Which authentication mode and site collection URL should you use?

DRAG DROP
You need to provide access to the Corporate Projects site collection to remote internal users.
Which authentication mode and site collection URL should you use? (To answer, drag the appropriate answer choices to the correct location or locations in the answer area. Each answer choice may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.)
Select and Place:

SHOW ANSWERS

Correct Answer:

Explanation/Reference:
Note:
* From scenario: Automate the sign-in experience by using the local AD FS 2.0 servers for AD FS single sign-on (SSO).
* The Corporate Projects site collection must be available to internal users who connect from outside of the corporate network and must not require a VPN connection
* DirectAccess authenticates the computer before the user logs on. Typically, computer authentication grants access only to domain controllers and DNS servers. After the user logs on, DirectAccess authenticates the user, and the user can connect to any resources he or she is authorized to access. DirectAccess supports standard user authentication using a computer certificate and user account name and password credentials.
DirectAccess supports standard user authentication using a computer certificate and user account name and password credentials. For greater security, you can implement additional authorization with smart cards. This type of configuration allows users to access Internet resources without their smart cards, but requires a smart card before users can connect to intranet resources. A user must insert a smart card in addition to typing his or her user credentials. Smart card authorization prevents an attacker who acquires a user’s password (but not the smart card) from accessing the intranet.
Similarly, an attacker who acquires the smart card but does not know the user’s password does not have access.
When smart cards are required for end-to-end authentication, you must use Active DirectoryDomain Services (AD DS) in Windows Server 2008 R2.
* From scenario: Ensure that a web usage report that contains traffic reports, search reports, and inventory reports can be provided for any site.
* Microsoft SharePoint supports both path-based and host-named site collections. The primary difference between path-based and host-named site collections is that all path-based site collections in a Web application share the same host name (DNS name), and each host-named site collection in a Web application is assigned a unique DNS name.
Path-based site collections
Ex: http://www.company.com/sites/cust1
http://www.company.com/sites/cust2
http://www.company.com/sites/cust3
Host-named site collections
Ex: http://cust1.company.com
http://cust2.company.com

Leave a Reply Cancel reply