Designing and Implementing a Server Infrastructure — Question 37

Your company is a hosting provider that provides cloud-based services to 20 customers.
Each customer has its own Active Directory forest located in your company's datacenter.
You plan to provide VPN services to each customer. The VPN solution will use RADIUS for authentication, authorization and accounting services.
You need to recommend a solution to forward authentication, authorization and accounting messages from the perimeter network to the Active Directory forest of each customer.
What should you recommend?
More than one answer choice may achieve the goal. Select the BEST answer.

Answer options

• A. 20 VPN servers, one RADIUS proxy, 20 RADIUS servers
• B. one VPN server, one RADIUS proxy, and 20 RADIUS servers
• C. one VPN server, 20 RADIUS proxies, and 20 RADIUS server
• D. one VPN server, one RADIUS proxy, and one RADIUS server

Correct answer: B

Explanation

The correct answer is B because it optimally uses a single VPN server to handle connections, one RADIUS proxy to forward requests, and 20 RADIUS servers to individually authenticate each customer's Active Directory. Option A is over-provisioned with 20 VPN servers, while Option C complicates the architecture with multiple RADIUS proxies. Option D lacks the necessary RADIUS servers to accommodate all customers.