A security analyst is hardening a server with the directory services role installed. The analyst must ensure LDAP traffic cannot be monitored or sniffed and maintains compatibility with LDAP clients. Which of the following should the analyst implement to meet these requirements? (Choose two.)
A. Generate an X.509-compliant certificate that is signed by a trusted CA.
B. Install and configure an SSH tunnel on the LDAP server.
C. Ensure port 389 is open between the clients and the servers using the communication.
D. Ensure port 636 is open between the clients and the servers using the communication.
E. Remote the LDAP directory service role from the server.
Answer:
A. Generate an X.509-compliant certificate that is signed by a trusted CA.
D. Ensure port 636 is open between the clients and the servers using the communication.
You might also like to view...
It uses its own transportation protocol with protocol number 89 (0x59) of IP header.
What will be an ideal response?
What is the source path?
What will be an ideal response?
When you print ____, the presentation is printed with one or more slides on each piece of paper.
A. Full Page Slides B. Notes Pages C. Outline D. Handouts
The starting vertex of a shortest path in a graph is called the ____________________.
Fill in the blank(s) with the appropriate word(s).