when Server1 is disconnected from the network. What should you do? A. B. C. D. On Server1, encrypt the files in Share1. On Computer1, make Share1 available offline. On Server1, configure BitLocker Drive Encryption. On Computer1, make Share1 available