SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. RDSRv1 is a Server 2008 R2 Remote Desktop Session Host. RDSrv1 has 8 custome apps installed. Each is configured as a RDP RemoteApp. You notice that when a user runs one of the apps - other users report that the server seems slow and that some apps be
djoin /requesteodj from internal server - djoin /provision from outside server/PC
Implement Windows System Resource Manager (WSRM)
Dfsrdiag
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
2. 3 Servers are Network Policy Servers (NPS) that function as RADIUS servers. The network has 20 wireless access points that are configured as RADIUS clients. You need to plan an audit strategy with the following requirements: stores audit data in a ce
Administrators is the minimum group membership required to complete this procedure.
Store all sensitive files in EFS encrypted folders and require home users to access the files by using SSTP
Microsoft Desktop Optimization Pack (MDOP)
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
3. Domain.com's network consists of a single forest and a single domain - all Domain Controllers - Servers and Remote Desktop Services servers are now 2008 R2. All clients are Windows 7. You need to deploy a new CRM Applicaiton to the sales team. You mu
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
Configure the zone as an Activde Directory-Integrated zone.
Assign the application to computers in the PC OU
4. CAPublishGP needs to be able to publish new certificate revocation lists - but not be able to revoke certificates. How is this accomplished?
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
Assign the application to computers in the PC OU
CAPublishGP group should have the Manage CA permission.
Test-AppLockerPolicy
5. All DCs have been upgraded from Windows Server 2003 to Windows Server 2008 R2. What should be done to ensure the Sysvol share replicates by using DFS Replicaiton (DFS-R)?
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Attach VHD file created by Windows server backup
Use the Local Roles options with dsmgmt.
Raise the DFL to Windows Server 2008 R2.
6. You need to allow remote access to the servers on your network while meeting the following requirements: all remote connections to the servers must be encrypted; all remote authentication attempts to the servers must be encrypted; only inbound connec
Domain based Distributed File System (DFS) will reduce network traffic
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
Additional DFS Targets
7. ServerA collects all events that occur on domain controllers with minimum effort from Event Viewer - what should be done to ensure notified when specific event occurs on any domain controllers...
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
Modify the GPO to include folder redirection
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
From Server A - run Create Basic Task Wizard
8. The solution requires that teachers that have been issued district based laptops - work remotely - and teach only on-line classes - must connect to the school network using split-tunnel VPN. Need to be sure that: minimize traffic over the VPN wheneve
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
9. If you need secure method to verify validity of individual certificates and minimize network bandwidth
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.
DSMOD - ADUC
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
10. You just dconfigured so that Server1 zone is stored in AD and accept secure dynamic updates. What command should be executed so that Server2 can accept secure dynamic updates?
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
11. DNS zone is stored in custom applicaiton directory partition. What tool is used to ensure replicaiton to new installed DC?
Get-ADUser cmdlet
The Group Policy Management Console
dnscmd
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
12. You need to recommend a Windows update strategy for the new branch office. The branch office has a 512 Kbps connection the corporate office and a 2 MB connection to the Internet. You should recommend this.
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
Windows XP Mode
Assign the application to all client computers by using a GPO.
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
13. You need to implement read only copies of files at several locations. You currently have DFS for 2008 deployed. You should recommend this.
Upgrading DFS to Windows Server 2008 R2
Properties of PSO need modified
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Win2000 Native
14. What should be modified so you can use the nslookup utility to list all SRV records for your domain?
Configure Firewall Group Policies and link them at the Domain level
Software Restriction Polices
Zone transfer settings
Dsmgmt
15. To ensure that a file on a file server do not leave the organization you must implement this.
AD RMS
Microsoft Desktop Optimization Pack (MDOP)
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Deploy a failover cluster that uses Node and File Share Disk Majority
16. In AD Sites and Service - which level is Universal Group Membership caching activated / deactivated?
Storage manager for SANs
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
Then use Windows BitLocker Drive Encryption
Site
17. You have few Server 2003 servers that have Terminal services installed. You also have a firewall that runs ISA Server 2006. Your remote access strategy for the terminal servers needs to meeet the following: restricts accsss to specific Remote Desktop
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
Event Subscriptions
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
Modify properties of RODC server computer account.
18. You have two identical print devices. You must plan a print services infrastructure where: the print services must be available - even if one print device fails and have the ability to manage the print queue from a central location
Place the operating system files on one of the RAID 1 array - place the SQL transaction logs on the other RAID 1 array - and place the SQL database files on the RAID 5 array
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
Install and share a printer on a server and then enable printer pooling.
Run adprep /forestprep and adprep /domainprep
19. You need to deploy a new application according to the following requirements: must be available to remote users when they are offline; must access the application from an icon on the Start menu
Implement one LUN for the quorum and another LUN for the data
Domain based Distributed File System (DFS) will reduce network traffic
Use the Local Roles options with dsmgmt.
Assign the application to computers in the PC OU
20. What shold be done to configure AD RMS so users can protect their data?
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
dnscmd tool
Create an e-mail account in AD DS for your RMS users
PDC emulator with w32tm.exe
21. If a file server reaches 15% free disk space - you could free up some disk space by
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
Configure folder redirection
Creating a data collector set that kick off a scritp that either move or delete files.
Use local roles options within "dsmgmt"
22. All 2008 R2 servers and Windows 7 clients are connected to managed switches. The following are requirements for network access: only client computers that have up-to-date service packs installed can access the network; have up-to-date anti-malware so
Deploy a failover cluster that contains one node in each office.
Implement Network Access Protection (NAP) that uses 802.1x enforcement
AD Domains and Trusts
Jill came down with 2.50.
23. You have a 2008 R2 serever that has SQL Server 2008 installed. The server has one RAID 5 array and two RAID 1 arrays. You need to allocate hard disck space on the server according to the followign requirements: prevent data los if a single hard disk
Implement the Windows Search Service.
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)
Add George to the Domain Admins group.
Place the operating system files on one of the RAID 1 array - place the SQL transaction logs on the other RAID 1 array - and place the SQL database files on the RAID 5 array
24. Your office has no Internet connection. Your data provisioning solution must meet these requirements: users that are not connected to the network must be able to access files and folders on the network; unauthorized users must not have access to the
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Incoming external trust
1) Seize operations master roles from sever1 to server2 2) Rebuild Server as a replica domain controller 3) Transfer operations master roles from Server2 to Server1
Configure caching on the shared folder and configure offline files to use encryption
25. to ensure that users can ONLY view the list of DFS Targets to which they are assigned permissions
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
Registry on users computer needs to be modified
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
26. AD structure includes a forest with one root domain and one child domain. Child domain lists entries that start with "S-1-5-21" but no account name listed. What should be done so account names are listed?
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
Deploy the Root CA certificate to the external computers.
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
27. There's an AD domain named company.com. There are 3 DC's that also hold the DNS server role which host an ADI zone named company.com. This zone is configured to update settings to Secure only Dynamic Updates. The CIO has issued a new security policy
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
Use Netsh tool from administrator's computer.
File Server Resource Manager (FSRM) quotas and file screens
Then install new Server 2008 R2 Enterprise subordinate CA.
28. Your company recently created a corporate web site using their own internal developers. Recently your CIO has decided that it would be best that some of the work be done by an outside contractor - and to allow that contractor to only the specific sec
Modify the local policy to point to the Internal WSUS server
IIS Manager user account
Deploy Microsoft System Center Operations Manager (SCOM)
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
29. What should be done so application does not fail after 30 days while still keeping password policy in mind?
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
FILES option within Ntdsutil
Set-ADServiceAccount cmdlet
Implement a GPO for each domain
30. You are evaluating whether to use express installation files as an update distribution mechanism. The technical requirement that
Domain based Distributed File System (DFS) namespace and DFS Replication.
Create a new Password Settings Object (PSO) for the IT users.
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
From Server A - run Create Basic Task Wizard
31. The Authorization Manager console is a Microsoft Management Console (MMC) snap-in. You can run the Authorization Manager console as a stand-alone console - or add it to any MMC console.
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.
Administrators is the minimum group membership required to complete this procedure.
1) Seize operations master roles from sever1 to server2 2) Rebuild Server as a replica domain controller 3) Transfer operations master roles from Server2 to Server1
Service user account for AD LDS
32. You need an Active Directory strategy that supports the recovery of deleted objects for up to one year after the date of deletion. to accomplish this
Increase the tombstone lifetime for the forest.
Remote Desktop Virtualization host - you wouldn't want all the users on the same Remote Desktop Session host to be local administrators.
Ensure your account - or the group is a member of the local Administrators group for that specific server.
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
33. You need a solution that replaces servers that host 2 applications. This solution must use Windows Server 2008 R2 and minimize cost.
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
Group Policy Preferences
Printer driver isolation
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
34. If you need to allow an external partner's computer to access internal network resources by using SSTP
Deploy the Root CA certificate to the external computers.
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.
Microsoft System Center Data Protection Manager
35. to protect file servers and hard disks that may be at risk of being accessed or stolen
Back up to an external USB drive by using Windows Server Backup
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
Implement Windows BitLocker Drive Encryption (BitLocker)
36. To join a server/PC outside of the domain to the network...
Recommend Group Policy preferences
Certificate Templates
djoin /requesteodj from internal server - djoin /provision from outside server/PC
Implement a GPO for each domain
37. You have a single AD domain named ad.company.com. The FFL is windows 2000 and the DFL is Windows 2000 Native. The UPN suffix company.com needs to be available for user accounts. What should be done first?
Microsoft Desktop Optimization Pack (MDOP)
Dfsrdiag
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
Add the new UPN suffix to the forest.
38. You have a main office and 2 branch offices. Your OU structure mimics this. The branch office admins need to be able to apply GPOs only to their respective OUs. What 2 steps should you take to accomplish this?
Incoming external trust
Implement Windows BitLocker Drive Encryption (BitLocker)
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
39. You need to deploy 15 Server Core installations that are only accessible by HTTP and HTTPS. Administration of these must be able to enable administrators to install and administer server roles remotely and fully manage servers remotely
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
Incoming external trust
Then use on install image file that contains a single install image.
Enable Windows Remote Management (WinRM) on each server.
40. To know if a new applicaiton is going to run on your network computers via AppLocker in GPO
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
Create TWO new starter GPO's one with user administrative templates configure - and one with computer admin template configured - and export them to .cab files - and make the .cab files available in both forests...Then when creating new group policie
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie
Test-AppLockerPolicy
41. If you need to deploy multiple servers through automation of installation and activation and minimize network traffic
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
New ACCOUNT STORE should be added and configured
42. You need to ensure that your Windows 2008 R2 file servers meet the following: supports volumes larger than 2 terabytes - if a single disk fails - maintain data redundancy - if a single server fails - maintain access to all data - maximize disk throug
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Recommend Group Policy preferences
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
43. All servers run 2008 R2 and all client computers run Windows 7. Provide a necessary access solution that meets: only computers that have the most up-to-date service packs can be granted general network access; all noncompliant computers must be redir
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
Restore-ADObject cmdlet
Implement Network Access Protection (NAP)
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
44. To ensure that the branch office with its own high speed internet connection receives the exact same updates as the corporate office you should recommend this.
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.
New ACCOUNT STORE should be added and configured
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
45. Tool to change Directory Services Restore Mode password on Domain Controller...
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
ntdsutil
PowerShell 2.0
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
46. For complete fault tolerance the backend SQL Server should be protected as well - by placing it in a MSCS Failover Cluster) - To allow computers that are members of the domain to receive updates from a local WSUS you can easily create a group policy
Implement Windows BitLocker Drive Encryption (BitLocker)
Domain based Distributed File System (DFS) will reduce network traffic
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
Modify the local policy to point to the Internal WSUS server
47. You need to modify DNS infrastructure to support dynamic updates to ALL DNS servers; ensure DNS service available even if single server fails; encrypt the synchronization data sent between DNS servers.
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
Configure the zone as an Activde Directory-Integrated zone.
Create an e-mail account in AD DS for your RMS users.
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
48. You need to recommend a BitLocker recovery method you should recommend this.
Printer driver isolation
Data Recovery Agent
Implement folder redirection by using GPO. Then backup the folder redirection target.
dnscmd tool
49. You have a couple support technicians located in branch office on Server 2008 R2 machines with the following requirements: Install server roles; stop and start services; minimize the security privileges granted to the support technicians
Windows Server 2003
Add the new UPN Suffix to the forest
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
50. Your AD domain has an OU named Sales OU that contains the user accounts of the Sales department. A new password polity needs to be created for the Sales department that is different from the domain password policy. How is this accomplished?
Folder redirection. Folder redirection is also useful when using roamin profiles.
Jill came down with 2.50.
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Sorry!:) No result found.
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests
