Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. What should be configured to ensure domain controllers only replicate between doain controllers in adjacent sites?
Disable Site Link Bridging from IP Properties
From Server1 - run the Create Basic Task Wizard
Create a MEDV workspace
Then configure auto enrollment of certificates and Credential Roaming.

2. You need to modify DNS infrastructure to support dynamic updates to ALL DNS servers; ensure DNS service available even if single server fails; encrypt the synchronization data sent between DNS servers.
Configure the zone as an Activde Directory-Integrated zone.
Then configure auto enrollment of certificates and Credential Roaming.
DSMOD
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th

3. The servers in each office run Server 2008 R2 Enterprise Edition. You need to plan a failover cluster solution to service users in both offices that meet these: maintain the availability of services if a single server fails; minimize the number of se
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
DSMOD
Deploy a failover cluster that contains one node in each office.
Microsoft Application Virtualization (AppV)

4. To configure AD FS so tokens contain information from Active Directory domain...
Use CISCO IP Helper command to configure.
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
New ACCOUNT STORE should be added and configured
Printer driver isolation

5. With AppLocker settings - which Windows PowerShell cmdlet would be used to identify whether a specific application file is allowed to run on a computer?
A Distributed File System (DFS) namespace
Deploy a failover cluster that contains one node in each office.
Recommend Group Policy preferences
Test-AppLockerPolicy

6. In order to reduce the administrative overhead typically involved with viewing event logs across multiple servers you should implement this.
Execute the Set-ADServiceAccount cmdlet
Recommend Group Policy preferences
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Event Log Subscriptions

7. What role to keep same time as an external server?
PDC emulator with w32tm.exe
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
Add the Windows Server Backup feature and Windows System Image recovery.
Create a MEDV workspace

8. ServerA collects all events that occur on domain controllers with minimum effort from Event Viewer - what should be done to ensure notified when specific event occurs on any domain controllers...
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
From Server A - run Create Basic Task Wizard
A relying party trust should be created.
Site

9. You need a solution that allows your users to collaborate with each other and that must meet these: enables - full text indexing of all user content - remote access to files by using a Web browser - secure access to files by assigning permisions; sup
Include a server that runs Microsoft Office SharePoint Server 2010
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
Reinstall AD DS on DCC.company.com as a WRITABLE DC.

10. Tool to change Directory Services Restore Mode password on Domain Controller...
Implement Distributed File System Replication (DFSR) on both servers
Create a new Password Settings Object (PSO) for the IT users.
Recommend GPT and basic disks
ntdsutil

11. to ensure that server backups can be performed remotely from your backup server on your company file server you should perform these two actions
Windows Deployment Services (WDS)
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
fsconfig on FSSrv2
Install Windows Server Backup and modify the Windows firewall settings

12. WSSvr1 has Windows SharePoint Services role installed and contains 20 SharePoint sites. You need to optimize performance and ensure that if CPU utilization exceeds 75% - then an equal amount of system resources are allocated to each SharePoint site.
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Configure event log subscriptions
Microsoft Desktop Optimization Pack (MDOP) to your company
Domain based DFS namespace and configure a DFS replication group

13. To be able to remotely administer DNS servers that run on the Server Core installation of Server 2008 R2 - via MMC console
WDS
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
Your machine and remote desktops
The Group Policy Management console

14. to prevent VMs from receiving updats from a group policy
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
Software Restriction Polices
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.

15. If subnets are connected by CISCO router that is RFC-1542 compliant
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
Use CISCO IP Helper command to configure.
djoin /requesteodj from internal server - djoin /provision from outside server/PC

16. Your office has no Internet connection. Your data provisioning solution must meet these requirements: users that are not connected to the network must be able to access files and folders on the network; unauthorized users must not have access to the
Configure caching on the shared folder and configure offline files to use encryption
Create an Active Directory-Integrated zone.
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.

17. For the users that work remotely that need access to files from the corporate office you should...
Ldp
Changed manually
Repadmin
Recommend Offline Files

18. you have fewer Server 2003 servers that have Terminal Services installed. you also have a firewall that runs ISA Server 2006. Your remote access strategy for the terminal servers needs to meet the following: encrypts all remote connections to the ter
ntdsutil
Active Directory Users and Computers
Implement a Remote Desktop Connection Broker (RD Connection Broker)
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).

19. To make deploying the custom Word dictionary easy
Attach VHD file created by Windows server backup
Recommend Group Policy preferences
Implement Network Access Protection (NAP)
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP

20. To determine size of AD database file...
View properties of %systemroot%ntdsntds.dit
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)
Assign permissions for the Groups OU and Branch OU to the help desk technicians.

21. When you need to distribute a large number of incoming connections to stateless applications such as Web servers or VPN servers you should implement this.
Implement Network Access Protection (NAP)
New ACCOUNT STORE should be added and configured
Network Load Balancing (NLB)
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.

22. You need to ensure that users that access your web site can use any browser; however - they must be authenticated on a membership page. In order for this authentication to be done securely in IIS implement
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Use a GPO to configure device installation restrictions
Add the new UPN Suffix to the forest
Basic Authentication and SSL

23. Srv1 - Srv2 - Srv 3 are Network Policy Servers (NPS) that function as RADIUS Servers. Srv1 is also Microsoft SQL Server 2008 server. The network has 20 wireless access points that are configured as RADIUS clients. You need an audit strategy with the
Modify properties of RODC server computer account.
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.

24. You need to ensure that the guest account on all servers is disabled to
Creating a data collector set that kick off a scritp that either move or delete files.
Recommend Active Directory delegation
Discover the run Microsoft Baseline Security Analyzer (MBSA)
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files

25. To make a 64-bit application available to several 32-bit XP SP3 computers in the branch office you could use either a remote desktop session host or a remote desktop virtualization host. However - if the application requires you to be a local adminis

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

26. You plan to upgrade your networks desktops to Windows 7 however - after testing you discover an application that will only run on Windows XP. You need to make this application available to a large number of desktops.
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
Create a MEDV workspace
Microsoft SharePoint Foundation 2010
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent

27. FFL is...
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.
Install and share a printer on a server and then enable printer pooling.
Win2000
Create an e-mail account in AD DS for your RMS users.

28. Audit account management policy settings and Audit directory services access settings are enabled for the entire domain. What should be done to ensure that changes made to AD objects can be logged? The logged changes must include the old and new valu
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
Run auditpol and then configure the Security settings of the Domain Controllers OU.
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
802.1.x NAP

29. You have administrative templates that another company wants to use on their domain. How would you configure the other company's domain to use these administrative templates?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

30. If you need to minimize amount of time and impact of 50 simultaneous Win7 installations
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
DFL needs to be Windows Server 2008
Implement one LUN for the quorum and another LUN for the data

31. You are upgrading only a few computers in one department to Windows 7. These computers are running a legacy XP application you should recommend...
Implement Shadow Copies
Windows XP Mode
Additional DFS Targets
An Active Directory subnet object needs to be created.

32. You are about to deploy 1 -000 Windows 7 desktops and your company has a web based application that only runs correctly when using IE 6. You should use
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Active Directory Domains and Trusts
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.
MEDV to deploy virtual desktops

33. You have 2 Server Core servers that are part of a Network Load Balance that host a web site. To be able to allow administrators - on their Windows 7 computers - remotely manage the NLB with automation
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
File Server Resource Manager (FSRM) quotas and file screens
Enable Windows Remote Management (WinRM) on the servers.

34. You need to deploy apps to client computers according to these req.: apps must be deployed to client computers that meet minimum hardware requirements; detaild reports on success/failure of the app deployments must be provided; deployments must be sc
dnscmd
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
Deploy a failover cluster that contains one node in each office.

35. to ensure that users can ONLY view the list of DFS Targets to which they are assigned permissions
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
Configure block inheritance on the IT OU
Discover the run Microsoft Baseline Security Analyzer (MBSA)
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.

36. What should be done to identify which LDAP computers are using the largest amount of available CPU resources on a DC?
Install From Media IFM
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
Implement GPO for all client computers
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.

37. Deploying a web server farm can be costly. You need to minimize the amount of disk space used.
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
Install Hyper-V role and convert physical machines into virtual machines
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
Add the new UPN Suffix to the forest

38. George's user account has been deleted in Active Directory. George's user account needs to be restored by usine minimal amount of effort. What should be done?
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Windows System Resource Manager (WSRM)
Upgrading DFS to Windows Server 2008 R2
Perform an authoritative restore

39. To speed up the deployment of the RODC in the new branch offices you should take advantage of this.
Install From Media IFM
Active Directory Domains and Trusts
Ldp
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.

40. You have a single AD domain named ad.company.com. The FFL is windows 2000 and the DFL is Windows 2000 Native. The UPN suffix company.com needs to be available for user accounts. What should be done first?
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent
Add the new UPN suffix to the forest.
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.

41. If CA PKI needs to support Suite B hashing and encryption algorithms and store keys in AD
Then install new Server 2008 R2 Enterprise subordinate CA.
CAPublishGP group should have the Manage CA permission.
Certificate Templates
Use the Local Roles options with dsmgmt.

42. Need a solution that will ensure that the initial settings when creating new policies for both forests will become more consistent. You should...

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

43. To backup to tape/robotic tape and to backup VMs you must use...
Implement one LUN for the quorum and another LUN for the data
Microsoft System Center Data Protection Manager 2010
dnscmd
FFL Windows Server 2008 R2

44. When recommending the server configurations for the new failover cluster that will live in a virtual environment from Hyper-V Manager on each node - configure ...
Event Subscriptions
Deploy a failover cluster that uses Node and File Share Disk Majority
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
Configure event log subscriptions

45. You are evaluating whether to use express installation files as an update distribution mechanism. The technical requirement that
Deploy a GPO to the WebSrvOU
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Domain based DFS namespace and configure a DFS replication group

46. What should be modified so you can use the nslookup utility to list all SRV records for your domain?
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
Zone transfer settings
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition

47. To identify users who bypass the new corporate security policy -
Then configure auto enrollment of certificates and Credential Roaming.
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Share and Storage Management
Configure Audit Special Logon and define Special Groups

48. You need to plan the deployment of an application that must meet these requirements: users must have - access to the app when they are connected to the network; access the application from an icon on their desktops.
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
Assign the application to all client computers by using a GPO.

49. If you need to minimize the bandwidth for installation
View properties of %systemroot%ntdsntds.dit
Domain based Distributed File System (DFS) will reduce network traffic
Utilize IFM (Install From Media)
From Server1 - run the Create Basic Task Wizard

50. Client computers run Windows 7 and all applications on the computers are configured to save documetns to the local Documents folder. You need a backup strategy that meets these: Back up the Documents folder for all users; minimize admin effort. To ac
Implement folder redirection by using GPO. Then backup the folder redirection target.
Multipath I/O feature
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
Recommend Group Policy preferences