CompTIA
CAS-001 · Question #288
CAS-001 Question #288: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-001 to reveal the answer and full explanation for question #288. The question stem and answer options stay visible for context.
Question
An IT administrator wants to restrict DNS zone transfers between two geographically dispersed, external company DNS name servers, and has decided to use TSIG. Which of the following are critical when using TSIG? (Select TWO).
Options
- APeriodic key changes once the initial keys are established between the DNS name servers.
- BSecure exchange of the key values between the two DNS name servers.
- CA secure NTP source used by both DNS name servers to avoid message rejection.
- DDNS configuration files on both DNS name servers must be identically encrypted.
- EAES encryption with a SHA1 hash must be used to encrypt the configuration files on both DNS
Unlock CAS-001 to see the answer
You've previewed enough free CAS-001 questions. Unlock CAS-001 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.