Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. DCDNS1 is a DC and DNS server that host and ADI zone for company.com and is located in the main office. DNS2 is a DNS server that hosts a secondary zone for company.com and is located in the branch office. FSrv1 is a new file server that is located i
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
Get-ADUser cmdlet
Deploy a GPO to the WebSrvOU
Refresh the zone on DNS2

2. 3 servers are configured as DNS servers and are ADI for the company.com zone. DNS only allows for secure updates - but you need to enable dynamic DNS updates on DCC.company.com...What do you do?
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
Configure block inheritance on the IT OU
Implement Network Access Protection (NAP)

3. All users store their files in their Documents folder. Some of these are very large. You are going to implement roaming profiles for all your users. You will configure this by using a GPO. To minimize the amount of time it takes for your users to log
Create TWO new starter GPO's one with user administrative templates configure - and one with computer admin template configured - and export them to .cab files - and make the .cab files available in both forests...Then when creating new group policie
Modify the GPO to include folder redirection
Configure event log subscriptions
Then use Windows Deployment Services (WDS)

4. Tool to montior replicaiton of group policy template files when DFL set at Windows SVR 2003
Create a Network Load Balancing cluster.
Ntfrsutil
FILES option within Ntdsutil
Encrypting File System (EFS). This can be enabled locally or through a GPO.

5. Srv1 - Srv2 - Srv 3 are Network Policy Servers (NPS) that function as RADIUS Servers. Srv1 is also Microsoft SQL Server 2008 server. The network has 20 wireless access points that are configured as RADIUS clients. You need an audit strategy with the
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
Printer driver isolation
Creating a data collector set that kick off a scritp that either move or delete files.

6. When service account passwords need to be changed for SQL they should be...
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
MEDV to deploy virtual desktops
Changed manually
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO

7. RDSrv1 is a Server 2008 R2 server with Remote Desktop Services installed. You are planning to establish a Terminal Server Farm that must meet these requirements: New users automatically connect to the terminal server that has the fewest active sessio
From Server A - run Create Basic Task Wizard
Import-csv password.csv | Foreach {New-ADUser -Name $_.Name -Enabled $true_AccountPassword (ConvertTo_SecureString $_.Password -AsPlainText -force)}
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
Implement a Remote Desktop Connection Broker (RD Connection Broker)

8. All DCs run Windows Server 2008 R2 and have the DNS Server role installed. The domain controllers for each location are stored locally. Each has its own standard primary zone to support its local domain.You need a plan that meets the following: WAN l
IIS Manager user account
Create a standard secondary of domain and create standard secondary of other domain.
Configure caching on the shared folder (offline files)
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.

9. You need to come up with a solution for managing user accounts that: allows Help Desk department to manage the user objects in all domains and minimize the administrative effort required to manage the frequent changes to the Help Desk department
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.
Dsmgmt
Ensure your account - or the group is a member of the local Administrators group for that specific server.
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.

10. IE can be a security concern - however you can take advantage of Group policies to lock down IE as much as possible

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

11. You need to allow remote access to the servers on your network while meeting the following requirements: all remote connections to the servers must be encrypted; all remote authentication attempts to the servers must be encrypted; only inbound connec
Configure Firewall Group Policies and link them at the Domain level
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
CAPublishGP group should have the Manage CA permission.
Network Load Balancing (NLB) cluster

12. To backup GPO's in domain and minimize bakcup...
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
Create an Active Directory-Integrated zone.
Event Subscriptions
The Group Policy Management Console

13. To update ADRMS password...
AD Rights Management Services
Use Netsh tool from administrator's computer.
Then use on install image file that contains a single install image.
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)

14. To backup to tape/robotic tape and to backup VMs you must use...
Microsoft System Center Data Protection Manager 2010
Event Subscriptions
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Install the RSAT tool on their workstation to provide for more efficient network management

15. To restore previous version of script without taking up too much of time...
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Implement GPO for all client computers
Configure authorization rules for Web developers on each web server
Attach VHD file created by Windows server backup

16. If you need to implement Encrypting File System (EFS) and minimize amount of data transferred across and access EFS certs on any client computer
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Deploy it by using Group Policy Software Installation method
Enable Credential Roaming
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.

17. Policy states that domain controllers cannot contain optical drives. You need a backup and recovery plan that restores the domain controllers in the event of a catastrophic server failure. To accomplish this
Add-ADFineGrainedPasswordPolicySubject cmdlet
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
Add the new UPN suffix to the forest.
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.

18. What shold be done to configure AD RMS so users can protect their data?
Modify the schema of LDSInst1
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Create an e-mail account in AD DS for your RMS users
Install Hyper-V role and convert physical machines into virtual machines

19. You need to recommend a server configuration to support a Web-based application that must meet these requirements: the app must be available to all users if a single server fails; support the installation of .NET applications; Minimize software costs
WDS
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
Active Directory Right Management Services (AD RMS)
Printer driver isolation

20. To know if a new applicaiton is going to run on your network computers via AppLocker in GPO
Folder redirection. Folder redirection is also useful when using roamin profiles.
NOT be able to store that data on an iSCSI SAN
Test-AppLockerPolicy
Discover the run Microsoft Baseline Security Analyzer (MBSA)

21. If you need a VPN soluction that stores VPN passwords as encrypted text and supports automatic enrollment of certificates
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Changed manually
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.

22. The Computer Management snap-in allows you to create shares both on...
Your machine and remote desktops
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.

23. For complete fault tolerance the backend SQL Server should be protected as well - by placing it in a MSCS Failover Cluster) - To allow computers that are members of the domain to receive updates from a local WSUS you can easily create a group policy
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
Configure event log subscriptions
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
Modify the local policy to point to the Internal WSUS server

24. To improve performance and provide redundancy if a single server fails - the intranet web site should be in this.
Create a new Password Settings Object (PSO) for the IT users.
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
Network Load Balancing (NLB) cluster
Service user account for AD LDS

25. To allow a user to administer Active Directory
Win2000
Repadmin
Add the user to the Domain Admins global group
Prestage the computer account in AD

26. Several employees say they can't get on domain with "password incorrect" message. What utility tool can be used to identify issue and also ensure users can log into domain?
CAPublishGP group should have the Manage CA permission.
Repadmin
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
Event Subscriptions

27. To enable the AD Recycle Bin
Event Subscriptions
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.
Enable - ADoptionalFeature cmdlet
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.

28. You have few Server 2003 servers that have Terminal services installed. You also have a firewall that runs ISA Server 2006. Your remote access strategy for the terminal servers needs to meeet the following: restricts accsss to specific Remote Desktop
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
IIS Manager user account

29. 2 ways to relocate user and computer accounts to different OUs
Deploy it by using Group Policy Software Installation method
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
DSMOD - ADUC
Windows Server 2003

30. You have a single AD domain named ad.company.com. The FFL is windows 2000 and the DFL is Windows 2000 Native. The UPN suffix company.com needs to be available for user accounts. What should be done first?
Add the new UPN suffix to the forest.
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
PowerShell 2.0

31. In order to replicate SYSVOL shares by using DFS Replicaiton (DFS-R)
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Raise the DFL to Windows Server 2008 R2.
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)

32. To allow administrators tha trun Windows 7 ability to manage the DNS server that runs on the Server Core installation of Server 2008 R2
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
Add-ADFineGrainedPasswordPolicySubject cmdlet
dnscmd tool
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.

33. You have a main office that contains two domain controllers and a branch office that has an RODC. What should be done so that a user named George can install updates on the RODC while preventing George from logging on to any other domain controller?
Test-AppLockerPolicy
Create TWO new starter GPO's one with user administrative templates configure - and one with computer admin template configured - and export them to .cab files - and make the .cab files available in both forests...Then when creating new group policie
Jill came down with 2.50.
Use the Local Roles options with dsmgmt.

34. If your company has the need to create administrative templates (.admx) files for Active Directory runnin on server 2008 R2 you should recommend...
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
dnscmd tool
Distributed File System (DFS) Replication
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise

35. Deployment of 10 WSUS servers across 10 branch office will take place over a three month period. The bandwidth between the corporate office and the branch offices must be minimized due to budget contraints within the company. Admins in the corporate
AD RMS
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Recommend Active Directory delegation
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office

36. To ensure that the branch office with its own high speed internet connection receives the exact same updates as the corporate office you should recommend this.
Creating a data collector set that kick off a scritp that either move or delete files.
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Recommend GPT and basic disks

37. Need to ensure users receive updated template within five days...
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Registry on users computer needs to be modified
Assign the application to all client computers by using a GPO.
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd

38. Certain groups of users must be able to approve certificate requrests and revoke certificates but not be able to modify the properties of the CA. You should recommend
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
Administrative Role Separation
Role Separation
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary

39. You need to create a DNS infrastructure that must allow client computers in each office to register DNA names within their respective offices and client computuers must be able to resolve names for hosts in all offices
Add the Windows Server Backup feature and Windows System Image recovery.
Create an Active Directory-Integrated zone.
Network Load Balancing (NLB)
Add the new UPN suffix to the forest.

40. You are evaluating whether to use express installation files as an update distribution mechanism. The technical requirement that
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Windows BitLocker Drive Encryption (Bit Locker)
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
Active Directory Users and Computers utility

41. Users need to be warned when uploading or copying MP3 files onto a corporate network share. You should implement this.
DFL needs to be Windows Server 2008
Passive file screens
Configure folder redirection
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).

42. Help desk staff must be able to update drivers on the domain controllers at the branch office and assign them the proper
Administrative Role Separation
Use local roles options within "dsmgmt"
Role Separation
Configure offline files and enable manual caching

43. Backup solutions for the files servers that support a robotic-based tape library must support the enterprise; you should recommend
Network Load Balancing (NLB) cluster
Create TWO new starter GPO's one with user administrative templates configure - and one with computer admin template configured - and export them to .cab files - and make the .cab files available in both forests...Then when creating new group policie
Microsoft System Center Data Protection Manager
Group Policy Preferences

44. The solution requires that teachers that have been issued district based laptops - work remotely - and teach only on-line classes - must connect to the school network using split-tunnel VPN. Need to be sure that: minimize traffic over the VPN wheneve

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

45. You have been tasked with backing up all the GPOs in the domain. The IT manager also wants you to minimize the size of the backup. You decide to use...
Modify zone transfer settings for company.com zone on DCA
Configure caching on the shared folder (offline files)
The Group Policy Management console
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.

46. You need a solution that meets policy while minimizing hardware and software costs
Data Recovery Agent
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
Active Directory Right Management Services (AD RMS)
Create a new Password Settings Object (PSO) for the IT users.

47. You have a forest with two domains - all servers run 2008 R2 - and all DCs contain DNS. A member server has a primary zone for test.company.com. What should be done so all DCs can resolve names from test.company.com zone?
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Group Policy Preferences
Run the Delegation of Control Wizard on the Staff OU

48. To add a server with AD FS 2.0 role to an existing AD FS farm...
Set-ADServiceAccount cmdlet
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.
fsconfig on FSSrv2
Storage manager for SANs

49. To minimize the amount of storage required you should recommend
Share and Storage Management
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
Test-AppLockerPolicy
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.

50. You need to deploy a distributed database application that meets the following: allocates storage to servers as required; isolates storage traffic from the exisiting network; ensures that data is available if a single disk fails; ensures that data is
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.
Create a Central Store
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Site

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Major Subjects
Tests & Exams AP CLEP DSST GRE SAT GMAT	Certifications CISSP go to https://www.isc2.org/ PMP ITIL RHCE MCTS More...	IT Skills Android Programming Data Modeling Objective C Programming Basic Python Programming Adobe Illustrator More...	Business Skills Advertising Techniques Business Accounting Basics Business Strategy Human Resource Management Marketing Basics More...
Soft Skills Body Language People Skills Public Speaking Persuasion Job Hunting And Resumes More...	Vocabulary GRE Vocab SAT Vocab TOEFL Essential Vocab Basic English Words For All Global Words You Should Know Business English More...	Languages AP German Vocab AP Latin Vocab SAT Subject Test: French Italian Survival Norwegian Survival More...	Engineering Audio Engineering Computer Science Engineering Aerospace Engineering Chemical Engineering Structural Engineering More...
Health Sciences Basic Nursing Skills Health Science Language Fundamentals Veterinary Technology Medical Language Cardiology Clinical Surgery More...	English Grammar Fundamentals Literary And Rhetorical Vocab Elements Of Style Vocab Introduction To English Major Complete Advanced Sentences Literature Homonyms More...	Math Algebra Formulas Basic Arithmetic: Measurements Metric Conversions Geometric Properties Important Math Facts Number Sense Vocab Business Math More...	Other Major Subjects Science Economics History Law Performing-arts Cooking Logic & Reasoning Trivia

Test your basic knowledge |

MSITP

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests

Major Subjects

Tests & Exams

Certifications

IT Skills

Business Skills

Soft Skills

Vocabulary

Languages

Engineering

Health Sciences

English

Math

Other Major Subjects

Browse all subjects

Browse all tests

Most popular tests