LPI Exam 701-100 Topic 3 Question 76 Discussion

Actual exam question for LPI's 701-100 exam

Question #: 76
Topic #: 3

A service should be provided to arbitrary clients on the Internet using HTTPS. Any standard client on the Internet should be able to consume the service without further configuration. Which of the following approaches can be used to implement these requirements? (Choose three correct answers.)

AConfigure the web servers to not use a server certificate when serving HTTPS.

BGenerate a self-signed certificates during the deployment of each backend server.

CUse a certificate issuing service to request certificates during each server deployment.

DUse a load balancer that decrypts incoming requests and passes them on in plain HTTP.

EInstall a wildcard certificate and the respective private key on all the backend servers.

Show Suggested Answer

Suggested Answer: A

by Jovita at Sep 18, 2024, 06:22 PM

Limited Time Offer

25%

Off

Get Premium 701-100 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Hester

1 months ago

I'm cracking up at the idea of a web server without a certificate. That's like trying to secure your house with a screen door made of tissue paper.

upvoted 0 times

Gerri

21 days ago

User 3: E) Install a wildcard certificate and the respective private key on all the backend servers sounds like a better choice.

upvoted 0 times

...

Lisandra

1 months ago

User 2: Lisandra, that's definitely not a secure option.

upvoted 0 times

...

Janae

1 months ago

User 1: A) Configure the web servers to not use a server certificate when serving HTTPS.

upvoted 0 times

...

Kerry

2 months ago

Wait, so you're telling me I can't just leave the web servers without a certificate? That seems like a lot of work!

upvoted 0 times

Eleonora

1 months ago

User 2: You could generate self-signed certificates during deployment.

upvoted 0 times

...

Donette

1 months ago

User 1: No, you can't leave the web servers without a certificate.

upvoted 0 times

...

Maile

2 months ago

I think Option E is the way to go. A wildcard certificate would make it easy to deploy new backend servers without having to worry about certificates.

upvoted 0 times

Jeanice

1 months ago

I agree, having a wildcard certificate would make managing certificates much easier.

upvoted 0 times

...

Jeanice

1 months ago

Option E is definitely a good choice. It would simplify the deployment process for sure.

upvoted 0 times

...

Edna

2 months ago

I'm not sure about option A though. Configuring web servers to not use a server certificate for HTTPS doesn't sound secure to me.

upvoted 0 times

...

Kami

2 months ago

Option D looks tempting, but I'm worried that decrypting the requests on the load balancer might introduce a security vulnerability.

upvoted 0 times

...

Davida

2 months ago

I agree with Isadora. Option E also seems like a good approach as it allows for a wildcard certificate to be installed on all backend servers.

upvoted 0 times

...

Kizzy

2 months ago

Option B and C seem like the most secure options, but I'm not sure if a self-signed certificate would be accepted by all clients on the internet.

upvoted 0 times

Lashawn

14 days ago

Self-signed certificates may not be trusted by all clients, so using a certificate issuing service could be a better option.

upvoted 0 times

...

Apolonia

20 days ago

E) Install a wildcard certificate and the respective private key on all the backend servers.

upvoted 0 times

...

Erin

23 days ago

C) Use a certificate issuing service to request certificates during each server deployment.

upvoted 0 times

...

Aleta

1 months ago

B) Generate a self-signed certificates during the deployment of each backend server.

upvoted 0 times

...

Isadora

2 months ago

I think option C is a good choice because it ensures that certificates are requested during server deployment.

upvoted 0 times

...