SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. If a new application needs to be deployed on the network and it comes as a .msi package and then do this.
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
Deploy it by using Group Policy Software Installation method
802.1.x NAP
2. You need to ensure that users that access your web site can use any browser; however - they must be authenticated on a membership page. In order for this authentication to be done securely in IIS implement
IIS Manager user account
Basic Authentication and SSL
1) Seize operations master roles from sever1 to server2 2) Rebuild Server as a replica domain controller 3) Transfer operations master roles from Server2 to Server1
Create a standard secondary of domain and create standard secondary of other domain.
3. Tools to view contents of an OU in an AD snapshot...
PDC emulator with w32tm.exe
dsa.msc - dsamain.exe - ntdsutil.exe
802.1.x NAP
Perform an authoritative restore
4. To backup to tape/robotic tape and to backup VMs you must use...
802.1.x NAP
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Microsoft System Center Data Protection Manager 2010
ntdsutil
5. You plan to deploy 12 file servers. All computers and servers connect to Ethernet switches. Your data storage solution must meet these: maximizes performance and fault tolerance; allocates storage to the servers as needed; utilizes the existing netwo
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
Implement File Server Resource Manager (FSRM) quotas on the desired servers
Store all sensitive files in EFS encrypted folders and require home users to access the files by using SSTP
Create a new Password Settings Object (PSO) for the IT users.
6. If you need a VPN soluction that stores VPN passwords as encrypted text and supports automatic enrollment of certificates
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Win2000 Native
7. If the branch office has its own high speed WAN link and you need to minimize traffice between the corporate office and the Branch office - configure this.
The WSUS client to retrieve updates from Microsoft Update (Do not Store updates locally)
Add-ADFineGrainedPasswordPolicySubject cmdlet
PowerShell 2.0
Network Load Balancing (NLB)
8. You need a solution for your Web servers that meet these requirements: ensures that the Web site is accessible even if a single server fails; supports the addition of more Web servers without interrupting client connections.
Create a Network Load Balancing cluster.
Incoming external trust
Incoming external trust
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
9. To allow connection to a 256 Kbps ISDN...
DISABLE slow link detection in the GPO
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Network Load Balancing (NLB)
WDS
10. You have a main office and 2 branch offices. Your OU structure mimics this. The branch office admins need to be able to apply GPOs only to their respective OUs. What 2 steps should you take to accomplish this?
The Group Policy Management console
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Win2000 Native
Group Policy Preferences
11. To make sure that all current certificate holders automatically enroll for the new template - use what utility?
Passive file screens
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
Certificate Templates
12. Several employees say they can't get on domain with "password incorrect" message. What utility tool can be used to identify issue and also ensure users can log into domain?
Ensure your account - or the group is a member of the local Administrators group for that specific server.
Repadmin
Basic Authentication and SSL
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
13. 2 ways to relocate user and computer accounts to different OUs
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
DSMOD - ADUC
Deploy a failover cluster that contains one node in each office.
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
14. File that contains the last logon time and custom attributes values for each user in your forest.
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
Create a new Password Settings Object (PSO) for the IT users.
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
Get-ADUser cmdlet
15. Users need to be warned when uploading or copying MP3 files onto a corporate network share. You should implement this.
Group Policy Preferences
From Server1 - run the Create Basic Task Wizard
Passive file screens
Install Hyper-V role and convert physical machines into virtual machines
16. AD RMS is being used on the network. George is only a member of the AD RMS Enterprise Administrators group. Mitt needs to be able to change the service connection point (SCP) for the AD RMS installation. What should be done so George can accomplish t
Add George to the Domain Admins group.
dnscmd
Software Restriction Polices
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
17. Deploying a web server farm can be costly. You need to minimize the amount of disk space used.
Create a new Password Settings Object (PSO) for the IT users.
Raise the DFL to Windows Server 2008 R2.
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
The Group Policy Management Console
18. You need to generate a report on the status of software updates for your Windows 7 client computers with the following requirements: display all of the operating system updates and Microsoft application updates that installed successfully and failed;
Your machine and remote desktops
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
19. New Password Policy needs to be created for OU different from domain password policy
Deploy the Root CA certificate to the external computers.
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Upgrading DFS to Windows Server 2008 R2
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
20. To add a new UPN for all user accounts...
AD Domains and Trusts
Include a server that runs Microsoft Office SharePoint Server 2010
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
Offline domain join
21. To make deploying the custom Word dictionary easy
Use a GPO to configure device installation restrictions
New ACCOUNT STORE should be added and configured
Recommend Group Policy preferences
Jill came down with 2.50.
22. You need to deploy a sales application that only the sales users must have access to
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
Deploy a GPO for the Sales OU
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
23. The solution requires that teachers that have been issued district based laptops - work remotely - and teach only on-line classes - must connect to the school network using split-tunnel VPN. Need to be sure that: minimize traffic over the VPN wheneve
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
24. There is a file server in each office that contains a shared folder named Data. You need to plan the data availability for the Data folder according to these requirements: if WAN link fails - the files in the Data folder must be available in all of t
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
DISABLE slow link detection in the GPO
Your machine and remote desktops
Prestage the computer account in AD
25. Tool to change Directory Services Restore Mode password on Domain Controller...
Include a server that runs Microsoft Office SharePoint Server 2010
Enable Credential Roaming
ntdsutil
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
26. Backup solutions for the files servers that support a robotic-based tape library must support the enterprise; you should recommend
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
Microsoft System Center Data Protection Manager
Remote Desktop Virtualization host - you wouldn't want all the users on the same Remote Desktop Session host to be local administrators.
Then use on install image file that contains a single install image.
27. George needs to administer a read-only domain controller named Server1 - but to do this with minimal permissions assigned to him. What tool should be used for this daunting task?
IIS Manager user account
Configure caching on the shared folder (offline files)
Recommend Group Policy preferences
Dsmgmt
28. If you want to implement BitLocker and store recovery informaiton in a central location
Jill came down with 2.50.
Zone transfer settings
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
29. If you want to allow the administrator in each office to manage DHCP scope for their own office - and prevent the administror of one office from managing DHCP scopes on the DHCP server in another office with mimimal admin effort
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
View properties of %systemroot%ntdsntds.dit
30. to ensure that server backups can be performed remotely from your backup server on your company file server you should perform these two actions
Install Windows Server Backup and modify the Windows firewall settings
Configure RODC for Administrator Role Separation
Group Policy Preferences
Windows System Resource Manager (WSRM)
31. When one needs to audit files - folders - printers and the registry enable
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
Then install new Server 2008 R2 Enterprise subordinate CA.
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Assign the application to computers in the PC OU
32. GPO setting to prevent all users from running an application
Software Restriction Polices
Implement one LUN for the quorum and another LUN for the data
Get-ADUser cmdlet
Modify zone transfer settings for company.com zone on DCA
33. Srv1 is a file server that has five internal SCSI hard drives. Your storage strategy needs to meet the following requirements: Physically separates the operating system data from the user data; maximize the disk space available for data storage; uses
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
Disable Site Link Bridging from IP Properties
Create a MEDV workspace
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
34. All 2008 R2 servers and Windows 7 clients are connected to managed switches. The following are requirements for network access: only client computers that have up-to-date service packs installed can access the network; have up-to-date anti-malware so
Implement Shadow Copies
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Implement Network Access Protection (NAP) that uses 802.1x enforcement
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
35. Audit account management policy settings and Audit directory services access settings are enabled for the entire domain. What should be done to ensure that changes made to AD objects can be logged? The logged changes must include the old and new valu
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
Run auditpol and then configure the Security settings of the Domain Controllers OU.
Win2000
36. A script fails to create user accounts. Which cmdlet should be added to the script to create user accounts?
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
Encrypting File System (EFS). This can be enabled locally or through a GPO.
Import-Module
dnscmd
37. Recently it was decided to increase the performance of the company's Web Servers by deploying a NLB Web server farm. You need to ensure that the content is easily replicated across all the servers in the farm. You should implement this.
Configure the zone as an Activde Directory-Integrated zone.
Active Directory Domains and Trusts
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
Distributed File System (DFS) Replication
38. To know if a new applicaiton is going to run on your network computers via AppLocker in GPO
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
Win2000 Native
Test-AppLockerPolicy
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
39. If the companies support staff is currently using Remote Desktop to connect to the servers in the data center to perform all management tasks - it would be wise to have them instead
802.1.x NAP
Install the RSAT tool on their workstation to provide for more efficient network management
Deploy a GPO to the WebSrvOU
Then use Windows Deployment Services (WDS) on DHCP1.
40. Auditing the deletion of Registry keys on all Domain Controllers
The Group Policy Management Console
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
41. When taking files offline there is always a security risk. Corporate files now reside on a laptop that will leave the confines of the corporate office. When taking files offline it is best practice to help protect these files using
Encrypting File System (EFS). This can be enabled locally or through a GPO.
802.1.x NAP
Install Hyper-V role and convert physical machines into virtual machines
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
42. To compact AD database...
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
FILES option within Ntdsutil
43. You need an Active Directory strategy that supports the recovery of deleted objects for up to one year after the date of deletion. to accomplish this
Enable Windows Remote Management (WinRM) on the servers.
Increase the tombstone lifetime for the forest.
Offline domain join
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
44. WSSvr1 has Windows SharePoint Services role installed and contains 20 SharePoint sites. You need to optimize performance and ensure that if CPU utilization exceeds 75% - then an equal amount of system resources are allocated to each SharePoint site.
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
Place the operating system files on one of the RAID 1 array - place the SQL transaction logs on the other RAID 1 array - and place the SQL database files on the RAID 5 array
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
New ACCOUNT STORE should be added and configured
45. Striped volumes
Improve the performance of File Servers
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
Offline domain join
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
46. From Win7 PC - to view all account logon successes that occur on domain and consolidate to one list...
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
FFL Windows Server 2008 R2
Winrm quickconfig
Then use Windows BitLocker Drive Encryption
47. You have been tasked with backing up all the GPOs in the domain. The IT manager also wants you to minimize the size of the backup. You decide to use...
Create an e-mail account in AD DS for your RMS users.
The Group Policy Management console
Administrative Role Separation
Add the Windows Server Backup feature and Windows System Image recovery.
48. Your office has no Internet connection. Your data provisioning solution must meet these requirements: users that are not connected to the network must be able to access files and folders on the network; unauthorized users must not have access to the
Increase the tombstone lifetime for the forest.
Use Netsh tool from administrator's computer.
Configure caching on the shared folder and configure offline files to use encryption
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
49. If users complain that it is hard to find the shared folders on the network implement
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.
Additional DFS Targets
Modify properties of RODC server computer account.
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
50. George's user account has been deleted in Active Directory. George's user account needs to be restored by usine minimal amount of effort. What should be done?
Perform an authoritative restore
Deploy it by using Group Policy Software Installation method
dnscmd
Implement Network Access Protection (NAP)
Sorry!:) No result found.
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests
