The net-libraries on SQL2000 are configured as shown in the exhibit.
SQL7 is configured so that it has the named pipes, TCP/IP, NWlink, IPX/SPX and multiprotocol Net Libraries.
SQL2000 and SQL7 exchange confidential company information. You need to ensure that unauthorized users cannot access this information.
Which two actions should you take? (Each correct answer presents part of the solution. Choose two)
A.On SQL2000, enable the multiprotocol net library.
B.On SQL2000, select the force protocol encryption check box.
C.On SQL7, select the force protocol encryption check box.
D.On SQL2000, install a secure sockets layer (SSL) encryption certificate.
E.On SQL2000 and SQL7, enable multiprotocol encryption.
参考答案
正确答案:AE
解析:Explanation:
For compatibility with earlier versions of SQL Server, the Multiprotocol Net-Library continues to support its own encryption. This fits this scenario with a SQL Server 7 and a SQL Server 2000.
Note: Network libraries are used to pass network packets between the clients and the server running SQL Server 2000. The network libraries, implemented as dynamic-link libraries (DLLs), perform. the network operations required to communicate using specific interprocess communication (IPC) mechanisms.
The Multiprotocol Net-Library uses the Windows NT remote procedure call (RPC) facility and can communicate over most IPC mechanisms supported by Windows NT such as TCP/IP Sockets, NWLink IPX/SPX, and Named Pipes; allow the use of Windows Authentication over all protocols that RPC supports; support encryption for user password authentication as well as data; and can offer performance comparable to native IPC Net-Libraries for most applications.
The Multiprotocol encryption is used only for compatibility purposes with existing systems but is not supported on Windows 98. The Secure Sockets Layer (SSL) encryption that can be enabled using the Server Network Utility is a more comprehensive encryption solution. However, SSL encryption works only with instances of SQL Server 2000 running on a computer that has been assigned a certificate from a public certification authority. The computer on which the application is running must also have a root CA certificate from the same authority.
Incorrect Answers:
B: You can force protocol encryption using SSL. Here Multiprotocol encryption must be used for compatibility purposes. SSL requires a server certificate and is not support by SQL Server 7.0.
C: You can force protocol encryption using SSL. Here Multiprotocol encryption must be used for compatibility purposes. SSL requires a server certificate and is not support by SQL Server 7.0.
D: The Secure Sockets Layer (SSL) encryption that can be enabled using the Server Network Utility is a more comprehensive encryption solution than Multiprotocol encryption. However, SSL encryption works only with instances of SQL Server 2000 running on a computer that has been assigned a certificate from a public certification authority. The Multiprotocol encryption must be used for compatibility purposes.