SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. You have 2 Server Core servers that are part of a Network Load Balance that host a web site. To be able to allow administrators - on their Windows 7 computers - remotely manage the NLB with automation
Then configure GlobalNames zones on each domain controller.
View properties of %systemroot%ntdsntds.dit
Enable Windows Remote Management (WinRM) on the servers.
Configure RODC for Administrator Role Separation
2. You have been tasked with backing up all the GPOs in the domain. The IT manager also wants you to minimize the size of the backup. You decide to use...
Get-ADUser cmdlet
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
The Group Policy Management console
Microsoft SharePoint Foundation 2010
3. to protect file servers and hard disks that may be at risk of being accessed or stolen
Recommend Offline Files
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Implement Windows BitLocker Drive Encryption (BitLocker)
4. An AD LDS instance needs to be replicated from one server to another...
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
Service user account for AD LDS
5. If users complain that it is hard to find the shared folders on the network implement
Additional DFS Targets
ntdsutil
Set-ADServiceAccount cmdlet
Ntdsutil
6. All DCs run Windows Server 2008 R2 and have the DNS Server role installed. The domain controllers for each location are stored locally. Each has its own standard primary zone to support its local domain.You need a plan that meets the following: WAN l
Create a standard secondary of domain and create standard secondary of other domain.
From Server1 - run the Create Basic Task Wizard
Then use Windows BitLocker Drive Encryption
Active Directory Right Management Services (AD RMS)
7. DNS zone is stored in custom applicaiton directory partition. What tool is used to ensure replicaiton to new installed DC?
Deploy it by using Group Policy Software Installation method
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
Network Load Balancing (NLB) cluster
dnscmd
8. With AppLocker settings - which Windows PowerShell cmdlet would be used to identify whether a specific application file is allowed to run on a computer?
Create an e-mail account in AD DS for your RMS users.
Test-AppLockerPolicy
Incoming external trust
Properties of PSO need modified
9. To help restrict access to Windows 7 computer in the event that it gets stolen implement
Create a Central Store
Windows BitLocker Drive Encryption (Bit Locker)
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
10. to ensure that server backups can be performed remotely from your backup server on your company file server you should perform these two actions
Distributed File System (DFS) Replication
Domain based Distributed File System (DFS) namespace and DFS Replication.
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Install Windows Server Backup and modify the Windows firewall settings
11. So a user can install updates on an RODC while preventing them from logging on to any other domain controller...
Assign the application to all client computers by using a GPO.
Use local roles options within "dsmgmt"
Zone transfer settings
Implement a GPO for each domain
12. AD CS is configured on Server1 as a standalone CA. What two actions should you do to audit changes to the CA configuration settings and the CA security settings?
Implement a GPO for each domain
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
13. WSUS infrastructure must meet the following: distributed from a central location - all computers must continue to receive updates in the event that a server fails
Implement Distributed File System Replication (DFSR) on both servers
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
14. If you need to be able to create shared folders on Server 2008 R2
Install From Media IFM
Ensure your account - or the group is a member of the local Administrators group for that specific server.
Include a server that runs Microsoft Office SharePoint Server 2010
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie
15. GPO setting to prevent all users from running an application
Include a server that runs Microsoft Office SharePoint Server 2010
Software Restriction Polices
Then use Windows Deployment Services (WDS)
Configure caching on the shared folder (offline files)
16. You need to deploy a new application according to the following requirements: must be available to remote users when they are offline; must access the application from an icon on the Start menu
CAPublishGP group should have the Manage CA permission.
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Assign the application to computers in the PC OU
17. You need to relocate an AD LDS instance from C: Drive to D: Drive
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
Properties of PSO need modified
Add the user to the Domain Admins global group
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
18. Your data provisioning solution must meet the following requirements: users must have access to their Documents folder regardless of the client computer that they use; user documents should not be stored on the local client computer; minimize the tim
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
Configure folder redirection
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
19. Requirements are: support the installation of SQL Server 2008; Provide redundancy for SQL services if a single server fails. To accomplish this
Dsmgmt
A Distributed File System (DFS) namespace
Create a MEDV workspace
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
20. To speed up the deployment of the RODC in the new branch offices you should take advantage of this.
Zone transfer settings
Then configure GlobalNames zones on each domain controller.
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
Install From Media IFM
21. When deploying group polices we want to configure them so that they are applied as quickly as possible. One way this can be done is if the policy only consists of computer settings. If this is the case we can do this.
Distributed File System (DFS) Replication
Windows BitLocker Drive Encryption (Bit Locker)
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
22. To make deploying the custom Word dictionary easy
Authorization Manager role assignment
Use the Local Roles options with dsmgmt.
Recommend Offline Files
Recommend Group Policy preferences
23. With Group Polices having over 8 -000 different settings - the possibility of conflicting policies - and security filters you should track multiple versions and offline modifications to GPOs. You should recommend
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
Microsoft Desktop Optimization Pack (MDOP)
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
PDC emulator with w32tm.exe
24. To ensure that a group in not giving too many permissions when delegating be sure to delagate permissions at the lower level OUs vs. at the domain level for example
Install the RSAT tool on their workstation to provide for more efficient network management
Install From Media IFM
Raise the DFL to Windows Server 2008 R2.
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
25. To allow administrators to create and store .ADMX templates in a way that allows them to have access to the template no matter what administrative computer they logon to you must
Windows Server 2003
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Create a Central Store
Group Policy Preferences
26. UPN Suffix xxxx.com needs to be available for user accounts...
Assign the application to computers in the PC OU
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.
Add the new UPN Suffix to the forest
27. You need to design patch management for satellite offices that meet the following requirements: WSUS updates are approved independently for each satellite office; Internet traffic is minimized. To accomplish
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Enable Credential Roaming
Registry on users computer needs to be modified
28. When implementing a Hyper-V environment the benefits are enormous - however there are certain aspects of virtualization that can create some additional administrative overhead that you can not have in a pure physical environment for example
Add George to the Domain Admins group.
Converting physical servers to VMs - implementing SANn and SAN management components such as backup and site resiliency will create additional administrative overhead.
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
Assign the application to all client computers by using a GPO.
29. To enable the AD Recycle Bin
Deploy Microsoft System Center Operations Manager (SCOM)
DISABLE slow link detection in the GPO
Enable - ADoptionalFeature cmdlet
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
30. You need to access some resources in another domain that is part of another forest. What type of trust should you create?
Incoming external trust
Implement Windows System Resource Manager (WSRM) and configure user policies
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
Network Load Balancing (NLB) cluster
31. Your company recently created a corporate web site using their own internal developers. Recently your CIO has decided that it would be best that some of the work be done by an outside contractor - and to allow that contractor to only the specific sec
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Autonomous mode...This allows the local administrator to approve their own updates.
IIS Manager user account
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
32. You need to consolidate 120 physical servers into 35 physical servers that run Windows Server 2008 R2 while meeting the following: maximize resource utilization; use existing hardware and software; support 64-bit child virtual machines; maintain sepa
FFL Windows Server 2008 R2
ntdsutil
Back up to an external USB drive by using Windows Server Backup
Install Hyper-V role and convert physical machines into virtual machines
33. George's user account has been deleted in Active Directory. George's user account needs to be restored by usine minimal amount of effort. What should be done?
Install the RSAT tool on their workstation to provide for more efficient network management
DSMOD - ADUC
Use a GPO to configure device installation restrictions
Perform an authoritative restore
34. Internet access is provided through the main office to the satellite offices. You need to design a patch management for the satellite offices that meet the following requirements: WSUS updates are approved from a central location; internet traffic is
Configure offline files and enable manual caching
Data Recovery Agent
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
35. Tool to montior replicaiton of group policy template files when DFL set at Windows SVR 2003
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
Ntfrsutil
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
36. To deploy templates across the organization
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
Add the new UPN Suffix to the forest
From Server1 - run the Create Basic Task Wizard
Domain based Distributed File System (DFS) will reduce network traffic
37. All computers are running either Windows SP2 or Windows 7. You want to audit users that are accessing the administrative shares on all the computers...
Configure separate application pools for each application
Zone transfer settings
Group Policy Preferences
Create and deploy a logon script that runs Auditpol.
38. Srv1 is a file server that has five internal SCSI hard drives. Your storage strategy needs to meet the following requirements: Physically separates the operating system data from the user data; maximize the disk space available for data storage; uses
Back up to an external USB drive by using Windows Server Backup
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
Your machine and remote desktops
Then use on install image file that contains a single install image.
39. Your data recovery strategy for your Server 2008 R2 file server must meet the followign requirements: All data volumes on the server must be backed up daily; backups must have a minimal impact on performance; if a disk fails - the recovery strategy m
Add-ADFineGrainedPasswordPolicySubject cmdlet
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Execute the Set-ADServiceAccount cmdlet
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
40. SrvA has the AD LDS role and an instance named LDSInst1. You connect to this instance by using the ADSI Edit utility. When you execute the Create Object wizard there is no User object class. What should be done so you can create user objects in LDSIn
Site
Modify the schema of LDSInst1
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
dsa.msc - dsamain.exe - ntdsutil.exe
41. To ensure IT Help Desk Users can create GPOs in the domain and give them a GPO that contains preconfigured settings that will be used to create new GPOs -
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Recommend Offline Files
42. If you need to change the TCP/IP addresses on 30 servers using the minimum amount of administrative effort
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
43. Jack and Jill go up the hill - both with a buck and a quarter
Jill came down with 2.50.
dsa.msc - dsamain.exe - ntdsutil.exe
DSMOD
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
44. If users need access to files locally and must be able to access files at another site if the local copy is not available you should implement this.
A Distributed File System (DFS) namespace
Implement Windows System Resource Manager (WSRM) and configure user policies
Ntfrsutil
Autonomous mode...This allows the local administrator to approve their own updates.
45. You need to ensure that your Windows 2008 R2 file servers meet the following: supports volumes larger than 2 terabytes - if a single disk fails - maintain data redundancy - if a single server fails - maintain access to all data - maximize disk throug
Create a standard secondary of domain and create standard secondary of other domain.
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Microsoft System Center Data Protection Manager 2010
Deploy it by using Group Policy Software Installation method
46. In order to reduce the administrative overhead typically involved with viewing event logs across multiple servers you should implement this.
From Server1 - run the Create Basic Task Wizard
Configure RODC for Administrator Role Separation
Event Log Subscriptions
dnscmd
47. To replicate SYSVOL using Distributed File System Replication (DFSR)...
DFL needs to be Windows Server 2008
Administrators is the minimum group membership required to complete this procedure.
Jill came down with 2.50.
Passive file screens
48. All servers run 2008 R2. All client computers run Windows 7 and Outlook 2010. The sales team needs to use Outlook 2003 to support a custom application. You need a deployment strategy that meets these requirements: provide access to Outlook 2003 and 2
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Creating a data collector set that kick off a scritp that either move or delete files.
Disable Site Link Bridging from IP Properties
Then use Windows Deployment Services (WDS)
49. To prevent account password from being cached on RODC server...
Modify properties of RODC server computer account.
Assign the application to all client computers by using a GPO.
Then use Windows BitLocker Drive Encryption
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
50. Need to access some resources in another domain that is part of another forest...What trust is created?
Incoming external trust
Then install new Server 2008 R2 Enterprise subordinate CA.
Install the RSAT tool on their workstation to provide for more efficient network management
Use local roles options within "dsmgmt"