SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. To ensure that the SQL Servers can fail over autoatically and support 2 TB drives
Recommend Group Policy preferences
Modify properties of RODC server computer account.
Your machine and remote desktops
Recommend GPT and basic disks
2. To deploy templates across the organization
From Server A - run Create Basic Task Wizard
Create a Central Store
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
3. Several employees say they can't get on domain with "password incorrect" message. What utility tool can be used to identify issue and also ensure users can log into domain?
Use Netsh tool from administrator's computer.
Repadmin
Converting physical servers to VMs - implementing SANn and SAN management components such as backup and site resiliency will create additional administrative overhead.
IIS Manager user account
4. If you need to implement Encrypting File System (EFS) and minimize amount of data transferred across and access EFS certs on any client computer
dnscmd tool
Active Directory Domains and Trusts
Enable Credential Roaming
Administrators is the minimum group membership required to complete this procedure.
5. You need a strategy for backing up your 2008 R2 file servers according to these: allows for individual file restore; allows for complete server recovery; supports scheduled backups; provides decentralized control over backups and recovery; minimizes
Install the RSAT tool on their workstation to provide for more efficient network management
Set-ADServiceAccount cmdlet
Back up to an external USB drive by using Windows Server Backup
Get-ADUser cmdlet
6. To ensure that user's documents are stored on the file server and thus subject to the corporate backup solution - you should implement this.
Folder redirection. Folder redirection is also useful when using roamin profiles.
Event Subscriptions
Group Policy Preferences
Microsoft Application Virtualization (AppV)
7. You have a failover cluster that has an application installed. Service level agreement requires 55 percent of processor and memory utilization to be reserved for the app. A solution to guarantee service level agreement would be
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
Get-ADUser cmdlet
8. 3 servers are configured as DNS servers and are ADI for the company.com zone. DNS only allows for secure updates - but you need to enable dynamic DNS updates on DCC.company.com...What do you do?
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
Domain based Distributed File System (DFS) namespace and DFS Replication.
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition
9. So a user can install updates on an RODC while preventing them from logging on to any other domain controller...
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
From Server1 - run the Create Basic Task Wizard
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Use local roles options within "dsmgmt"
10. The Computer Management snap-in allows you to create shares both on...
Creating a data collector set that kick off a scritp that either move or delete files.
Your machine and remote desktops
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
11. An external partner plan requires the following: prevent sensitive documents from being forwarded to untrusted recipients or from being printed; allow users in the external partner organization to access the protected content to which they have been
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
Create a standard secondary of domain and create standard secondary of other domain.
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
12. Currently you already have in place AD - DNS and DHCP. You need an automated deployment solution for the new servers that will boot using native VHD's. You should recommend
Windows Deployment Services (WDS)
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
Recommend GPT and basic disks
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
13. New password settings object (PSO) created and needs to be applied to user
Properties of PSO need modified
Configure separate application pools for each application
Backup operator's domain local group
Configure an audit policy by editing the default domain policy and configure Event Forwarding
14. Recently you have installed a special application on your web sites that requires using a managed service account on the Web Servers. This application runs on a web server in each of 10 separate Active Directory domains.
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
15. To allow for an application on a Remote Desktop Server to be available through document invocation - you must
Create an Active Directory-Integrated zone.
Implement the Windows Search Service.
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
16. From Win7 PC - to view all account logon successes that occur on domain and consolidate to one list...
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
From Server1 - run the Create Basic Task Wizard
CAPublishGP group should have the Manage CA permission.
Winrm quickconfig
17. If the branch office has its own high speed WAN link and you need to minimize traffice between the corporate office and the Branch office - configure this.
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
The WSUS client to retrieve updates from Microsoft Update (Do not Store updates locally)
Configure the zone as an Activde Directory-Integrated zone.
net stop ntds
18. To prevent computers that do not have the Windows Firewall enabled from connecting to the wireless access point or the physical switch - you should implement this.
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
802.1.x NAP
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Subnet object needs to be created
19. Recently it was decided to increase the performance of the company's Web Servers by deploying a NLB Web server farm. You need to ensure that the content is easily replicated across all the servers in the farm. You should implement this.
Distributed File System (DFS) Replication
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.
Use CISCO IP Helper command to configure.
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
20. When configuring delegation of administration for Domain Controllers at a remote location you must Add the users or groups as members of the Domain Admins Group. However - be careful to allow just a certain user or group of users to manage the Domain
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
Prestage the computer account in AD
Create a new Password Settings Object (PSO) for the IT users.
Add-ADFineGrainedPasswordPolicySubject cmdlet
21. You don't want users to be able to install removable devices on client computers. However - domain admins and desktop support technicians must be allowed to install removable devices on client computers
Raise the DFL to Windows Server 2008 R2.
Implement GPO for all client computers
Implement Network Access Protection (NAP)
Creating a data collector set that kick off a scritp that either move or delete files.
22. To prevent account password from being cached on RODC server...
Site
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
Modify properties of RODC server computer account.
Active Directory Users and Computers utility
23. If a user needs to access a new cert template when logging on to any client computer in domain and you need to automatically install on each client computer a cert
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
Dsmgmt
Then configure auto enrollment of certificates and Credential Roaming.
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
24. Policy states that domain controllers cannot contain optical drives. You need a backup and recovery plan that restores the domain controllers in the event of a catastrophic server failure. To accomplish this
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
Configure RODC for Administrator Role Separation
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
25. Your data recovery strategy for your Server 2008 R2 file server must meet the followign requirements: All data volumes on the server must be backed up daily; backups must have a minimal impact on performance; if a disk fails - the recovery strategy m
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Deploy a GPO for the Sales OU
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
26. To improve performance and provide redundancy if a single server fails - the intranet web site should be in this.
Network Load Balancing (NLB) cluster
Create a Network Load Balancing cluster.
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
Raise the DFL to Windows Server 2008 R2.
27. To restore previous version of script without taking up too much of time...
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
Create an e-mail account in AD DS for your RMS users
Attach VHD file created by Windows server backup
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
28. Your file server contains 2 volumes; one that contains the operating system and the other volume contains all data files. Your recovery strategy must meet these requirements: allows the operating system to be restored; allows the data files to be res
Add the Windows Server Backup feature and Windows System Image recovery.
Backup operator's domain local group
Run the Delegation of Control Wizard on the Staff OU
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
29. In order to ensure highly available Windows Update servers you should create this.
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
Then use on install image file that contains a single install image.
Microsoft Desktop Optimization Pack (MDOP) to your company
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
30. You have 2 Server Core servers that are part of a Network Load Balance that host a web site. To be able to allow administrators - on their Windows 7 computers - remotely manage the NLB with automation
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
Configure caching on the shared folder and configure offline files to use encryption
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
Enable Windows Remote Management (WinRM) on the servers.
31. There is a file server in each office that contains a shared folder named Data. You need to plan the data availability for the Data folder according to these requirements: if WAN link fails - the files in the Data folder must be available in all of t
Implement Network Access Protection (NAP)
Set-ADServiceAccount cmdlet
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
32. All DCs run Windows Server 2008 R2 and have the DNS Server role installed. The domain controllers for each location are stored locally. Each has its own standard primary zone to support its local domain.You need a plan that meets the following: WAN l
Modify the GPO to include folder redirection
Administrative Role Separation
Create a standard secondary of domain and create standard secondary of other domain.
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
33. Jack and Jill go up the hill - both with a buck and a quarter
Certificate Templates
CAPublishGP group should have the Manage CA permission.
Configure RODC for Administrator Role Separation
Jill came down with 2.50.
34. You have a 2008 R2 serever that has SQL Server 2008 installed. The server has one RAID 5 array and two RAID 1 arrays. You need to allocate hard disck space on the server according to the followign requirements: prevent data los if a single hard disk
Microsoft System Center Data Protection Manager
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Place the operating system files on one of the RAID 1 array - place the SQL transaction logs on the other RAID 1 array - and place the SQL database files on the RAID 5 array
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
35. You need to generate a report on the status of software updates for your Windows 7 client computers with the following requirements: display all of the operating system updates and Microsoft application updates that installed successfully and failed;
Your machine and remote desktops
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
Configure block inheritance on the IT OU
Configure RODC for Administrator Role Separation
36. You need a solution that allows your users to collaborate with each other and that must meet these: enables - full text indexing of all user content - remote access to files by using a Web browser - secure access to files by assigning permisions; sup
Include a server that runs Microsoft Office SharePoint Server 2010
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
37. You need to manage GPO to meet the following: allow administrators to view and edit the GPO in their own language; minimize number of GPOs deployed
Utilize IFM (Install From Media)
Create ADMX and ADML files. Configure the GPO and link it to the domain.
Assign the application to all client computers by using a GPO.
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
38. You have a couple support technicians located in branch office on Server 2008 R2 machines with the following requirements: Install server roles; stop and start services; minimize the security privileges granted to the support technicians
IIS Chared Configuration
Implement one LUN for the quorum and another LUN for the data
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
Install the RSAT tool on their workstation to provide for more efficient network management
39. All servers use internal storage only. Srv1 is a Server 2008 R2 file server. you need to deploy a client/server application so that it is available if a single server fails. To achieve this while minimizing cost
Jill came down with 2.50.
Deploy a failover cluster that uses Node and File Share Disk Majority
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
40. What should be done first to defragment the AD database?
Run net stop ntds
Configure an audit policy by editing the default domain policy and configure Event Forwarding
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
41. You need to recommend a server configuration to support a Web-based application that must meet these requirements: the app must be available to all users if a single server fails; support the installation of .NET applications; Minimize software costs
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
42. You plan to upgrade your networks desktops to Windows 7 however - after testing you discover an application that will only run on Windows XP. You need to make this application available to a large number of desktops.
Create a MEDV workspace
Your machine and remote desktops
Implement Windows System Resource Manager (WSRM) and configure user policies
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
43. You need to recommend the minimum number of logical unit numbers (LUNs) that must be provisioned for Cluster. If the cluster has an even number of nodes ...
Offline domain join
Use CISCO IP Helper command to configure.
Domain based Distributed File System (DFS) will reduce network traffic
Implement one LUN for the quorum and another LUN for the data
44. To ensure that when certain users log on to any client computers in the branch office - they automatically receive the local administrator rights to the computer - and when they log off - they must lose the administrator rights
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Either implement a DHCP server at the branch office - or configure a "Static Pool" on the RRAS server itself. If deploying a DHCP server at the branch office isn't an option - then once the Remote Access Server role has been deployed you can configur
Implement Windows BitLocker Drive Encryption (BitLocker)
Use CISCO IP Helper command to configure.
45. WSUS infrastructure must meet the following: distributed from a central location - all computers must continue to receive updates in the event that a server fails
From Server A - run Create Basic Task Wizard
Zone transfer settings
Service user account for AD LDS
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
46. What should be done so the application does not fail after 30 days while still keeping the password policy in mind?
Configure block inheritance on the IT OU
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Execute the Set-ADServiceAccount cmdlet
Event Subscriptions
47. You have 5 windows Server 2008 R2 servers that are configured with the File Server role. you need to monitor the file servers with the following requirements in mind: administrators must be able to create reports that display folder usage by differen
Create a standard secondary of domain and create standard secondary of other domain.
Configure caching on the shared folder (offline files)
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Modify the local policy to point to the Internal WSUS server
48. If a file server reaches 15% free disk space - you could free up some disk space by
Use CISCO IP Helper command to configure.
Creating a data collector set that kick off a scritp that either move or delete files.
Deploy a GPO to the WebSrvOU
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
49. When deploying servers one would have to include some kind of process that would ultimately join the servers to the domain - this typically would require a script and a reboot. to help eliminate some of the steps involved and automate the deployment
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
Zone transfer settings
Offline domain join
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
50. Users need to be warned when uploading or copying MP3 files onto a corporate network share. You should implement this.
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
Windows Deployment Services (WDS)
Passive file screens
PowerShell 2.0
