Exam Objectives Frequently Asked Questions
The following Frequently Asked Questions, answered by the authors of this book, are designed to both measure your understanding of the Exam Objectives presented in this chapter, and to assist you with real-life implementation of these concepts. You will also gain access to thousands of other FAQs at ITFAQnet.com.
| 1. | Can we use anonymous access for FTP sites, or is it restricted to Web sites only? | |
| 2. | What default Windows access group is the anonymous Web account part of? | |
| 3. | What authentication mechanism in IIS 6.0 is supported by most browser types (with the exception of anonymous authentication)? | |
| 4. | Does digest authentication use clear-text usernames and passwords to authenticate? | |
| 5. | Can we apply basic authentication on all Web site directories? | |
| 6. | Can we apply digest authentication on all Web site directories? | |
| 7. | Is the sub-authentication component available by default in IIS 6.0? | |
| 8. | Can the Windows 2000 IAS server co-exist with the Windows Server 2003 IAS on the same partition? | |
| 9. | Can we use certificate mapping without Windows login accounts? | |
| 10. | Can we use certificate authentication in FTP transfers? | |
| 11. | How do I replicate Web content on multiple servers? | |
| 12. | How do I obtain SSL security access information? | |
| 13. | Can we have multiple SSL security certificates for a single Web site? | |
| 14. | Can I reuse the same server certificate for multiple Web sites? | |
Answers
| 1. | Anonymous access is available on both FTP sites and Web sites. |
| 2. | The anonymous Web account (IUSR_ComputerName account) is part of the Guest Windows group. |
| 3. | Basic authentication is supported by most of the browsers. It is also specified in the HTTP W3C specification. |
| 4. | No it does not. It uses MD5 hash message digest that cannot be deciphered by an intruder. |
| 5. | Yes. |
| 6. | No. Digest authentication only works on WebDAV directories. |
| 7. | No. The sub-authentication component needs to be installed manually in IIS 6.0. |
| 8. | No. The Windows Server 2003 IAS will overwrite the policy and login database of the Windows 2000 IAS implementation. |
| 9. | No. We need to map a certificate to a Windows account to implement certificate mapping. |
| 10. | No. Certificate authentication is not enabled in FTP service. |
| 11. | IIS 6.0 does not have a built-in content replication tool. Content replication is a major issue to manage large Web farms. Use the Microsoft Content Management Server (CMS) or Site Server tools for content replication. |
| 12. | This could be achieved through IIS Manager . Click on the Web site and select Properties . Then, select the Directory Security tab. Click the View Certificate button under the Secure Communications group box. The certificate will have information on the version, serial number, signature algorithm (for example, sha1RSA), Issuer, Valid From, Valid To, Subject, and Public key information. |
| 13. | Unfortunately, no. Only one security certificate is permitted for a single Web site. |
| 14. | Yes. You can use the same SSL security certificate in multiple Web sites. Multiple sites have to be configured separately to use the same certificate. |
EAN: 2147483647
Pages: 122