Testlet: A. Datum
You need to recommend a security strategy for WebApp2 that meets the company’s application requirements.
What should you include in the recommendation?
Case Study Title (Case Study):
COMPANY OVERVIEW
A. Datum Corporation is a manufacturing company that has a main office and two branch offices.
The main office is located in Denver. The branch offices are located in New York and Montreal.
The main office has 10,000 users. Each branch office has approximately 200 users.
PLANNED CHANGES
A. Datum plans to deploy a new intranet site named Site1 in the main office. Two servers that run a Server Core installation of Windows Server 2008 R2 are requisitioned for the deployment of Site1.
You plan to deploy a domain controller in each office.
You have a new server named Backup1. All servers will be backed up remotely by using Windows Server Backup on Backup1.
BUSINESS GOALS
A Datum has the following business goals:
. Changes to the environment must minimize costs.
. Changes to the environment must optimize the use of new hardware.
. The costs to manage the network infrastructure and the servers must be minimized.
EXISTING ENVIRONMENT
. All servers run Windows Server 2008 R2. All client computers run Windows 7 Enterprise.
. The network contains a Web server named Web1. Web1 is located in the perimeter network and is accessible from the internal network and the Internet. Web1 runs a Server Core installation of Windows Server 2008 R2 Standard.
Existing Active Directory/Directory Services
The network contains a single Active Directory domain named adatum.com.
The main office has two domain controllers.
Existing Network Infrastructure
Each office has a file server.
The main office connects to each branch office by using a WAN link. Users in the branch offices frequently access the file server in the main office.
Current Administration Model
All domain administrators work in the main office and remotely manage the servers by using their Windows 7 computers.
A group named BranchAdmins has the rights to manage all of the client computers in the branch offices.
You have several ADMX files that contain custom application settings.
REQUIREMENTS
Security Requirements
. The BranchAdmins group members must be able to install updates and drivers on the domain controllers in the branch offices.
. Passwords must not be stored by using reversible encryption.
. All authentication traffic on the network must be encrypted.
Application Requirements
A new application named WebApp2 must be deployed on Web1. The WebApp2 deployment must meet the following requirements:
. Users must be authenticated to access WebApp2.
. WebApp2 must support Web browsers from various vendors.
. WebApp2 must be accessible to internal users and Internet users.
. A failure of WebApp2 must not cause other Web applications to fail.
. Internet users must be required to configure the minimum number of changes on their client computers to access WebApp2.
Site1 must be configured to meet the following requirements:
. Site1 must support the most user connections possible.
. Site1 must be backed up every day by a remote server,
. If a single Web server fails, users must be able to access Site1.
. If a single Web server fails, users must not receive an error message when they access Site1.
Technical Requirements
. You must ensure that domain administrators can access the ADMX files from any client computer that they use to manage Group Policies.
. You must ensure that the domain administrators are notified by e-mail each time a user copies video files to the file servers.
A. Basic authentication and SSL
B. Digest authentication and SSL
C. Digest authentication and SSL VPN
D. Basic authentication and SSL VPN
