You have 10 servers that run Windows Server in a workgroup.
You need to configure the servers to encrypt all the network traffic between the servers. The solution must be as secure as possible.
Which authentication method should you configure in a connection security rule?
Click on the arrows to vote for the correct answer
A. B. C. D.D
https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-firewall/create-an-authentication-request-ruleTo encrypt network traffic between the servers in a workgroup, we can use IPsec, which is a protocol that provides encryption, authentication, and integrity of network traffic.
To configure IPsec, we need to create a connection security rule that specifies the conditions for when the IPsec encryption should be applied. When creating the connection security rule, we also need to select an authentication method that will be used to establish a secure connection between the servers.
Out of the given options, the most secure authentication method for IPsec in this scenario would be the computer certificate. This is because computer certificates provide mutual authentication, which means that both the client and the server are verified using digital certificates. This method ensures that only trusted servers can communicate with each other and prevents man-in-the-middle attacks.
NTLMv2 and pre-shared key are also options for IPsec authentication, but they are less secure than computer certificates. NTLMv2 is vulnerable to several attacks, including replay attacks, while pre-shared keys are more difficult to manage and can be easily compromised if not properly secured.
Kerberos V5 is a strong authentication protocol, but it requires a domain infrastructure, which is not available in a workgroup environment. Therefore, Kerberos V5 is not a viable option in this scenario.
In summary, the most secure authentication method for IPsec in a workgroup environment with Windows Server is the computer certificate.