Configuring Advanced Windows Server 2012 Services — Question 105

You have an enterprise certification authority (CA) named CA1.
You configure a recovery agent for CA1.
On CA1, you create a new certificate template named CertTemplate1, and then you configure CA1 to allow certificates to be requested based on CertTemplate1.
You need to ensure that new certificates issued based on CertTemplate1 can be recovered.
What should you do?

Answer options

• A. From the Certificate Templates console, modify the Issuance Requirements settings of CertTemplate1.
• B. From the Certification Authority console, modify the enrollment agents of CA1.
• C. From the Certificate Templates console, modify the Request Handling settings of CertTemplate1.
• D. From the Certification Authority console, modify the certificate managers of CA1.

Correct answer: C

Explanation

The correct answer is C because modifying the Request Handling settings of CertTemplate1 allows you to specify how the certificate can be issued and managed, including recovery options. The other options either pertain to different settings that do not directly impact the recoverability of the certificates or relate to other administrative roles that do not address the requirement at hand.