ALL >> Computers >> View Article
Designing Iis Security To Meet Business Needs
In this practice, you will provide security for proposed business requirements related to A+ certificate(http://www.aplus-220-701.com)
. In Table 13-4, review the business need in the first column and the proposed IIS feature in the second column. Then, propose a proper security solution for each business need. If you are unable to answer a question, review the lesson materials and try the question again. You can find answers to the questions in the "Questions and Answers" section at the end of the chapter.
Content management for the sites hosted for the ISP must be provided for each Web site. Each Web site owner must not be able to change content on other sites.E-mail access from the Internet. There is no budget for implementing PKI.
Follow these guidelines for encrypting communications:
Use SSL to encrypt application data and authentication credentials for connections between clients and IIS.
Use SSL or IPSec to secure data connections between IIS and databases or other server resources and IIS.
Use IPSec or a VPN to secure authentication credentials and encrypt data connections between ...
... administrative workstations and IIS and between clients used for
content management and IIS.
Securing data transfer Consider using IPSec policies to authenticate both the client and server computer, protect user credentials, and protect the content while it crosses CompTIA A+ Practical Application(http://www.aplus-220-701.com)
the network.
NTFS permissions must be set to allow the type of access required, and they should be set to explicitly deny access to sensitive files. The following access is required for the Web site to be functional:
Administrators can manage content of Web sites and applications.
Users can read content of Web sites and applications.
Users can perform other functions as required and allowed by the Web site application.
Application pool identities can read the content of the Web sites and applications.Application pool identities can perform other functions as required and allowed by the Web site.
Simple Mail Transfer Protocol (SMTP) services can be installed on the Web server to provide e-mail services for Web applications. If it will not be
used, it should not be installed. If it is used, it should be secured. Security configuration includes:
Assigning SMTP operators. SMTP operators are users who can configure and manage SMTP.
Preventing relay. Allowing uncontrolled relay can result in someone using this free Microsoft practice exam questions(http://www.examshots.com/vendor/Microsoft-1.html)
to send unsolicited e-mail (spam) and in a reduction in performance.
Add Comment
Computers Articles
1. Few Good Insights To Follow With Pc Gaming In Australia!Author: Jack Williams
2. Transform Your Online Store With Australia's Leading Ecommerce Developers
Author: themerchantbuddy
3. How To Choose The Right Technology For Your mobile App?
Author: goodcoders
4. The Rise Of User Centered Web Design
Author: goodcoders
5. Reasons Why Laravel Perfect For Web Development?
Author: goodcoders
6. Ssd Vs Sas Vs Sata Drives: Which Is Better For Your Dedicated Server Hardware?
Author: The CyberTech
7. Raid Servers And Data Protection: Common Myths About Raid Servers
Author: The CyberTech
8. Top 8 Do's And Don’ts When Dealing With A Corrupted Sd Card
Author: The CyberTech
9. Nvme Vs Ssd: What To Choose For Your Storage Solutions?
Author: The CyberTech
10. 8 Common Data Recovery Myths Exposed!
Author: The CyberTech
11. Understanding Ssd Lifespan: Signs, Durability, Data Recovery, And Factors Affecting The Life Of An Ssd
Author: The CyberTech
12. Server Data Recovery Solutions: When Your Raid Server Is Crashed!
Author: The CyberTech
13. Data Recovery Solutions For Undetected Ssd On Bios
Author: The CyberTech
14. Problems Faced By Mobile Phone Users: Green Line Issue, Motherboard Failure, Phone Stuck On Logo And Mobile Data Recovery Possibilities
Author: The CyberTech
15. Ssd Vs Hdd: Weaknesses, Data Recovery Factors And Failure Rates
Author: The CyberTech