nerdexam
Microsoft

70-663 · Question #110

70-663 Question #110: Real Exam Question with Answer & Explanation

The correct answer is B. Domain Security. Domain Security refers to the set of functionality in Microsoft Exchange Server 2010 and Microsoft Office Outlook 2007 that provides a relatively low-cost alternative to S/MIME or other message-level security solutions. The purpose of the Domain Security feature set is to provide

Question

You have an Exchange Server 2010 organization. Your company has a relationship with another company. The partner company has an Exchange Server 2010 organization. You need to recommend a security solution to meet the following requirements: - Ensure that all e-mail delivery between your servers and the partner company's servers is encrypted - Ensure that all communication between your servers and the partner company's servers is authenticated What should you include in the solution?

Options

  • AActive Directory Rights Management Services (AD RMS)
  • BDomain Security
  • CForms-based Authentication
  • DSecure/Multipurpose Internet Mail Extensions (S/MIME)

Explanation

Domain Security refers to the set of functionality in Microsoft Exchange Server 2010 and Microsoft Office Outlook 2007 that provides a relatively low-cost alternative to S/MIME or other message-level security solutions. The purpose of the Domain Security feature set is to provide administrators a way to manage secured message paths over the Internet with business partners. After these secured message paths are configured, messages that have successfully traveled over the secured path from an authenticated sender are displayed to users as Domain Secured in the Outlook and Microsoft Office Outlook Web App interface. Domain Security uses mutual Transport Layer Security (TLS) authentication to provide session-based authentication and encryption. Mutual TLS authentication differs from TLS as it's usually implemented. Typically, when TLS is implemented, the client verifies that the connection securely connects to the intended server by validating the server's certificate. This is received as part of TLS negotiation. In this scenario, the client authenticates the server before the client transmits data. However, the server doesn't authenticate the session with the client. With mutual TLS authentication, each server verifies the connection with the other server by validating a certificate that's provided by that other server. In this scenario, where messages are received from external domains over verified connections in an Exchange 2010 environment, Outlook 2007 displays a Domain

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 70-663 Practice