Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. If users need access to files locally and must be able to access files at another site if the local copy is not available you should implement this.
Place the operating system files on one of the RAID 1 array - place the SQL transaction logs on the other RAID 1 array - and place the SQL database files on the RAID 5 array
A Distributed File System (DFS) namespace
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Microsoft Application Virtualization (AppV)

2. What should be done so the application does not fail after 30 days while still keeping the password policy in mind?
Execute the Set-ADServiceAccount cmdlet
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
Site
Add the new UPN suffix to the forest.

3. All DCs have been upgraded from Windows Server 2003 to Windows Server 2008 R2. What should be done to ensure the Sysvol share replicates by using DFS Replicaiton (DFS-R)?
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
Upgrading DFS to Windows Server 2008 R2
Raise the DFL to Windows Server 2008 R2.
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer

4. To replicate SYSVOL using Distributed File System Replication (DFSR)...
From Server A - run Create Basic Task Wizard
DFL needs to be Windows Server 2008
Zone transfer settings
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.

5. New password settings object (PSO) created and needs to be applied to user
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Properties of PSO need modified
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office
Run adprep /forestprep and adprep /domainprep

6. To deploy templates across the organization
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Incoming external trust
Group Policy Preferences
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates

7. AD CS is configured on Server1 as a standalone CA. What two actions should you do to audit changes to the CA configuration settings and the CA security settings?
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
Windows System Resource Manager (WSRM)
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.

8. When backing up multiple servers it is a Microsoft best practice to add the authorized user or group to the

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

9. If you need to ensure that data is protected by BitLocker then you will...
NOT be able to store that data on an iSCSI SAN
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.
Then use Windows Deployment Services (WDS)
Incoming external trust

10. You need to implement read only copies of files at several locations. You currently have DFS for 2008 deployed. You should recommend this.
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary
Deploy the Root CA certificate to the external computers.
Test-AppLockerPolicy
Upgrading DFS to Windows Server 2008 R2

11. To make a 64-bit application available to several 32-bit XP SP3 computers in the branch office you could use either a remote desktop session host or a remote desktop virtualization host. However - if the application requires you to be a local adminis

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

12. All computers are running either Windows SP2 or Windows 7. You want to audit users that are accessing the administrative shares on all the computers...
Microsoft System Center Data Protection Manager
Add the user to the Domain Admins global group
Create an e-mail account in AD DS for your RMS users.
Create and deploy a logon script that runs Auditpol.

13. Several employees say they can't get on domain with "password incorrect" message. What utility tool can be used to identify issue and also ensure users can log into domain?
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition
Repadmin
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent

14. When service account passwords need to be changed for SQL they should be...
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Changed manually
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
Offline domain join

15. To ensure that user's documents are stored on the file server and thus subject to the corporate backup solution - you should implement this.
Folder redirection. Folder redirection is also useful when using roamin profiles.
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Active Directory Users and Computers
Domain based Distributed File System (DFS) namespace and DFS Replication.

16. You have 5 windows Server 2008 R2 servers that are configured with the File Server role. you need to monitor the file servers with the following requirements in mind: administrators must be able to create reports that display folder usage by differen
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
Implement the Windows Search Service.
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.

17. IE can be a security concern - however you can take advantage of Group policies to lock down IE as much as possible

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

18. To configure Administrator Role Separation for an RODC
Implement GPO for all client computers
Encrypting File System (EFS). This can be enabled locally or through a GPO.
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Increase the tombstone lifetime for the forest.

19. Recently you have installed a special application on your web sites that requires using a managed service account on the Web Servers. This application runs on a web server in each of 10 separate Active Directory domains.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

20. You need to allow remote access to the servers on your network while meeting the following requirements: all remote connections to the servers must be encrypted; all remote authentication attempts to the servers must be encrypted; only inbound connec
Implement Windows System Resource Manager (WSRM) and configure user policies
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
Execute the Set-ADServiceAccount cmdlet

21. An external partner plan requires the following: prevent sensitive documents from being forwarded to untrusted recipients or from being printed; allow users in the external partner organization to access the protected content to which they have been
Create TWO new starter GPO's one with user administrative templates configure - and one with computer admin template configured - and export them to .cab files - and make the .cab files available in both forests...Then when creating new group policie
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Event Log Subscriptions

22. All servers run 2008 R2 and all client computers run XP SP1. You need to deploy Distributed File System (DFS) to meet these: minimize cost; provide redundancy in the event a single server fails; ensure client computers reconnect to their preferred se
Configure offline files and enable manual caching
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
New ACCOUNT STORE should be added and configured
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.

23. Your AD domain has an OU named Sales OU that contains the user accounts of the Sales department. A new password polity needs to be created for the Sales department that is different from the domain password policy. How is this accomplished?
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Use Netsh tool from administrator's computer.

24. Striped volumes
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
Configure Audit Special Logon and define Special Groups
Configure Firewall Group Policies and link them at the Domain level
Improve the performance of File Servers

25. The strongest form of NAP is
MEDV to deploy virtual desktops
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.

26. If subnets are connected by CISCO router that is RFC-1542 compliant
Test-AppLockerPolicy
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Use CISCO IP Helper command to configure.
View properties of %systemroot%ntdsntds.dit

27. To control access to resources using WSRM and to help prevent memory leaks from monopolizing your web server
Domain based DFS namespace and configure a DFS replication group
Configure separate application pools for each application
Create TWO new starter GPO's one with user administrative templates configure - and one with computer admin template configured - and export them to .cab files - and make the .cab files available in both forests...Then when creating new group policie
Windows BitLocker Drive Encryption (Bit Locker)

28. You need to ensure that users that access your web site can use any browser; however - they must be authenticated on a membership page. In order for this authentication to be done securely in IIS implement
Then install new Server 2008 R2 Enterprise subordinate CA.
Restore-ADObject cmdlet
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
Basic Authentication and SSL

29. When recommending the server configurations for the new failover cluster that will live in a virtual environment from Hyper-V Manager on each node - configure ...
Enable Credential Roaming
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
Additional DFS Targets
Administrative Role Separation

30. Tool to montior replicaiton of group policy template files when DFL set at Windows SVR 2003
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
Deploy a failover cluster that contains one node in each office.
Ntfrsutil
Event Log Subscriptions

31. George needs to administer a read-only domain controller named Server1 - but to do this with minimal permissions assigned to him. What tool should be used for this daunting task?
Active Directory Users and Computers utility
Create an e-mail account in AD DS for your RMS users
Dsmgmt
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary

32. You have a main office that contains two domain controllers and a branch office that has an RODC. What should be done so that a user named George can install updates on the RODC while preventing George from logging on to any other domain controller?
Disable Site Link Bridging from the IP properties
Add the new UPN Suffix to the forest
Disable Site Link Bridging from IP Properties
Use the Local Roles options with dsmgmt.

33. When using Remote Desktop and Remote Desktop Session hosts - to be able to control both who can gain access - and to what - on the network configure;
Configure the zone as an Activde Directory-Integrated zone.
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
Create ADMX and ADML files. Configure the GPO and link it to the domain.
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.

34. To monitor replication of group policy template files when DFL set at Windows 2008 R2...
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
Dfsrdiag
Set-ADServiceAccount cmdlet

35. You have a failover cluster that has an application installed. Service level agreement requires 55 percent of processor and memory utilization to be reserved for the app. A solution to guarantee service level agreement would be
Create a Network Load Balancing cluster.
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
PDC emulator with w32tm.exe

36. What utility is used to see what accounts cached on RODC?
Active Directory Users and Computers
djoin /requesteodj from internal server - djoin /provision from outside server/PC
Properties of PSO need modified
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.

37. If you need secure method to verify validity of individual certificates and minimize network bandwidth
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
Administrators is the minimum group membership required to complete this procedure.
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.

38. 2 ways to relocate user and computer accounts to different OUs
DSMOD - ADUC
Create a Network Load Balancing cluster.
Modify properties of RODC server computer account.
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.

39. In order to ensure highly available Windows Update servers you should create this.
The Group Policy Management console
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
Domain based Distributed File System (DFS) will reduce network traffic
Implement Windows BitLocker Drive Encryption (BitLocker)

40. You need to recommend the minimum number of logical unit numbers (LUNs) that must be provisioned for Cluster. If the cluster has an even number of nodes ...
Get-ADUser cmdlet
Implement one LUN for the quorum and another LUN for the data
Prestage the computer account in AD
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates

41. USB storage deviced on the client computers can be very convenient; however they create a huge security risk. To help reduce the risk of USB deviced you can implement...
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
Configure Firewall Group Policies and link them at the Domain level
Active Directory Right Management Services (AD RMS)

42. There are now 4 primary types of VPN solutions - PPTP - L2TP - SSTP and Direct Access. If you need to implement a VPN on Vista SP1 or higher machines you can implement SSTP.
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Then use on install image file that contains a single install image.

43. You need a strategy for backing up your 2008 R2 file servers according to these: allows for individual file restore; allows for complete server recovery; supports scheduled backups; provides decentralized control over backups and recovery; minimizes
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.
Back up to an external USB drive by using Windows Server Backup
AD Rights Management Services
Implement Distributed File System Replication (DFSR) on both servers

44. To backup GPO's in domain and minimize bakcup...
The Group Policy Management Console
Group Policy Preferences
File Server Resource Manager (FSRM) quotas and file screens
Event Viewer

45. To improve performance and provide redundancy if a single server fails - the intranet web site should be in this.
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary
Network Load Balancing (NLB) cluster
Group Policy Preferences
Domain based DFS namespace and configure a DFS replication group

46. Recently it was decided to increase the performance of the company's Web Servers by deploying a NLB Web server farm. You need to ensure that the content is easily replicated across all the servers in the farm. You should implement this.
Distributed File System (DFS) Replication
Software Restriction Polices
Prestage the computer account in AD
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.

47. You need to deploy a distributed database application that meets the following: allocates storage to servers as required; isolates storage traffic from the exisiting network; ensures that data is available if a single disk fails; ensures that data is
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
IIS Chared Configuration
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.

48. You need to come up with a solution for managing user accounts that: allows Help Desk department to manage the user objects in all domains and minimize the administrative effort required to manage the frequent changes to the Help Desk department
Execute the Set-ADServiceAccount cmdlet
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.
Configure the zone as an Activde Directory-Integrated zone.

49. A specific application requires registry modifications to be in place before installing; you should use
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
Add George to the Domain Admins group.
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
Group Policy Preferences

50. If you need to deploy a DHCP server that supports computers that start from a PXE network adapater and support Win7
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
Then use Windows Deployment Services (WDS)
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.
A Distributed File System (DFS) namespace

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Major Subjects
Tests & Exams AP CLEP DSST GRE SAT GMAT	Certifications CISSP go to https://www.isc2.org/ PMP ITIL RHCE MCTS More...	IT Skills Android Programming Data Modeling Objective C Programming Basic Python Programming Adobe Illustrator More...	Business Skills Advertising Techniques Business Accounting Basics Business Strategy Human Resource Management Marketing Basics More...
Soft Skills Body Language People Skills Public Speaking Persuasion Job Hunting And Resumes More...	Vocabulary GRE Vocab SAT Vocab TOEFL Essential Vocab Basic English Words For All Global Words You Should Know Business English More...	Languages AP German Vocab AP Latin Vocab SAT Subject Test: French Italian Survival Norwegian Survival More...	Engineering Audio Engineering Computer Science Engineering Aerospace Engineering Chemical Engineering Structural Engineering More...
Health Sciences Basic Nursing Skills Health Science Language Fundamentals Veterinary Technology Medical Language Cardiology Clinical Surgery More...	English Grammar Fundamentals Literary And Rhetorical Vocab Elements Of Style Vocab Introduction To English Major Complete Advanced Sentences Literature Homonyms More...	Math Algebra Formulas Basic Arithmetic: Measurements Metric Conversions Geometric Properties Important Math Facts Number Sense Vocab Business Math More...	Other Major Subjects Science Economics History Law Performing-arts Cooking Logic & Reasoning Trivia

Test your basic knowledge |

MSITP

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests

Major Subjects

Tests & Exams

Certifications

IT Skills

Business Skills

Soft Skills

Vocabulary

Languages

Engineering

Health Sciences

English

Math

Other Major Subjects

Browse all subjects

Browse all tests

Most popular tests