Installation, Storage, and Compute with Windows Server 2016 — Question 40

Your network contains an Active Directory forest named contoso.com.
The forest contains a member server named Server1 that runs Windows Server 2016. Server1 is located in the perimeter network.
You install the Active Directory Federation Services server role on Server1. You create an Active Directory Federation Services (ADFS) farm by using a certificate that has a subject name of sts.contoso com.
You need to enable certificate authentication from the Internet on Server1.
Which two inbound TCP ports should you open on the firewall? Each correct answer presents part of the solution.

Answer options

• A. 389
• B. 443
• C. 3389
• D. 8531
• E. 49443

Correct answer: B, E

Explanation

The correct answer includes ports 443 and 49443, as port 443 is used for HTTPS traffic, which is essential for secure communication over the Internet, while port 49443 is often used for ADFS communication. The other options (389, 3389, and 8531) are not relevant for ADFS certificate authentication from the Internet.