ALL >> Computers >> View Article
Guidelines For Using Connection Manager Profiles And Phone Books
Follow these guidelines:
If Connection Manager phone books are used and File Transfer Protocol (FTP) is used to update the MCP certification phone book files on the phone book server, be sure that the
FTP services are stopped or disabled after the phone book is transferred and that they are started only when new changes must be transferred.
Do not allow anonymous FTP access to the Phone Book Server (PBS).
Protect administrative connections to the PBS server using IPSec.
Protect Connection Manager profiles and the distribution process. This is important because:
Profiles contain scripts and access data that might provide an attacker with valuable information. Although connections are password protected, providing an attacker with all the server configuration information and access numbers reduces the amount of work the attacker has to do to successfully attack your network.
If an unauthorized individual is allowed to access and modify profiles, that person can mount a denial of service attack (by providing incorrect information in profiles that ...
... later get distributed to users and that don't work), weaken VPN communications (by configuring less secure options, such as weaker encryption strength), and access a lot of information that might provide Free Security+ practice exams ideas and data for other types of attacks.
Client configuration Considerations include:
Authentication selection for the client must match at least one of the approved authentication configurations on the server.
Encryption strength selection on the client must match at least one of the approved encryption strength settings on the server.
VPN protocol selection on the client must match at least one VPN protocol selected on the server.
If certificates are required, a valid certificate of the right type must be installed on the client computer or smart card.
A VPN client can be prevented from creating a new default route (one in which the client will be able to directly access the Internet and your intranet) in the Advanced TCP/IP Properties dialog box for the VPN connection. Figure 10-4 is a screen shot of this page with the Determining Routing For VPN Remote Access Clients check box deselected. If this setting is disabled, a route is created—it just does not become the default route. User selection of this element can be prevented MCSE 2003 certification by configuring Group Policy.
Add Comment
Computers Articles
1. Custom Website Development ServicesAuthor: brainbell10
2. Enhance Storage Conditions With Warehouse Humidity Monitor And Probe Monitoring Solutions For Greater Environmental Control
Author: Chris Miller
3. How Telecom Networks Are Being Built Smarter — One Data Point At A Time
Author: Itech Lance
4. Mobile Threat Management Market: Enabling Secure And Connected Workforces
Author: Umangp
5. Expand Your Business With Ipad App Development
Author: brainbell10
6. Laptop Screen Replacement In Dubai
Author: majid computer
7. Edc Systems With Strong Etmf Integration And External Connectivity For Cros And Sponsors
Author: Giselle Bates
8. From 3d Data To Clear Plans: Point Cloud To Cad Help From Itechlance It Pvt. Ltd
Author: Itech Lance
9. Future Of Digital World Drones Or Mobile Apps
Author: brainbell10
10. User And Entity Behavior Analytics (ueba) Market: The Key To Managing Third-party Cyber Risks
Author: Umangp
11. Buy Epson Tm-t88vi Receipt Printer With Warranty
Author: prime pos
12. Food Delivery Mobile App Development Cost & Features
Author: brainbell10
13. Cell Phone Repair Near Me | Fast & Trusted Service
Author: Real Mobile Repair
14. 00al556 Ibm 550-watts Platinum Power Supply For X3650 M4: Reliable And Energy-efficient Power For Enterprise Servers
Author: Server Tech Central
15. Iot Identity And Access Management (iam) Market : Driving Secure Innovation In Connected Ecosystems
Author: Umangp






