Free Trial

Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.

  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint
Share this Page URL
Help

Chapter 6 : Configuring Active Directory... > Answers to Review Questions

Answers to Review Questions

1. B. One of the main certificate validation methods is called Online Certificate Status Protocol (OCSP). When certificates get revoked, your certificate server needs to make sure that these certificates don’t get used again. You can perform this validation in many ways. The most common validation methods are CRLs, delta CRLs, and OCSP responses. Using Network Load Balancing ensures fault tolerance.

2. A. With the Certificate Authority Web Enrollment Role Service, users can easily request certificates and retrieve Certificate Revocation Lists (CRLs) through a web browser. It is a good practice to load this service on a member server and not a domain controller. This machine can issue certificates to web users, and for security reasons, you do not want a domain controller talking to web-based users.


  

You are currently reading a PREVIEW of this book.

                                                                                                                    

Get instant access to over $1 million worth of books and videos.

  

Start a Free 10-Day Trial


  
  • Safari Books Online
  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint