Windows Server 2019 Training 32 - Monitoring and Troubleshoot IPsec- Firewall With Advance Security

Windows Server 2019 Training 32 - Monitoring and Troubleshooting IPsec- Firewall With Advance Security.

Scenario 1
An administrator is attempting to connect to a remote computer and monitor its IPsec connectivity. The administrator reports that he is unable to monitor the remote server. You ask him use the Event Viewer to identify the problem, and in doing so, the administrator notes the following error: “The IPsec server is unavailable or incompatible with the IPsec monitor.”
Question: What can you do to resolve this issue?
Answer: The Administrator has not enabled remote IPsec monitoring on the computer he wants to monitor. You can enable remote monitoring by configuring the enableremotemgmt Registry key.

Scenario 2
An administrator has configured and enabled an IPsec Security policy on a file server that stores sensitive data files. The administrator also created an Active Directory-based policy and applied it to the organizational unit (OU) of clients that are permitted access to the secure server. The next day, the Backup Administrator, who is responsible for backing up the secure server, reports he was unable to access the server from the backup server. The backup server’s computer account is stored in an administrative OU separate from the client’s OU.
Question: Based on the information provided, why is the backup server unable to access the secure server?
Answer: The backup server does not have an IPsec policy defined that allows it to communicate with the secure server. The clients received an IPsec policy via a Group Policy object (GPO). However, because the backup server was in a separate OU, it did not receive the secure policy.