Hey @Dwayne-Coleman , if I have notes to share I will most certainly share them with you. Can you give me the specific episode in question?

@Demetrius-Richardson did you use other guides/books in addition to ITPROTV or were the videos enough? I'm studying for Network+ too and was just wondering if it's enough to pass the test. thanks!

You are most definitely correct, that was a typo on my part

P8, P9 are AT

P1 is the ATX connector

and what I called the P8 was suppose to say

ATX/EPS 12V 8-pin CPU connector

my apologies

@Richard-Currie,

Please reach out to our member services via the chat bubble on our site. Ask for the objective map for the course. This should help you get ready the way you choose.

Hi Wes,

Thanks for your answer.

If the answer is wrong in the practice test you recommend, I am disappointed.

How am I supposed to know whether the rest of the kaplanlearn platform questions and answers are correct?

@Yaniv-Oxenhandler said in Public IPS:

Question regarding Active Recon and Nmap. Is it possible to scan public ips? What's being shown is 192.168.1... which is a private IP. How would I go about scanning a public IP. Is that possible?
If you can reach the internet, you simply type in the IP address you want to scan. A word of warning though. I would check with your ISP to see if that is allowed. If it is not. Then I wouldn't do it.

If I have the IP but don't have access the private network can I scan it?
if you take a look at your own IP address on your computer, more than likely it's private IP address range unless you've connected your computer directly to your ISP modem.

Would it require an adapter or a different piece of technology? thanks

It would require a network adapter and something that runs nmap.

Hi @sam-arnce - Yes and yes :)

That being said, do keep in mind that Server+ has some prerequisite knowledge which the course won't cover in depth. Officially CompTIA recommend A+ before taking Server+, but I'd strongly suggest having Network+ (or at least running through the course) if you're not too familiar with networking.

Depending where you are in your learning journey, you might want to start by running through the A+ and Network+ course before heading over to Server+. Wes does a great job of pointing out places where you may need some knowledge "backfill" too, so if you're pretty confident on the fundamentals just listen out for these points and then add a bit of further study if you feel you need it.

Yes, I'm taking the 220-1101 Exam Simulation

https://www.kaplanlearn.com/education/offeringdashboard/index/ca8d3ae4a06ad31c59bf4899304083dd

What do you mean you can't take the 1100 series until October? You can buy exam vouchers for the 1101 and 1102 and take these exams now. You can choose between 1000 or 1100 series until October.

Excellent, thank you Wes!

Thank you for the response. I have already gotten a response from the support team.

Hey @Atharva-Bet , with EAP-TTLS the client-side certificate is optional but not required. Below is a good article on EAP-TTLS as well as EAP-TLS which requires client-side and server-side certificates.

In EAP-TTLS, there is a TLS handshake that requires the client only to obtain the server's public key to establish an encrypted tunnel. Then the client can authenticate through the tunnel (protected from MiTM attacks and eavesdropping) with other authentication protocols such as PAP, CHAP and MS-CHAPv2....which does not require the client-side certificate.

https://www.intel.com/content/www/us/en/support/articles/000006999/wireless/legacy-intel-wireless-products.html

@wes-bryan Thank you so much, Sir, this was very helpful. Extremely appreciate it that every time you promptly clear my doubts up so well. You have really been a very important person in my cybersecurity journey (and also other edutainers like Ronnie Sir & Adam Sir & Dan Sir). I always look up to you guys as mentors and I am grateful for that!!
I wish to aim and achieve high in the cybersecurity world and make my mentors proud :)

@Atharva-Bet , I hope all is well.

What this basically means is that the party requesting the certificate from the Certificate Authority (CA) must be able to prove that the RSA key being used to request the certificate is trusted by a TPM that the CA trusts.

You can read more about it here if you are interested:

https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/manage/component-updates/tpm-key-attestation

Cheers,

Adam

@wes-bryan Awesome, Thanks again. I feel confident in my subnetting abilities now.

Hi Brian, unfortunately there's no lab for my course but thanks for the suggestion. Cheers.

@Franklin-Shinn , I hope all is well. First of all, I would not be overly concerned about EITHER of these two items, as they are unlikely to appear on the exam.

Having said that, Positive risk management is primarily concerned with identifying, assessing and managing potentially beneficial outcomes.

Trusted Computer System Evaluation Criteria (TCSEC) - frequently referred to as the Orange Book, was a United States Government Department of Defense standard that set basic standards for the implementation of security protections in computing systems. Strongly focused on enforcing confidentiality with no focus on other aspects of security such as integrity or availability. Although it has since been superseded by the common criteria, it influenced the development of other product evaluation criteria, and some of its basic approach and terminology continues to be used. Introduced the idea of the Trusted Computing Base (TCB) into product evaluation.

TCSEC combines functionality & assurance rating of the confidentiality protection of a system into four categories. These are then subdivided into numbered subcategories:

Level Label Requirements D Minimal Protection C1 Discretionary Protection C2 Controlled Access Protection B1 Labeled Security B2 Structured Protection B3 Security Domains A1 Verified Protection

Evaluation of a target system is used to assign the appropriate category ranking. "A" is the highest level.

Rainbow Series is where Orange Book comes from. Approx. 30 titles with different color designations make up the series. Red Book (Trusted Network Interpretation | TNI), discussed how to implement the Orange Book concept into a trusted network.

Hope that helps to clarify.

Good Luck on your exam ... If you have any other questions, please be in touch as needed.

Cheers,

Adam

Hey @Atharva-Bet another great question.

The PEM and PKCS#7 formats are BASE64 ASCII encoded files, meaning that you can open them in a text editor (human readable) and usually the certificate is in between:

---------BEGIN CERTIFICATE-----------
and
---------END CERTIFICATE-------------

and these certificates use the .pem, .cer, .crt file extensions. These files do not contain and private key. If a PEM encoded file contains the private key the format will be .key
The PKCS#7 encoded certificate will have .p7b and .p7c format.

The DER and PKCS#12 encoding produce a binary file (not human readable) used in:
DER = Java-based Web servers (formats are. der and .cer)
PKCS#12 = are used mainly in Windows servers, remember this encoding type and format does contain the both the public and private key

@Atharva-Bet it is always a pleasure. I agree with you, next time I create the course I will incorporate this suggestion:

Client-side
"Server random" + " Premaster secret" = "Session Key"

Server-side
"Client random" + "Premaster secret" = "Session Key"

@wes-bryan Hello Sir had an additional doubt. How does S/MIME fit into the picture?j You said it is more of a technology than a protocol so like where the entire scenario of sending and receiving emails does S/MIME fit into with the other protocols in use like POP3S or IMAP or SMTP? Like I wanted do they all work simultaneously?

Hey @Ttreon-Benitez thank you for catching this, I will fix the error in the notes and have them reuploaded.

HTTPS = 443
IMAP = 143