单选题A company has completed two acquisitions over the previous year. Each of the acquired companies was allowed to keep its own independent authentication server. The network administrator has been asked to roll out the Junos Pulse Access Control Service t
题目
The first authentication realm that was added to the sign-in policy is used by default.
The user is allowed to choose the correct authentication realm from a list presented by Junos Pulse.
When Junos Pulse is initially installed on the desktop, it must be configured with the correct realm.
This is not an allowed configuration; the administrator should configure separate sign-in policies for each realm.
相似考题
参考答案和解析
更多“单选题A company has completed two acquisitions over the previous year. Each of the acquired companies was allowed to keep its own independent authentication server. The network administrator has been asked to roll out the Junos Pulse Access Control Service t”相关问题
-
第1题:
Which three types of policies must you configure to allow remote users transparent access to protected resources using IF-MAP Federation between a Junos Pulse Secure Access Service and a Junos Pulse Access Control Service?()
A. Session-Export policies on the Junos Pulse Secure Access Service
B. Session-Export policies on the Junos Pulse Access Control Service
C. Session-Import policies on the Junos Pulse Secure Access Service
D. Session-Import policies on the Junos Pulse Access Control Service
E. Resource access policies on the Junos Pulse Access Control Service
参考答案:A, D, E
-
第2题:
A company has completed two acquisitions over the previous year. Each of the acquired companies was allowed to keep its own independent authentication server. The network administrator has been asked to roll out the Junos Pulse Access Control Service to users within the original company along with each of the two acquired organizations.The administrator configures three authentication realms, one for each independent authentication server, and associates them all with a single sign-in policy. All of the client endpoints are running Junos Pulse on their Windows XP desktops.When a user signs in to the Junos Pulse Access Control Service, which statement is correct?()
A. The first authentication realm that was added to the sign-in policy is used by default.
B. The user is allowed to choose the correct authentication realm from a list presented by Junos Pulse.
C. When Junos Pulse is initially installed on the desktop, it must be configured with the correct realm.
D. This is not an allowed configuration; the administrator should configure separate sign-in policies for each realm.
参考答案:B
-
第3题:
A customer is deploying a new Junos Pulse Access Control Service and has completed the initial boot configuration as prompted using a serial connection. The customer now wants to complete the rest of the configuration using the admin GUI.Into which port on the Junos Pulse Access Control Service should the customer plug the network cable to enable access to the admin GUI?()
- A、the internal interface
- B、the external interface
- C、the management interface
- D、the console interface
正确答案:A -
第4题:
When using RADIUS as an external authentication method for 802.1X authentication for the Junos Pulse Access Control Service, what must you do to ensure that the RADIUS authentication works properly?()
- A、Configure IP helper to forward the authentication requests from the clients to the external RADIUS server
- B、Configure the supplicant as anexternal authentication server
- C、Configure RADIUS proxy on the realm
- D、Specify the correct RADIUS port 389 on the Junos Pulse Access Control Service
正确答案:C -
第5题:
Which Junos Pulse feature allows the user to log in once through a Junos Pulse Secure Access Service on the network and then access resources protected by a Junos Pulse Access Control Service without reauthentication?()
- A、Roaming Session
- B、Session Migration
- C、Location Awareness
- D、Persistent Session
正确答案:B -
第6题:
A customer has purchased a new Junos Pulse Access Control Service and wants to install it in an existing cluster.After initial configuration, the customer finds that the firmware version running on the Junos Pulse Access Control Service is 4.1 r5, but the existing cluster is running firmware version 4.1 r3. Which two actions must be performed to allow the new Junos Pulse Access Control Service to load the older version of firmware?()
- A、Install a valid license on the new Junos Pulse Access Control Service.
- B、When loading the older firmware, delete all the existing data on the Junos Pulse Access Control Service.
- C、Add the new Junos Pulse Access Control Service to the existing cluster.
- D、Download the 4.1 r3 version firmware from the Juniper support website.
正确答案:B,D -
第7题:
What are two use cases enabled by IF-MAP Federation?()
- A、Users authenticated to one Junos Pulse Access Control Service can transparently access resources protected by another Junos Pulse Access Control Service.
- B、Users authenticated to a Junos Pulse Access Control Service can transparently access resources protected by a Junos Pulse Secure Access Service.
- C、Remote access users authenticated to a Junos Pulse Secure Access Service can transparently access resources protected by a Junos Pulse Access Control Service.
- D、Remote access users authenticated to one Junos Pulse Secure Access Service can transparently access resources protected by another Junos Pulse Secure Access Service.
正确答案:A,C -
第8题:
You are deploying a Junos Pulse Access Control Service cluster in active/passive mode. How do you configure the IP address on the SRX Series devices?()
- A、Configure a single Junos Pulse Access Control Service instance on the enforcer, specifying the VIP as the IP address the instance.
- B、Configure multiple Junos Pulse Access Control Service instances on the enforcer, specifying the specific IP address each device in a separate instance.
- C、Configure a single Junos Pulse Access Control Service instance on the enforcer, specifying the VIP and active node address in the instance.
- D、Configure a single Junos Pulse Access Control Service instance on the enforcer, specifying the VIP and passive node address in the instance.
正确答案:A -
第9题:
单选题Which Junos Pulse feature allows the user to log in once through a Junos Pulse Secure Access Service on the network and then access resources protected by a Junos Pulse Access Control Service without reauthentication?()ARoaming Session
BSession Migration
CLocation Awareness
DPersistent Session
正确答案: C解析: 暂无解析 -
第10题:
单选题A company has completed two acquisitions over the previous year. Each of the acquired companies was allowed to keep its own independent authentication server. The network administrator has been asked to roll out the Junos Pulse Access Control Service to users within the original company along with each of the two acquired organizations.The administrator configures three authentication realms, one for each independent authentication server, and associates them all with a single sign-in policy. All of the client endpoints are running Junos Pulse on their Windows XP desktops. When a user signs in to the Junos Pulse Access Control Service, which statement is correct?()AThe first authentication realm that was added to the sign-in policy is used by default.
BThe user is allowed to choose the correct authentication realm from a list presented by Junos Pulse.
CWhen Junos Pulse is initially installed on the desktop, it must be configured with the correct realm.
DThis is not an allowed configuration; the administrator should configure separate sign-in policies for each realm.
正确答案: C解析: 暂无解析 -
第11题:
多选题A new software engineer has been hired. As part of the normal hiring process, the user was added to the Active Directory and placed into the Domain Users group and the SW_DEV group. The Domain Users group has access to the company's intranet website and time card system. The SW_DEV group has access to the source code library server. You have created roles that correspond to each Active Directory group. The user calls the help desk stating that they cannot access the source code library server. Which two troubleshooting tools would you use on the Junos Pulse Access Control Service to resolve the issue?()APerform a policy trace for the specific user and review the output to isolate the problem.
BReview the Events log.
CReview the Admin Access log to verify that the user has the correct permissions to access the SVVJDEV resource.
DReview the User Access log to verify that the user is getting mapped to both the Domain User role and the SW_DEV role.
正确答案: B,D解析: 暂无解析 -
第12题:
单选题You have a Junos Pulse Secure Access Service acting as an IF-MAP client, configured to federate all user roles to a Junos Pulse Access Control Service acting as an IF-MAP Federation server. A remote user using Junos Pulse logs in to the Junos Pulse Secure Access Service; the Junos Pulse Secure Access Service provisions a remote access session for that user.What happens next?()AThe Junos Pulse Secure Access Service redirects the user to the Junos Pulse Secure Access Service for authentication
BThe Junos Pulse Access Control Service provisions enforcement points to enable resource access for that user.
CThe Junos Pulse Secure Access Service publishes user session and role information to the IF- MAP Federation server,
DThe Junos Pulse Secure Access Service provisions enforcement points to enable resource access for that user.
正确答案: D解析: 暂无解析 -
第13题:
A customer is deploying a new Junos Pulse Access Control Service and has completed the initial boot configuration as prompted using a serial connection. The customer now wants to complete the rest of the configuration using the admin GUI.Into which port on the Junos Pulse Access Control Service should the customer plug the network cable to enable access to the admin GUI?()
A. the internal interface
B. the external interface
C. the management interface
D. the console interface
参考答案:A
-
第14题:
Your IT director has decided to allow employees to use their laptops at home as well as in the office. You have deployed the Junos Pulse client to allow access to the offices 802.1X-enabled wired network. Your company also has the Junos Pulse Secure Access Service deployed. You want the Junos Pulse client to automatically launch the appropriate access method depending on each users location. Which three are supported to determine the users location?()
- A、MAC address
- B、DNS server
- C、DHCP server
- D、resolve address
- E、endpoint address
正确答案:B,D,E -
第15题:
The Schuyler and Livingston Iron Works has been working on getting its network security under control. It has set up VPN with IPSec links to its suppliers. It has installed network vulnerability scanners to proactively identify areas of weakness, and it monitors and responds to security events as they occur. It also employs extensive access control lists, stateful firewall implementations, and dedicated firewall appliances. The company has been growing very fast lately and wants to make sure it is up to date on security measures.Which two areas of security would you advise the company to strengthen? ()
- A、intrusion protection
- B、identity
- C、secure connectivity
- D、security management
正确答案:B,D -
第16题:
A customer has purchased a third-party switch to use for Layer 2 access with their Junos Pulse Access Controe Service. When configuring the switch on the Junos Pulse Access Control Service, the customer does not find a make/model entry for it . Which two actions should the customer take to make the switch work with the Junos Pulse Access Control Service?()
- A、Add the switch to the Junos Pulse Access Control Service as a standard RADIUS.
- B、Add the switch to the Junos Pulse Access Control Service using the "Any" make/model.
- C、Add the switch as a firewall enforcer.
- D、Obtain and configure the RADIUS dictionary for the switch and use that vendor listing for the make/model.
正确答案:A,D -
第17题:
Which three types of policies must you configure to allow remote users transparent access to protected resources using IF-MAP Federation between a Junos Pulse Secure Access Service and a Junos Pulse Access Control Service?()
- A、Session-Export policies on the Junos Pulse Secure Access Service
- B、Session-Export policies on the Junos Pulse Access Control Service
- C、Session-Import policies on the Junos Pulse Secure Access Service
- D、Session-Import policies on the Junos Pulse Access Control Service
- E、Resource access policies on the Junos Pulse Access Control Service
正确答案:A,D,E -
第18题:
You have three classes of users on your network: employee, contractor, and IT administrator. You configure the Junos Pulse Access Control Service to assign roles to each user class and require that a specific wireless SSID be preconfigured for the Odyssey Access Client based on the role. Which configuration method should you use to satisfy this scenario?()
- A、Create a "Settings Update file" in the Odyssey Access Client Administrator and upload it to the Junos Pulse Access Control Service under "User Roles" > "Agent" > "Odyssey Settings" > "Preconfigured Installer".
- B、Configure a wired adapter and assign the required SSID under "User Roles" > "Agent" > "Odyssey Settings".
- C、Create a script in the Odyssey Access Client Administrator and upload it to the Junos Pulse Access Control Service under "User Roles" > "Agent" > "Odyssey Settings" > "Preconfigured Installer".
- D、Create a "Preconfiguration file" in the Odyssey Access Client Administrator and upload it to the Junos Pulse Access Control Service under "User Roles" > "Agent" > "Odyssey Settings" > "Preconfigured Installer".
正确答案:A,B,D -
第19题:
You have a firewall enforcer receiving resource access policies from a Junos Pulse Access Control Service. You are using Network and Security Manager (NSM) for configuration management on that firewall. The firewall can also be configured using its built-in command-line interface (CLI) or Web-based user interface (WebUI). To avoid conflicting configurations, which two interfaces must you use to configure the firewall enforcer?()
- A、CLI
- B、WebUI
- C、NSM
- D、Junos Pulse Access Control Service
正确答案:C,D -
第20题:
You have a Junos Pulse Secure Access Service acting as an IF-MAP client, configured to federate all user roles to a Junos Pulse Access Control Service acting as an IF-MAP Federation server. A remote user using Junos Pulse logs in to the Junos Pulse Secure Access Service; the Junos Pulse Secure Access Service provisions a remote access session for that user.What happens next?()
- A、The Junos Pulse Secure Access Service redirects the user to the Junos Pulse Secure Access Service for authentication
- B、The Junos Pulse Access Control Service provisions enforcement points to enable resource access for that user.
- C、The Junos Pulse Secure Access Service publishes user session and role information to the IF- MAP Federation server,
- D、The Junos Pulse Secure Access Service provisions enforcement points to enable resource access for that user.
正确答案:C -
第21题:
单选题You are validating the configuration of your SRX Series device and see the output shown below. What does this indicate?()AThe SRX Series device has been configured correctly, the Junos Pulse Access Control Service is reachable on the network, and the SRX Series device is waiting to receive the initial connection from the Junos Pulse Access Control Service.
BThe SRX Series device has confirmed that the Junos Pulse Access Control Service is configured and is reachable on the network, the SRX Series device is waiting to receive the connection from the Junos Pulse Access Control Service, and all that remains to be accomplished is to configure the SRX Series device.
CThe SRX Series device is configured correctly and connected to the Junos Pulse Access Control Service. All that remains to be done to complete the configuration is to configure the SRX Series device on the Junos Pulse Access Control Service.
DBoth the Junos Pulse Access Control Service and the SRX Series device are configured correctly and communicating with each other.
正确答案: The SRX Series device has been configured correctly, the Junos Pulse Access Control Service is reachable on the network, and the SRX Series device is waiting to receive the initial connection from the Junos Pulse Access Control Service., The SRX Series device has confirmed that the Junos Pulse Access Control Service is configured and is reachable on the network, the SRX Series device is waiting to receive the connection from the Junos Pulse Access Control Service, and all that remains to be accomplished is to configure the SRX Series device., The SRX Series device is configured correctly and connected to the Junos Pulse Access Control Service. All that remains to be done to complete the configuration is to configure the SRX Series device on the Junos Pulse Access Control Service., Both the Junos Pulse Access Control Service and the SRX Series device are configured correctly and communicating with each other.解析: 暂无解析 -
第22题:
单选题You are deploying a Junos Pulse Access Control Service cluster in active/passive mode. How do you configure the IP address on the SRX Series devices?()AConfigure a single Junos Pulse Access Control Service instance on the enforcer, specifying the VIP as the IP address the instance.
BConfigure multiple Junos Pulse Access Control Service instances on the enforcer, specifying the specific IP address each device in a separate instance.
CConfigure a single Junos Pulse Access Control Service instance on the enforcer, specifying the VIP and active node address in the instance.
DConfigure a single Junos Pulse Access Control Service instance on the enforcer, specifying the VIP and passive node address in the instance.
正确答案: A解析: 暂无解析 -
第23题:
单选题When using RADIUS as an external authentication method for 802.1X authentication for the Junos Pulse Access Control Service, what must you do to ensure that the RADIUS authentication works properly?()AConfigure IP helper to forward the authentication requests from the clients to the external RADIUS server
BConfigure the supplicant as anexternal authentication server
CConfigure RADIUS proxy on the realm
DSpecify the correct RADIUS port 389 on the Junos Pulse Access Control Service
正确答案: C解析: 暂无解析 -
第24题:
单选题A customer is deploying a new Junos Pulse Access Control Service and has completed the initial boot configuration as prompted using a serial connection. The customer now wants to complete the rest of the configuration using the admin GUI.Into which port on the Junos Pulse Access Control Service should the customer plug the network cable to enable access to the admin GUI?()Athe internal interface
Bthe external interface
Cthe management interface
Dthe console interface
正确答案: C解析: 暂无解析