Register
Your network contains an Active Directory domain named . All domain controllers run Windows Server 2008 R2. The domain contains three servers that run Windows Server 2012. The servers are configured as
165k views
1 vote
Your network contains an Active Directory domain named . All domain controllers run Windows Server 2008 R2. The domain contains three servers that run Windows Server 2012. The servers are configured as shown in the following table. Server1 and Server2 are configured in a Network Load Balancing (NLB) cluster. The NLB cluster hosts a website named Web1 that uses an application pool named App1. Web1 uses a database named DB1 as its data store. You create an account named User1. You configure User1, as the identity of App1. You need to ensure that domain users accessing Web1 connect to DB1 by using their own credentials. Which two actions should you perform? (Each correct answer presents part of the solution. Choose two.) A. Configure the delegation settings of Server3. B. Create a Service Principal Name (SPN) for User1. C. Configure the delegation settings of User1. D. Create a matching Service Principal Name (SPN) for Server1 and Server2. E. Configure the delegation settings of Server1 and Server2.

User Chris Ruehlemann
by
7.7k points

1 Answer

6 votes

Final answer:

In order to ensure domain users connect to DB1 using their credentials, they should Create a Service Principal Name (SPN) for User1, and Configure the delegation settings of User1.So the correct option is B and C.

Step-by-step explanation:

To facilitate domain users connecting to DB1 with their credentials, two actions are required:

B. Create a Service Principal Name (SPN) for User1: Generate an SPN for User1 associated with the service it represents, ensuring proper authentication delegation.

E. Configure the delegation settings of Server1 and Server2:

Enable constrained delegation on Server1 and Server2 for User1, permitting these servers to impersonate the user when connecting to DB1.

By creating the SPN for User1, you establish its identity for the service it represents.

Then, configuring constrained delegation on Server1 and Server2 allows these servers in the NLB cluster to impersonate users and forward their credentials to DB1.

This setup enables seamless user authentication for accessing the DB through Web1, enhancing security and user experience within the network infrastructure.

So these are the correct options.(Band C)

User James Van Huis
by
8.1k points
Ask a Question
Welcome to QAmmunity.org, where you can ask questions and receive answers from other members of our community.

9.4m questions

12.1m answers

Other Questions

“What does it mean when we “rework” copyrighted material?”
The book shows how to add and subtract binary and decimal numbers. However, other numbering systems are also very popular when dealing with computers. The octal (base 8) numbering system is one of these.
Seven basic internal components found in a computer tower
Please help me ! All you do is just put it it all in your own words ! Please this is for my reported card!i don't know how to put it in my own words because my English is not that good!
describe an advance in technology that makes life more enjoyable. what discoveries contribute to this technology?
Link Copied!