← Back to exam page

JPR-934 Security, Expert (JNCIE-SEC)

Loading demo links...

Showing 1–3 of 10 questions

Question 1

You are the network administrator for your company's network. The network consists of two Active Directory domains: lmiweb.com and hr.lmiweb.com. The lmiweb.com domain supports most of the company's user accounts and resources. The hr.lmiweb.com domain contains the user accounts and resources for the company's human resources department.

The company has deployed an extensive 802.11b wireless network. Access points (APs) have been deployed throughout the company to provide users in all departments with wireless connectivity and serve as bridges to the wired LAN. A total of 325 users, including all members of hr.lmiweb.com, have been issued laptops with 802.11bcompliant network adapters. No other computers have wireless connectivity. All wireless LANs have Wired Equivalent Privacy (WEP) enabled to secure these communications.

Human resources users work throughout the company providing employee training and informational seminars. These users require access to the wireless LAN in all company locations. You must ensure that all human resources data is as secure as possible as it is transmitted across the wireless LAN. Only users with accounts in only specific users/computers groups should be able to access the human resources division's wireless LAN. In addition, users without accounts in this domain should not be able to view or select the LAN from their list of available networks. What should you do? Each correct answer presents part of the solution. (Choose three.)

Select all that apply, then click Submit answer.

  • Configure MAC filtering on each department's wireless LAN.

  • Configure MAC filtering on the human resources wireless LAN.

  • Enable Service Set Identifier (SSID) broadcasting on each department's access point.

  • Configure a unique Service Set Identifier (SSID) for each department's wireless LAN.

  • Configure a unique Service Set Identifier (SSID) for the human resources wireless LAN.

  • Enable Service Set Identifier (SSID) broadcasting on all the human resources access points.

  • Disable Service Set Identifier (SSID) broadcasting on all the human resources access points.
Question 2

You are the backup administrator for your company. You are responsible for ensuring that all data on ten files servers are protected against data loss. Normal business hours from 8 A.M. to 5 P.M., Monday through Friday, are observed. Network access is prohibited outside normal business hours.

A member server named File1 contains shared folder accessed by users in the sales department. The disk structure of File1 is shown in the following exhibit:

You have scheduled a daily backup of File1 as shown in the exhibit. (Click the Exhibit(s) button.) Users in the Sales department frequently leave documents open on their desktops when they leave work. These users occasionally request that you restore a previous version of a file from backup. However, some of these files are not included in recent backup sets. You must modify the backup procedures for File1 so that all files, including open documents, will be included in the daily backup. You also want to provide users with the ability to restore their files.

What should you do? (Choose all that apply. Each correct answer presents part of the solution.)

Select all that apply, then click Submit answer.

  • Move all shared user data folders from drive D to drive F.

  • Move all shared folders user data from drive F to drive D.

  • Enable Shadow Copies of Shared Folders on drive F.

  • Enable Volume shadow copy for the scheduled backup job.

  • Select the Disable volume shadow copy option for the scheduled backup job.

  • Install the Previous Versions Client software on all Sales department computers.

  • Create a new daily backup job by using the same settings, but clear the Disable volume shadow copy option.
Question 3

You have recently hired a new junior administrator to assist you in running the network for a medium-sized manufacturing company. You are explaining to your new assistant that AD objects are assigned security descriptors to allow you to implement access control. You tell your assistant that the security descriptor contains several different components. Which of the following are contained in the security descriptor for an object? (Select all that apply.)

Select all that apply, then click Submit answer.

  • Discretionary access control list

  • System access control list

  • Dynamic access control list

  • Ownership information