SC0-502 Exam
The Solution Exam
- Exam Number/Code : SC0-502
- Exam Name : The Solution Exam
- Questions and Answers : 40 Q&As
- Update Time: 2012-03-12
- Price:
$ 119.00$ 69.00
Free SC0-502 Demo Download
Test4pass offers free demo for SCP Certification SC0-502 exam (The Solution Exam). You can check out the interface, question quality and usability of our practice exams before you decide to buy it. We are the only one site can offer demo for almost all products.
Exam Description
It is well known that SC0-502 exam test is the hot exam of SCP certification. Test4pass offer you all the Q&A of the SC0-502 real test . It is the examination of the perfect combination and it will help you pass SC0-502 exam at the first time!
Why choose Test4pass SC0-502 braindumps
Quality and Value for the SC0-502 Exam
100% Guarantee to Pass Your SC0-502 Exam
Downloadable, Interactive SC0-502 Testing engines
Verified Answers Researched by Industry Experts
Drag and Drop questions as experienced in the Actual Exams
Practice Test Questions accompanied by exhibits
Our Practice Test Questions are backed by our 100% MONEY BACK GUARANTEE.
SCP SCP Certification SC0-502 exam braindumps questions and answers
¡¡
¡¡
Exam : SCP SC0-502
Title : The Solution Exam
1. GlobalCorp is a company that makes state of the art aircraft for commercial and government use. Recently GlobalCorp has been working on the next generation of low orbit space vehicles, again for both commercial and governmental markets.
GlobalCorp has corporate headquarters in Testbed, Nevada, USA. Testbed is a small town, with a population of less than 50,000 people. GlobalCorp is the largest company in town, where most families have at least one family member working there.
The corporate office in Testbed has 4,000 total employees, on a 40-acre campus environment. The largest buildings are the manufacturing plants, which are right next to the Research and Development labs. The manufacturing plants employee approximately 1,000 people and the R&D labs employ 500 people. There is one executive building, where approximately 500 people work. The rest of the employees work in Marketing, Accounting, Press and Investor Relations, and so on. The entire complex has a vast underground complex of tunnels that connect each building.
All critical functions are run from the Testbed office, with remote offices around the world. The remote offices are involved in marketing and sales of GlobalCorp products. These offices also perform maintenance on the GlobalCorp aircraft and will occasionally perform R&D and on-site manufacturing.
There are 5 remote offices, located in: New York, California, Japan, India, and England. Each of the remote offices has a dedicated T3 line to the GlobalCorp HQ, and all network traffic is routed through the Testbed office ?the remote offices do not have direct Internet connections.
You had been working for two years in the New York office, and have been interviewing for the lead security architect position in Testbed. The lead security architect reports directly to the Chief Security Officer (CSO), who calls you to let you know that you got the job. You are to report to Testbed in one month, just in time for the annual meeting, and in the meantime you review the overview of the GlobalCorp network.
Your first day in GlobalCorp Testbed, you get your office setup, move your things in place, and about the time you turn on your laptop, there is a knock on your door. It is Blue, the Chief Security Officer, who informs you that there is a meeting that you need to attend in a half an hour.
With your laptop in hand, you come to the meeting, and are introduced to everyone. Blue begins the meeting with a discussion on the current state of security in GlobalCorp.
"For several years now, we have constantly been spending more and more money on our network defense, and I feel confident that we are currently well defended." Blue, puts a picture on the wall projecting the image of the network, and then continues, "We have firewalls at each critical point, we have separate Internet access for our public systems, and all traffic is routed through our controlled access points. So, with all this, you might be wondering why I have concern."
At this point a few people seem to nod in agreement. For years, GlobalCorp has been at the forefront of perimeter defense and security. Most in the meeting are not aware that there is much else that could be done.
Blue continues, "Some of you know this, for the rest it is new news: MassiveCorp is moving their offices to the town right next to us here. Now, as you all know, MassiveCorp has been trying to build their orbital systems up to our standards for years and have never been able to do so. So, from a security point of view, I am concerned."
This is news to most people, Green, the Vice President of Research asks, "We have the best in firewalls, we have the best in you and your systems, what are you suggesting?"
Blue responds, "I suggest trust. Not with MassiveCorp, but in our own systems. We must build trusted networks. We must migrate our network from one that is well-defended to one that is well-defended and one that allows us to trust all the network traffic."
The meeting continues for some time, with Blue leading the discussion on a whole new set of technologies currently not used in the network. After some time, it is agreed upon that GlobalCorp will migrate to a trusted networking environment.
The following week, Blue informs you that you will be working directly together on the development of the planning and design of the trusted network. The network is going to run a full PKI, with all clients and servers in the network using digital certificates. You are grateful that in the past two years, Blue has had all the systems changed to be running only Windows 2000, both server and professional systems, running Active Directory. You think the consistent platform will make the PKI roll out easier.
The entire GlobalCorp network is running Active Directory, with the domain structure as in the following list:
Testbed.globalcorp.org
Newyork.globalcorp.org
California.globalcorp.org
Japan.globalcorp.org
India.globalcorp.org
England.globalcorp.org
Although you will be working in the Testbed office, the plan you develop will need to include the entire GlobalCorp organization. Based on this information, select the solution that describes the best plan for the new trusted network of GlobalCorp:}
A. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system to be a full hierarchy, with the Root CA located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. Design the hierarchy with each remote office and building having it's own enrollment CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
B. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system, outside of the executive office, to be a full hierarchy, with the Root CA for the hierarchy located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. In the executive building, you design the system to be a mesh CA structure, with one CA per floor of the building.
5. Design the hierarchy with each remote office and building having it's own enrollment CA.
6. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
7. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
8. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
9. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
10. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
11. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
C. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full hierarchy, with the Root CA located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. Design the hierarchy with each remote office and building having it's own enrollment CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
D. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
E. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
Answer: C
2. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
B. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system, outside of the executive office, to be a full hierarchy, with the Root CA for the hierarchy located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. In the executive building, you design the system to be a mesh CA structure, with one CA per floor of the building.
5. Design the hierarchy with each remote office and building having it's own enrollment CA.
6. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
7. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
8. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
9. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
10. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
11. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
C. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full hierarchy, with the Root CA located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. Design the hierarchy with each remote office and building having it's own enrollment CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
D. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
E. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
Answer: C
3. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
B. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system, outside of the executive office, to be a full hierarchy, with the Root CA for the hierarchy located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. In the executive building, you design the system to be a mesh CA structure, with one CA per floor of the building.
5. Design the hierarchy with each remote office and building having it's own enrollment CA.
6. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
7. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
8. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
9. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
10. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
11. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
C. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full hierarchy, with the Root CA located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. Design the hierarchy with each remote office and building having it's own enrollment CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
D. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
E. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
Answer: C
4. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
B. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system, outside of the executive office, to be a full hierarchy, with the Root CA for the hierarchy located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. In the executive building, you design the system to be a mesh CA structure, with one CA per floor of the building.
5. Design the hierarchy with each remote office and building having it's own enrollment CA.
6. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
7. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
8. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
9. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
10. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
11. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
C. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full hierarchy, with the Root CA located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. Design the hierarchy with each remote office and building having it's own enrollment CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
D. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
E. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
Answer: C
5. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
B. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system, outside of the executive office, to be a full hierarchy, with the Root CA for the hierarchy located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. In the executive building, you design the system to be a mesh CA structure, with one CA per floor of the building.
5. Design the hierarchy with each remote office and building having it's own enrollment CA.
6. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
7. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
8. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
9. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
10. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
11. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
C. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full hierarchy, with the Root CA located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. Design the hierarchy with each remote office and building having it's own enrollment CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
D. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
E. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
Answer: C
6. It has been quite some time since you were called in to address the network and security needs of MegaCorp. You feel good in what you have accomplished so far. You have been able to get MegaCorp to deal with their Security Policy issue, you have secured the router, added a firewall, added intrusion detection, hardened the Operating Systems, and more.
One thing you have not done however, is run active testing against the network from the outside. This next level of testing is the final step, you decide, in wrapping up this first stage of the new MegaCorp network and security system. You setup a meeting with the CEO to discuss.
"We have only one significant issue left to deal with here at MegaCorp," you begin. "We need some really solid testing of our network and our security systems."
"Sounds fine to me, don't you do that all the time anyway? I mean, why meet about this?"
"Well, in this case, I'd like to ask to bring in outside help. Folks who specialize in this sort of thing. I can do some of it, but it is not my specialty, and the outside look in will be better and more independent from an outside team."
"What does that kind of thing cost, how long will it take?"
"It will cost a bit of money, it won't be free, and with a network of our size, I think it can be done pretty quick. Once this is done and wrapped up, I will be resigning as the full time security and network pro here. I need to get back to my consulting company full time. Remember, this was not to be a permanent deal. I can help you with the interview, and this is the perfect time to wrap up that transition."
"All right, fair enough. Get me your initial project estimates, and then I can make a more complete decision. And, I'll get HR on hiring a new person right away."
Later that afternoon you talk to the CEO and determine a budget for the testing. Once you get back to your office, you are calling different firms and consultants, and eventually you find a consulting group that you will work with.
A few days later you meet with the group in their office, and you describe what you are looking for, and that their contact and person to report to is you. They ask what is off limits, and your response is only that they cannot do anything illegal, to which they agree and point out is written in their agreement as well.
With this outside consulting group and your knowledge of the network and company, review and select the solution that will best provide for a complete test of the security of MegaCorp.}
A. The consulting group has identified the steps it will follow in testing the network. You have asked to be kept up to date, and given an approximate schedule of events. You intend to follow along with the test, with weekly reports.
The first thing the consultants will do is dumpster diving and physical surveillance, looking for clues as to user information and other secret data that should not be outside of the network. Once they have identified several targets through the dumpster diving, they will run scans to match up and identify the workstations for those users.
After identifying the user workstations, they will run vulnerability checks on the systems, to find holes, and if a hole is found they have been given permission to exploit the hole and gain access of the system.
They will attempt to gain access to the firewall and router remotely, via password guessing, and will test the response of the network to Denial of Service attacks. Finally, they will call into MegaCorp to see what information they can learn via social engineering.
B. The consulting group has identified the steps it will follow in testing the network. You have asked to be kept up to date, and given an approximate schedule of events. You intend to follow along with the test, with weekly reports.
The consultants will first run remote network surveillance to identify hosts, followed by port scans and both passive and active fingerprinting. They will then run vulnerability scanners on the identified systems, and attempt to exploit any found vulnerabilities. They will next scan and test the router and firewall, followed by testing of the IDS rules.
They will then perform physical surveillance and dumpster diving to learn additional information. This will be followed by password sniffing and cracking. Finally, they will call into MegaCorp to see what information they can learn via social engineering.
C. The consulting group has identified the steps it will follow in testing the network. You have asked to be kept up to date, and given an approximate schedule of events. You intend to follow along with the test, with weekly reports.
The consultants surprise you with their initial strategy. They intend to spend nearly 100% of their efforts over the first week on social engineering and other physical techniques, using little to no technology. They have gained access to the building as a maintenance crew, and will be coming into the office every night when employees are wrapping up for the day.
All of their testing will be done through physical contact and informal questioning of the employees. Once they finish that stage, they will run short and direct vulnerability scanners on the systems that they feel will present weakness.
D. The consulting group has identified the steps it will follow in testing the network. You have asked to be kept up to date, and given an approximate schedule of events. You intend to follow along with the test, with weekly reports.
The consultants have decided on a direct strategy. They will work inside the MegaCorp office, with the group introducing themselves to the employees. They will directly interview each employee, and perform extensive physical security checks of the network.
They will review and provide analysis on the security policy, and follow that with electronic testing. They will run a single very robust vulnerability scanner on every single client and server in the network, and document the findings of the scan.
E. The consulting group has identified the steps it will follow in testing the network. You have asked to be kept up to date, and given an approximate schedule of events. You intend to follow along with the test, with weekly reports.
The consultants will start the process with remote network surveillance, checking to see what systems and services are available remotely. They will run both passive and active fingerprinting on any identified system. They will run customized vulnerability scanners on the identified systems, and follow that through with exploits, including new zero-day exploits they have written themselves.
They will next run scans on the router, firewall, and intrusion detection, looking to identify operating systems and configurations of these devices. Once identified, they will run customized scripts to gain access to these devices. Once they complete the testing on the systems, they will dumpster dive to identify any leaked information.
Answer: B
7. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
C. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full hierarchy, with the Root CA located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. Design the hierarchy with each remote office and building having it's own enrollment CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
D. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
E. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
Answer: C
8. for three years you have worked with MegaCorp doing occasional network and security consulting. MegaCorp is a small business that provides real estate listings and data to realtors in several of the surrounding states. The company is open for business Monday through Friday from 9 am to 6 pm, closed all evenings and weekends. Your work there has largely consisted of advice and planning, and you have been frequently disappointed by the lack of execution and follow through from the full time staff.
On Tuesday, you received a call from MegaCorp's HR director, "Hello, I'd like to inform you that Red (the full time senior network administrator) is no longer with us, and we would like to know if you are interested in working with us full time."
You currently have no other main clients, so you reply, "Sure, when do you need me to get going?"
"Today," comes the fast and direct response. Too fast, you think.
"What is the urgency, why can't this wait until tomorrow?"
"Red was let go, and he was not happy about it. We are worried that he might have done something to our network on the way out."
"OK, let me get some things ready, and I'll be over there shortly."
You knew this would be messy when you came in, but you did have some advantage in that you already knew the network. You had recommended many changes in the past, none of which would be implemented by Red. While pulling together your laptop and other tools, you grab your notes which have an overview of the network:
MegaCorp network notes: Single Internet access point, T1, connected to MegaCorp Cisco router. Router has E1 to a private web and ftp server and E0 to the LAN switch. LAN switch has four servers, four printers, and 100 client machines. All the machines are running Windows 2000. Currently, they are having their primary web site and email hosted by an ISP in Illinois.
When you get to MegaCorp, the HR Director and the CEO, both of whom you already know, greet you. The CEO informs you that Red was let go due to difficult personality conflicts, among other reasons, and the termination was not cordial. You are to sign the proper employment papers, and get right on the job. You are given the rest of the day to get setup and running, but the company is quite concerned about the security of their network. Rightly so, you think, If these guys had implemented even half of my recommendations this would sure be easier.?You get your equipment setup in your new oversized office space, and get started. For the time you are working here, your IP Address is 10.10.50.23 with a mask of 16.
One of your first tasks is to examine the router's configuration. You console into the router, issue a show running-config command, and get the following output:
MegaOne#show running-config
Building configuration?
Current configuration:
!
version 12.1
service udp-small-servers
service tcp-small-servers
!
hostname MegaOne
!
enable secret 5 $1$7BSK3$H394yewhJ45JAFEWU73747.
enable password clever
!
no ip name-server
no ip domain-lookup
ip routing
!
interface Ethernet0
no shutdown
ip address 2.3.57.50 255.255.255.0
no ip directed-broadcast
!
interface Ethernet1
no shutdown
ip 10.10.40.101 255.255.0.0
no ip directed-broadcast
!
interface Serial0
no shutdown
ip 1.20.30.23 255.255.255.0
no ip directed-broadcast
clockrate 1024000
bandwidth 1024
encapsulation hdlc
!
ip route 0.0.0.0 0.0.0.0 1.20.30.45
!
line console 0
exec-timeout 0 0
transport input all
line vty 0 4
password remote
login
!
end
After analysis of the network, you recommend that the router have a new configuration. Your goal is to make the router become part of your layered defense, and to be a system configured to help secure the network.
You talk to the CEO to get an idea of what the goals of the router should be in the new configuration. All your conversations are to go through the CEO; this is whom you also are to report to.
"OK, I suggest that the employees be strictly restricted to only the services that they must access on the Internet." You begin.
"I can understand that, but we have always had an open policy. I like the employees to feel comfortable, and not feel like we are watching over them all the time. Please leave the connection open so they can get to whatever they need to get to. We can always reevaluate this in an ongoing basis."
"OK, if you insist, but for the record I am opposed to that policy."
"Noted," responds the CEO, somewhat bluntly.
"All right, let's see, the private web and ftp server have to be accessed by the Internet, restricted to the accounts on the server. We will continue to use the Illinois ISP to host our main web site and to host our email. What else, is there anything else that needs to be accessed from the Internet?"
"No, I think that's it. We have a pretty simple network, we do everything in house."
"All right, we need to get a plan in place as well right away for a security policy. Can we set something up for tomorrow?" you ask.
"Let me see, I'll get back to you later." With that the CEO leaves and you get to work.
Based on the information you have from MegaCorp; knowing that the router must be an integral part of the security of the organization, select the best solution to the organization's router problem:}
A. You backup the current router config to a temp location on your laptop. Friday night, you come in to build the new router configuration. Using your knowledge of the network, and your conversation with the CEO, you build and implement the following router configuration:
MegaOne#configure terminal
MegaOne(config)#no cdp run
MegaOne(config)#no ip source-route
MegaOne(config)#no ip finger
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 80
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 20
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 21
MegaOne(config)#access-list 175 permit tcp any 10.10.0.0 0.0.255.255 established
MegaOne(config)#access-list 175 deny ip 0.0.0.0 255.255.255.255 any
MegaOne(config)#access-list 175 deny ip 10.0.0.0 0.255.255.255 any
MegaOne(config)#access-list 175 deny ip 127.0.0.0 0.255.255.255 any
MegaOne(config)#access-list 175 deny ip 172.16.0.0 0.0.255.255 any
MegaOne(config)#access-list 175 deny ip 192.168.0.0 0.0.255.255 any
MegaOne(config)#access-list 175 permit ip any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit udp any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit icmp any 10.10.0.0 0.0.255.255
MegaOne(config)#interface serial 0
MegaOne(config-if)#ip access-group 175 in
MegaOne(config-if)#no ip directed broadcast
MegaOne(config-if)#no ip unreachables
MegaOne(config-if)#^Z
MegaOne#
B. You backup the current router config to a temp location on your laptop. Sunday night, you come in to build the new router configuration. Using your knowledge of the network, and your conversation with the CEO, you build and implement the following router configuration:
MegaOne#configure terminal
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 80
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 20
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 21
MegaOne(config)#access-list 175 permit tcp any 10.10.0.0 0.0.255.255 established
MegaOne(config)#access-list 175 permit ip any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit udp any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit icmp any 10.10.0.0 0.0.255.255
MegaOne(config)#interface Ethernet 0
MegaOne(config-if)#ip access-group 175 in
MegaOne(config-if)#no cdp enable
MegaOne(config)#interface Ethernet 1
MegaOne(config-if)#ip access-group 175 in
MegaOne(config-if)#no cdp enable
MegaOne(config-if)#^Z
MegaOne#
C. You backup the current router config to a temp location on your laptop. Early Monday morning, you come in to build the new router configuration. Using your knowledge of the network, and your conversation with the CEO, you build and implement the following router configuration:
MegaOne#configure terminal
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 80
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 20
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 21
MegaOne(config)#access-list 175 permit tcp any 10.10.0.0 0.0.255.255 established
MegaOne(config)#access-list 175 permit ip any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit udp any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit icmp any 10.10.0.0 0.0.255.255
MegaOne(config)#interface Serial 0
MegaOne(config-if)#ip access-group 175 in
MegaOne(config-if)#no cdp enable
MegaOne(config-if)#no ip directed broadcast
MegaOne(config-if)#no ip unreachables
MegaOne(config-if)#^Z
MegaOne#
D. As soon as the office closes Friday, you get to work on the new router configuration. Using your knowledge of the network, and your conversation with the CEO, you build and implement the following router configuration:
MegaOne#configure terminal
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 80
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 20
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 21
MegaOne(config)#access-list 175 permit tcp any 10.10.0.0 0.0.255.255 established
MegaOne(config)#access-list 175 permit ip any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit udp any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit icmp any 10.10.0.0 0.0.255.255
MegaOne(config)#interface Ethernet 0
MegaOne(config-if)#ip access-group 175 in
MegaOne(config)#interface Ethernet 1
MegaOne(config-if)#ip access-group 175 in
MegaOne(config-if)#^Z
MegaOne#
E. With the office closed, you decide to build the new router configuration on Saturday. Using your knowledge of the network, and your conversation with the CEO, you build and implement the following router configuration:
MegaOne#configure terminal
MegaOne(config)#no cdp run
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 80
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 20
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 21
MegaOne(config)#access-list 175 permit tcp any 10.10.0.0 0.0.255.255 established
MegaOne(config)#access-list 175 permit ip any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit udp any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit icmp any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 deny ip 0.0.0.0 255.255.255.255 any
MegaOne(config)#access-list 175 deny ip 10.0.0.0 0.255.255.255 any
MegaOne(config)#access-list 175 deny ip 127.0.0.0 0.255.255.255 any
MegaOne(config)#access-list 175 deny ip 172.16.0.0 0.0.255.255 any
MegaOne(config)#access-list 175 deny ip 192.168.0.0 0.0.255.255 any
MegaOne(config)#no ip source-route
MegaOne(config)#no ip finger
MegaOne(config)#interface serial 0
MegaOne(config-if)#ip access-group 175 in
MegaOne(config-if)#no ip directed broadcast
MegaOne(config-if)#no ip unreachables
MegaOne(config-if)#^Z
MegaOne#
Answer: A
9. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
B. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system, outside of the executive office, to be a full hierarchy, with the Root CA for the hierarchy located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. In the executive building, you design the system to be a mesh CA structure, with one CA per floor of the building.
5. Design the hierarchy with each remote office and building having it's own enrollment CA.
6. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
7. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
8. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
9. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
10. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
11. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
C. You d
Click Online chat to talk with us , get more informations about SCP SCP Certification SC0-502 practice exam study guides questions and answers
¡¡
Exam : SCP SC0-502
Title : The Solution Exam
1. GlobalCorp is a company that makes state of the art aircraft for commercial and government use. Recently GlobalCorp has been working on the next generation of low orbit space vehicles, again for both commercial and governmental markets.
GlobalCorp has corporate headquarters in Testbed, Nevada, USA. Testbed is a small town, with a population of less than 50,000 people. GlobalCorp is the largest company in town, where most families have at least one family member working there.
The corporate office in Testbed has 4,000 total employees, on a 40-acre campus environment. The largest buildings are the manufacturing plants, which are right next to the Research and Development labs. The manufacturing plants employee approximately 1,000 people and the R&D labs employ 500 people. There is one executive building, where approximately 500 people work. The rest of the employees work in Marketing, Accounting, Press and Investor Relations, and so on. The entire complex has a vast underground complex of tunnels that connect each building.
All critical functions are run from the Testbed office, with remote offices around the world. The remote offices are involved in marketing and sales of GlobalCorp products. These offices also perform maintenance on the GlobalCorp aircraft and will occasionally perform R&D and on-site manufacturing.
There are 5 remote offices, located in: New York, California, Japan, India, and England. Each of the remote offices has a dedicated T3 line to the GlobalCorp HQ, and all network traffic is routed through the Testbed office ?the remote offices do not have direct Internet connections.
You had been working for two years in the New York office, and have been interviewing for the lead security architect position in Testbed. The lead security architect reports directly to the Chief Security Officer (CSO), who calls you to let you know that you got the job. You are to report to Testbed in one month, just in time for the annual meeting, and in the meantime you review the overview of the GlobalCorp network.
Your first day in GlobalCorp Testbed, you get your office setup, move your things in place, and about the time you turn on your laptop, there is a knock on your door. It is Blue, the Chief Security Officer, who informs you that there is a meeting that you need to attend in a half an hour.
With your laptop in hand, you come to the meeting, and are introduced to everyone. Blue begins the meeting with a discussion on the current state of security in GlobalCorp.
"For several years now, we have constantly been spending more and more money on our network defense, and I feel confident that we are currently well defended." Blue, puts a picture on the wall projecting the image of the network, and then continues, "We have firewalls at each critical point, we have separate Internet access for our public systems, and all traffic is routed through our controlled access points. So, with all this, you might be wondering why I have concern."
At this point a few people seem to nod in agreement. For years, GlobalCorp has been at the forefront of perimeter defense and security. Most in the meeting are not aware that there is much else that could be done.
Blue continues, "Some of you know this, for the rest it is new news: MassiveCorp is moving their offices to the town right next to us here. Now, as you all know, MassiveCorp has been trying to build their orbital systems up to our standards for years and have never been able to do so. So, from a security point of view, I am concerned."
This is news to most people, Green, the Vice President of Research asks, "We have the best in firewalls, we have the best in you and your systems, what are you suggesting?"
Blue responds, "I suggest trust. Not with MassiveCorp, but in our own systems. We must build trusted networks. We must migrate our network from one that is well-defended to one that is well-defended and one that allows us to trust all the network traffic."
The meeting continues for some time, with Blue leading the discussion on a whole new set of technologies currently not used in the network. After some time, it is agreed upon that GlobalCorp will migrate to a trusted networking environment.
The following week, Blue informs you that you will be working directly together on the development of the planning and design of the trusted network. The network is going to run a full PKI, with all clients and servers in the network using digital certificates. You are grateful that in the past two years, Blue has had all the systems changed to be running only Windows 2000, both server and professional systems, running Active Directory. You think the consistent platform will make the PKI roll out easier.
The entire GlobalCorp network is running Active Directory, with the domain structure as in the following list:
Testbed.globalcorp.org
Newyork.globalcorp.org
California.globalcorp.org
Japan.globalcorp.org
India.globalcorp.org
England.globalcorp.org
Although you will be working in the Testbed office, the plan you develop will need to include the entire GlobalCorp organization. Based on this information, select the solution that describes the best plan for the new trusted network of GlobalCorp:}
A. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system to be a full hierarchy, with the Root CA located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. Design the hierarchy with each remote office and building having it's own enrollment CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
B. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system, outside of the executive office, to be a full hierarchy, with the Root CA for the hierarchy located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. In the executive building, you design the system to be a mesh CA structure, with one CA per floor of the building.
5. Design the hierarchy with each remote office and building having it's own enrollment CA.
6. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
7. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
8. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
9. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
10. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
11. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
C. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full hierarchy, with the Root CA located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. Design the hierarchy with each remote office and building having it's own enrollment CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
D. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
E. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
Answer: C
2. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
B. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system, outside of the executive office, to be a full hierarchy, with the Root CA for the hierarchy located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. In the executive building, you design the system to be a mesh CA structure, with one CA per floor of the building.
5. Design the hierarchy with each remote office and building having it's own enrollment CA.
6. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
7. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
8. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
9. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
10. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
11. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
C. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full hierarchy, with the Root CA located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. Design the hierarchy with each remote office and building having it's own enrollment CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
D. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
E. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
Answer: C
3. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
B. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system, outside of the executive office, to be a full hierarchy, with the Root CA for the hierarchy located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. In the executive building, you design the system to be a mesh CA structure, with one CA per floor of the building.
5. Design the hierarchy with each remote office and building having it's own enrollment CA.
6. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
7. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
8. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
9. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
10. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
11. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
C. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full hierarchy, with the Root CA located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. Design the hierarchy with each remote office and building having it's own enrollment CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
D. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
E. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
Answer: C
4. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
B. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system, outside of the executive office, to be a full hierarchy, with the Root CA for the hierarchy located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. In the executive building, you design the system to be a mesh CA structure, with one CA per floor of the building.
5. Design the hierarchy with each remote office and building having it's own enrollment CA.
6. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
7. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
8. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
9. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
10. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
11. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
C. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full hierarchy, with the Root CA located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. Design the hierarchy with each remote office and building having it's own enrollment CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
D. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
E. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
Answer: C
5. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
B. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system, outside of the executive office, to be a full hierarchy, with the Root CA for the hierarchy located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. In the executive building, you design the system to be a mesh CA structure, with one CA per floor of the building.
5. Design the hierarchy with each remote office and building having it's own enrollment CA.
6. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
7. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
8. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
9. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
10. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
11. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
C. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full hierarchy, with the Root CA located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. Design the hierarchy with each remote office and building having it's own enrollment CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
D. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
E. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
Answer: C
6. It has been quite some time since you were called in to address the network and security needs of MegaCorp. You feel good in what you have accomplished so far. You have been able to get MegaCorp to deal with their Security Policy issue, you have secured the router, added a firewall, added intrusion detection, hardened the Operating Systems, and more.
One thing you have not done however, is run active testing against the network from the outside. This next level of testing is the final step, you decide, in wrapping up this first stage of the new MegaCorp network and security system. You setup a meeting with the CEO to discuss.
"We have only one significant issue left to deal with here at MegaCorp," you begin. "We need some really solid testing of our network and our security systems."
"Sounds fine to me, don't you do that all the time anyway? I mean, why meet about this?"
"Well, in this case, I'd like to ask to bring in outside help. Folks who specialize in this sort of thing. I can do some of it, but it is not my specialty, and the outside look in will be better and more independent from an outside team."
"What does that kind of thing cost, how long will it take?"
"It will cost a bit of money, it won't be free, and with a network of our size, I think it can be done pretty quick. Once this is done and wrapped up, I will be resigning as the full time security and network pro here. I need to get back to my consulting company full time. Remember, this was not to be a permanent deal. I can help you with the interview, and this is the perfect time to wrap up that transition."
"All right, fair enough. Get me your initial project estimates, and then I can make a more complete decision. And, I'll get HR on hiring a new person right away."
Later that afternoon you talk to the CEO and determine a budget for the testing. Once you get back to your office, you are calling different firms and consultants, and eventually you find a consulting group that you will work with.
A few days later you meet with the group in their office, and you describe what you are looking for, and that their contact and person to report to is you. They ask what is off limits, and your response is only that they cannot do anything illegal, to which they agree and point out is written in their agreement as well.
With this outside consulting group and your knowledge of the network and company, review and select the solution that will best provide for a complete test of the security of MegaCorp.}
A. The consulting group has identified the steps it will follow in testing the network. You have asked to be kept up to date, and given an approximate schedule of events. You intend to follow along with the test, with weekly reports.
The first thing the consultants will do is dumpster diving and physical surveillance, looking for clues as to user information and other secret data that should not be outside of the network. Once they have identified several targets through the dumpster diving, they will run scans to match up and identify the workstations for those users.
After identifying the user workstations, they will run vulnerability checks on the systems, to find holes, and if a hole is found they have been given permission to exploit the hole and gain access of the system.
They will attempt to gain access to the firewall and router remotely, via password guessing, and will test the response of the network to Denial of Service attacks. Finally, they will call into MegaCorp to see what information they can learn via social engineering.
B. The consulting group has identified the steps it will follow in testing the network. You have asked to be kept up to date, and given an approximate schedule of events. You intend to follow along with the test, with weekly reports.
The consultants will first run remote network surveillance to identify hosts, followed by port scans and both passive and active fingerprinting. They will then run vulnerability scanners on the identified systems, and attempt to exploit any found vulnerabilities. They will next scan and test the router and firewall, followed by testing of the IDS rules.
They will then perform physical surveillance and dumpster diving to learn additional information. This will be followed by password sniffing and cracking. Finally, they will call into MegaCorp to see what information they can learn via social engineering.
C. The consulting group has identified the steps it will follow in testing the network. You have asked to be kept up to date, and given an approximate schedule of events. You intend to follow along with the test, with weekly reports.
The consultants surprise you with their initial strategy. They intend to spend nearly 100% of their efforts over the first week on social engineering and other physical techniques, using little to no technology. They have gained access to the building as a maintenance crew, and will be coming into the office every night when employees are wrapping up for the day.
All of their testing will be done through physical contact and informal questioning of the employees. Once they finish that stage, they will run short and direct vulnerability scanners on the systems that they feel will present weakness.
D. The consulting group has identified the steps it will follow in testing the network. You have asked to be kept up to date, and given an approximate schedule of events. You intend to follow along with the test, with weekly reports.
The consultants have decided on a direct strategy. They will work inside the MegaCorp office, with the group introducing themselves to the employees. They will directly interview each employee, and perform extensive physical security checks of the network.
They will review and provide analysis on the security policy, and follow that with electronic testing. They will run a single very robust vulnerability scanner on every single client and server in the network, and document the findings of the scan.
E. The consulting group has identified the steps it will follow in testing the network. You have asked to be kept up to date, and given an approximate schedule of events. You intend to follow along with the test, with weekly reports.
The consultants will start the process with remote network surveillance, checking to see what systems and services are available remotely. They will run both passive and active fingerprinting on any identified system. They will run customized vulnerability scanners on the identified systems, and follow that through with exploits, including new zero-day exploits they have written themselves.
They will next run scans on the router, firewall, and intrusion detection, looking to identify operating systems and configurations of these devices. Once identified, they will run customized scripts to gain access to these devices. Once they complete the testing on the systems, they will dumpster dive to identify any leaked information.
Answer: B
7. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
C. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full hierarchy, with the Root CA located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. Design the hierarchy with each remote office and building having it's own enrollment CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
D. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certificate Policy (CP) document to define what users will be allowed to do with their certificates, and a Certification Practice Statement (CPS) document to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a Certificate Practices Framework (CPF) document based on RFC 2527, including every primary component.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
E. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system to be a full mesh, with the Root CA located in the executive building.
4. Design the mesh with each remote office and building having it's own Root CA.
5. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA mesh in the executive office, and get all users acclimated to the system.
7. Implement the CA mesh in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA mesh in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
Answer: C
8. for three years you have worked with MegaCorp doing occasional network and security consulting. MegaCorp is a small business that provides real estate listings and data to realtors in several of the surrounding states. The company is open for business Monday through Friday from 9 am to 6 pm, closed all evenings and weekends. Your work there has largely consisted of advice and planning, and you have been frequently disappointed by the lack of execution and follow through from the full time staff.
On Tuesday, you received a call from MegaCorp's HR director, "Hello, I'd like to inform you that Red (the full time senior network administrator) is no longer with us, and we would like to know if you are interested in working with us full time."
You currently have no other main clients, so you reply, "Sure, when do you need me to get going?"
"Today," comes the fast and direct response. Too fast, you think.
"What is the urgency, why can't this wait until tomorrow?"
"Red was let go, and he was not happy about it. We are worried that he might have done something to our network on the way out."
"OK, let me get some things ready, and I'll be over there shortly."
You knew this would be messy when you came in, but you did have some advantage in that you already knew the network. You had recommended many changes in the past, none of which would be implemented by Red. While pulling together your laptop and other tools, you grab your notes which have an overview of the network:
MegaCorp network notes: Single Internet access point, T1, connected to MegaCorp Cisco router. Router has E1 to a private web and ftp server and E0 to the LAN switch. LAN switch has four servers, four printers, and 100 client machines. All the machines are running Windows 2000. Currently, they are having their primary web site and email hosted by an ISP in Illinois.
When you get to MegaCorp, the HR Director and the CEO, both of whom you already know, greet you. The CEO informs you that Red was let go due to difficult personality conflicts, among other reasons, and the termination was not cordial. You are to sign the proper employment papers, and get right on the job. You are given the rest of the day to get setup and running, but the company is quite concerned about the security of their network. Rightly so, you think, If these guys had implemented even half of my recommendations this would sure be easier.?You get your equipment setup in your new oversized office space, and get started. For the time you are working here, your IP Address is 10.10.50.23 with a mask of 16.
One of your first tasks is to examine the router's configuration. You console into the router, issue a show running-config command, and get the following output:
MegaOne#show running-config
Building configuration?
Current configuration:
!
version 12.1
service udp-small-servers
service tcp-small-servers
!
hostname MegaOne
!
enable secret 5 $1$7BSK3$H394yewhJ45JAFEWU73747.
enable password clever
!
no ip name-server
no ip domain-lookup
ip routing
!
interface Ethernet0
no shutdown
ip address 2.3.57.50 255.255.255.0
no ip directed-broadcast
!
interface Ethernet1
no shutdown
ip 10.10.40.101 255.255.0.0
no ip directed-broadcast
!
interface Serial0
no shutdown
ip 1.20.30.23 255.255.255.0
no ip directed-broadcast
clockrate 1024000
bandwidth 1024
encapsulation hdlc
!
ip route 0.0.0.0 0.0.0.0 1.20.30.45
!
line console 0
exec-timeout 0 0
transport input all
line vty 0 4
password remote
login
!
end
After analysis of the network, you recommend that the router have a new configuration. Your goal is to make the router become part of your layered defense, and to be a system configured to help secure the network.
You talk to the CEO to get an idea of what the goals of the router should be in the new configuration. All your conversations are to go through the CEO; this is whom you also are to report to.
"OK, I suggest that the employees be strictly restricted to only the services that they must access on the Internet." You begin.
"I can understand that, but we have always had an open policy. I like the employees to feel comfortable, and not feel like we are watching over them all the time. Please leave the connection open so they can get to whatever they need to get to. We can always reevaluate this in an ongoing basis."
"OK, if you insist, but for the record I am opposed to that policy."
"Noted," responds the CEO, somewhat bluntly.
"All right, let's see, the private web and ftp server have to be accessed by the Internet, restricted to the accounts on the server. We will continue to use the Illinois ISP to host our main web site and to host our email. What else, is there anything else that needs to be accessed from the Internet?"
"No, I think that's it. We have a pretty simple network, we do everything in house."
"All right, we need to get a plan in place as well right away for a security policy. Can we set something up for tomorrow?" you ask.
"Let me see, I'll get back to you later." With that the CEO leaves and you get to work.
Based on the information you have from MegaCorp; knowing that the router must be an integral part of the security of the organization, select the best solution to the organization's router problem:}
A. You backup the current router config to a temp location on your laptop. Friday night, you come in to build the new router configuration. Using your knowledge of the network, and your conversation with the CEO, you build and implement the following router configuration:
MegaOne#configure terminal
MegaOne(config)#no cdp run
MegaOne(config)#no ip source-route
MegaOne(config)#no ip finger
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 80
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 20
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 21
MegaOne(config)#access-list 175 permit tcp any 10.10.0.0 0.0.255.255 established
MegaOne(config)#access-list 175 deny ip 0.0.0.0 255.255.255.255 any
MegaOne(config)#access-list 175 deny ip 10.0.0.0 0.255.255.255 any
MegaOne(config)#access-list 175 deny ip 127.0.0.0 0.255.255.255 any
MegaOne(config)#access-list 175 deny ip 172.16.0.0 0.0.255.255 any
MegaOne(config)#access-list 175 deny ip 192.168.0.0 0.0.255.255 any
MegaOne(config)#access-list 175 permit ip any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit udp any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit icmp any 10.10.0.0 0.0.255.255
MegaOne(config)#interface serial 0
MegaOne(config-if)#ip access-group 175 in
MegaOne(config-if)#no ip directed broadcast
MegaOne(config-if)#no ip unreachables
MegaOne(config-if)#^Z
MegaOne#
B. You backup the current router config to a temp location on your laptop. Sunday night, you come in to build the new router configuration. Using your knowledge of the network, and your conversation with the CEO, you build and implement the following router configuration:
MegaOne#configure terminal
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 80
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 20
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 21
MegaOne(config)#access-list 175 permit tcp any 10.10.0.0 0.0.255.255 established
MegaOne(config)#access-list 175 permit ip any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit udp any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit icmp any 10.10.0.0 0.0.255.255
MegaOne(config)#interface Ethernet 0
MegaOne(config-if)#ip access-group 175 in
MegaOne(config-if)#no cdp enable
MegaOne(config)#interface Ethernet 1
MegaOne(config-if)#ip access-group 175 in
MegaOne(config-if)#no cdp enable
MegaOne(config-if)#^Z
MegaOne#
C. You backup the current router config to a temp location on your laptop. Early Monday morning, you come in to build the new router configuration. Using your knowledge of the network, and your conversation with the CEO, you build and implement the following router configuration:
MegaOne#configure terminal
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 80
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 20
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 21
MegaOne(config)#access-list 175 permit tcp any 10.10.0.0 0.0.255.255 established
MegaOne(config)#access-list 175 permit ip any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit udp any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit icmp any 10.10.0.0 0.0.255.255
MegaOne(config)#interface Serial 0
MegaOne(config-if)#ip access-group 175 in
MegaOne(config-if)#no cdp enable
MegaOne(config-if)#no ip directed broadcast
MegaOne(config-if)#no ip unreachables
MegaOne(config-if)#^Z
MegaOne#
D. As soon as the office closes Friday, you get to work on the new router configuration. Using your knowledge of the network, and your conversation with the CEO, you build and implement the following router configuration:
MegaOne#configure terminal
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 80
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 20
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 21
MegaOne(config)#access-list 175 permit tcp any 10.10.0.0 0.0.255.255 established
MegaOne(config)#access-list 175 permit ip any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit udp any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit icmp any 10.10.0.0 0.0.255.255
MegaOne(config)#interface Ethernet 0
MegaOne(config-if)#ip access-group 175 in
MegaOne(config)#interface Ethernet 1
MegaOne(config-if)#ip access-group 175 in
MegaOne(config-if)#^Z
MegaOne#
E. With the office closed, you decide to build the new router configuration on Saturday. Using your knowledge of the network, and your conversation with the CEO, you build and implement the following router configuration:
MegaOne#configure terminal
MegaOne(config)#no cdp run
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 80
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 20
MegaOne(config)#access-list 175 permit tcp any 2.3.57.60 0.0.0.0 eq 21
MegaOne(config)#access-list 175 permit tcp any 10.10.0.0 0.0.255.255 established
MegaOne(config)#access-list 175 permit ip any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit udp any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 permit icmp any 10.10.0.0 0.0.255.255
MegaOne(config)#access-list 175 deny ip 0.0.0.0 255.255.255.255 any
MegaOne(config)#access-list 175 deny ip 10.0.0.0 0.255.255.255 any
MegaOne(config)#access-list 175 deny ip 127.0.0.0 0.255.255.255 any
MegaOne(config)#access-list 175 deny ip 172.16.0.0 0.0.255.255 any
MegaOne(config)#access-list 175 deny ip 192.168.0.0 0.0.255.255 any
MegaOne(config)#no ip source-route
MegaOne(config)#no ip finger
MegaOne(config)#interface serial 0
MegaOne(config-if)#ip access-group 175 in
MegaOne(config-if)#no ip directed broadcast
MegaOne(config-if)#no ip unreachables
MegaOne(config-if)#^Z
MegaOne#
Answer: A
9. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
6. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
7. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
8. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
9. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
10. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
B. You design the plan for two weeks, and then you present it to Blue. Your plan follows these critical steps:
1. Draft a Certification Practice Statement (CPS) to define what users will be allowed to do with their certificates, and a Certificate Policy (CP) to define the technology used to ensure the users are able to use their certificates as per the CPS.
2. Draft a CPF based on your own guidelines, including physical and technology controls.
3. Design the system, outside of the executive office, to be a full hierarchy, with the Root CA for the hierarchy located in the executive building. Every remote office will have a subordinate CA, and every other building on the campus in Testbed will have a subordinate CA.
4. In the executive building, you design the system to be a mesh CA structure, with one CA per floor of the building.
5. Design the hierarchy with each remote office and building having it's own enrollment CA.
6. Build a small test pilot program, to test the hierarchy, and integration with the existing network.
7. Implement the CA hierarchy in the executive office, and get all users acclimated to the system.
8. Implement the CA hierarchy in each other campus building in Testbed, and get all users acclimated to the system.
9. One at a time, implement the CA hierarchy in each remote office; again getting all users acclimated to the system.
10. Test the team in each location on proper use and understanding of the overall PKI and their portion of the trusted network.
11. Evaluate the rollout, test, and modify as needed to improve the overall security of the GlobalCorp trusted network.
C. You d
Click Online chat to talk with us , get more informations about SCP SCP Certification SC0-502 practice exam study guides questions and answers
Test4pass SC0-502 Exam Features
Quality and Value for the SC0-502 Exam
Test4pass Practice Exams for SCP SC0-502 are written to the highest standards of technical accuracy, using only certified subject matter experts and published authors for development.
100% Guarantee to Pass Your SC0-502 Exam
If you prepare for the exam using our Test4pass testing engine, we guarantee your success in the first attempt. If you do not pass the SCP Certification SC0-502 exam (ProCurve Secure WAN) on your first attempt we will give you a FULL REFUND of your purchasing fee AND send you another same value product for free.
SCP SC0-502 Downloadable, Printable Exams (in PDF format)
Our Exam SC0-502 Preparation Material provides you everything you will need to take your SC0-502 Exam. The SC0-502 Exam details are researched and produced by Professional Certification Experts who are constantly using industry experience to produce precise, and logical. You may get questions from different web sites or books, but logic is the key. Our Product will help you not only pass in the first try, but also save your valuable time.
SC0-502 Downloadable, Interactive Testing engines
We are all well aware that a major problem in the IT industry is that there is a lack of quality study materials. Our Exam Preparation Material provides you everything you will need to take a certification examination. Like actual certification exams, our Practice Tests are in multiple-choice (MCQs) Our SCP SC0-502 Exam will provide you with free SC0-502 dumps questions with verified answers that reflect the actual exam. These questions and answers provide you with the experience of taking the actual test. High quality and Value for the SC0-502 Exam:100% Guarantee to Pass Your SCP Certification exam and get your SCP Certification Certification.
Test4pass SC0-502 examTest4pass SC0-502 pdf exam
Test4pass SC0-502 braindumps
Test4pass SC0-502 study guides
Test4pass SC0-502 trainning materials
Test4pass SC0-502 simulations
Test4pass SC0-502 testing engine
Test4pass SC0-502 vce
Test4pass SC0-502 torrent
Test4pass SC0-502 dumps
free download SC0-502
Test4pass SC0-502 practice exam
Test4pass SC0-502 preparation files
Test4pass SC0-502 questions
Test4pass SC0-502 answers
http://www.test4pass.com/SC0-502-exam.html The safer.easier way to get SCP Certification Certification
.
