Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC Exam GSLC Topic 2 Question 48 Discussion

Actual exam question for GIAC's GSLC exam
Question #: 48
Topic #: 2
[All GSLC Questions]

You work as a Network Administrator for Net World International. The company has a Windows Active Directory-based single domain single forest network. The functional level of the forest is Windows Server 2003. All client computers on the network run Windows XP Professional.

You configure a public key infrastructure (PKI) on the network. You configure a root CA and a subordinate CA on the network. For security reasons, you want to take the root CA offline. You are required to configure the CA servers to support for certificate revocation. Choose the steps you will require to accomplish the task.

A .

Show Suggested Answer Hide Answer
Suggested Answer: B

by Onita at May 29, 2024, 12:20 AM

Limited Time Offer

25%

Off

Get Premium GSLC Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Emeline
2 months ago
Remember, no peeking at your neighbor's screen during the exam! That's a one-way ticket to disqualification.
upvoted 0 times
Adelina
20 days ago
Yes, Option C seems like the right choice for configuring the CA servers to support certificate revocation.
upvoted 0 times
...
Shenika
1 months ago
I believe we should choose Option C to accomplish the task.
upvoted 0 times
...
Ahmad
1 months ago
I think we need to configure the CA servers to support for certificate revocation. What do you think?
upvoted 0 times
...
...
Erick
2 months ago
I'll go with Option A. Keeping the root CA offline and using OCSP and CRLs sounds like a solid security approach.
upvoted 0 times
Virgilio
16 days ago
User 4: It's important to follow best practices when it comes to PKI security.
upvoted 0 times
...
Dudley
1 months ago
User 3: Using OCSP and CRLs will help ensure certificate revocation is handled properly.
upvoted 0 times
...
Norah
2 months ago
User 2: Definitely, keeping the root CA offline adds an extra layer of protection.
upvoted 0 times
...
Joye
2 months ago
User 1: I agree, Option A seems like the best choice for security.
upvoted 0 times
...
...
Erick
2 months ago
Hmm, Option D has a funny name - 'All of the above'. I wonder if the exam writer has a sense of humor!
upvoted 0 times
...
Truman
2 months ago
I'm not sure, but Option C seems to involve the root CA being offline, which is what the question is asking for.
upvoted 0 times
Tarra
1 months ago
User 2: Yeah, I agree. Taking the root CA offline is crucial for security.
upvoted 0 times
...
Lenny
1 months ago
User 1: I think Option C is the right choice.
upvoted 0 times
...
...
Malcom
2 months ago
Option A looks like the right choice here. Configuring an Online Certificate Status Protocol (OCSP) server and publishing CRLs seem like the necessary steps to support certificate revocation.
upvoted 0 times
Darrel
2 months ago
Option D doesn't seem relevant for configuring CA servers to support certificate revocation. I would go with Option A.
upvoted 0 times
...
Kami
2 months ago
I'm not sure about Option C. It doesn't seem as necessary as the other options for supporting certificate revocation.
upvoted 0 times
...
Elfriede
2 months ago
I think Option B could also be a good choice. It's important to have a backup plan for certificate revocation.
upvoted 0 times
...
Tamekia
2 months ago
I agree, Option A seems like the best choice. Setting up an OCSP server is crucial for certificate revocation.
upvoted 0 times
...
...
Miles
2 months ago
I believe Option C might be the right choice for this task.
upvoted 0 times
...
Mi
3 months ago
I agree. It's important for security reasons to have that in place.
upvoted 0 times
...
Miles
3 months ago
I think we need to configure the CA servers to support certificate revocation.
upvoted 0 times
...

Save Cancel