Securing Windows Server 2016 — Question 19

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this sections, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You network contains an Active Directory forest named contoso.com. All domain controllers run Windows Server 2016. Member servers run either Windows
Server 2012 R2 or Windows Server 2016. Client computers run either Windows 8.1 or Windows 10.
You need to ensure that when users access files in shared folders on the network, the files are encrypted when they are transferred over the network.
Solution: You disable SMB 1.0 on all the computers in the domain, and then you enable the Encrypt data access option on each file share.
Does this meet the goal?

Answer options

• A. Yes
• B. No

Correct answer: B

Explanation

The solution does not meet the goal because disabling SMB 1.0 does not inherently ensure encryption of data in transit. The Encrypt data access option only secures access to the files but does not encrypt the data being transmitted over the network, which is necessary for complete protection.