Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

GIAC Exam GSLC Topic 2 Question 48 Discussion

Actual exam question for GIAC's GSLC exam
Question #: 48
Topic #: 2
[All GSLC Questions]

You work as a Network Administrator for Net World International. The company has a Windows Active Directory-based single domain single forest network. The functional level of the forest is Windows Server 2003. All client computers on the network run Windows XP Professional.

You configure a public key infrastructure (PKI) on the network. You configure a root CA and a subordinate CA on the network. For security reasons, you want to take the root CA offline. You are required to configure the CA servers to support for certificate revocation. Choose the steps you will require to accomplish the task.

A .

Show Suggested Answer Hide Answer
Suggested Answer: B

by Onita at May 29, 2024, 12:20 AM

Limited Time Offer

25%

Off

Get Premium GSLC Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Emeline
8 hours ago
Remember, no peeking at your neighbor's screen during the exam! That's a one-way ticket to disqualification.
upvoted 0 times
...
Erick
1 days ago
I'll go with Option A. Keeping the root CA offline and using OCSP and CRLs sounds like a solid security approach.
upvoted 0 times
...
Erick
3 days ago
Hmm, Option D has a funny name - 'All of the above'. I wonder if the exam writer has a sense of humor!
upvoted 0 times
...
Truman
13 days ago
I'm not sure, but Option C seems to involve the root CA being offline, which is what the question is asking for.
upvoted 0 times
...
Malcom
17 days ago
Option A looks like the right choice here. Configuring an Online Certificate Status Protocol (OCSP) server and publishing CRLs seem like the necessary steps to support certificate revocation.
upvoted 0 times
Tamekia
2 days ago
I agree, Option A seems like the best choice. Setting up an OCSP server is crucial for certificate revocation.
upvoted 0 times
...
...
Miles
18 days ago
I believe Option C might be the right choice for this task.
upvoted 0 times
...
Mi
19 days ago
I agree. It's important for security reasons to have that in place.
upvoted 0 times
...
Miles
20 days ago
I think we need to configure the CA servers to support certificate revocation.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77