Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. You need to create a DNS infrastructure that must allow client computers in each office to register DNA names within their respective offices and client computuers must be able to resolve names for hosts in all offices
Data Recovery Agent
From Server A - run Create Basic Task Wizard
Implement one LUN for the quorum and another LUN for the data
Create an Active Directory-Integrated zone.

2. You have several Windows 2000 Servers that have a custom application installed. However - the apps are incompatible with each other and with Windows Server 2008 R2 - but they consume less than 10% of system resources. There is a policy that states al
Implement GPO for all client computers
Deploy a failover cluster that contains one node in each office.
Then use Windows BitLocker Drive Encryption
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.

3. When configuring delegation of administration for Domain Controllers at a remote location you must Add the users or groups as members of the Domain Admins Group. However - be careful to allow just a certain user or group of users to manage the Domain
Implement the Windows Search Service.
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.
Implement Network Access Protection (NAP)
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in

4. If you want to allow the administrator in each office to manage DHCP scope for their own office - and prevent the administror of one office from managing DHCP scopes on the DHCP server in another office with mimimal admin effort
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.

5. What should be used to montior the replication of group policy template files when your DFL is set at Windows Server 2008 R2?
Microsoft System Center Data Protection Manager 2010
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Dfsrdiag
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.

6. File that contains the last logon time and custom attributes values for each user in your forest.
Get-ADUser cmdlet
From Server A - run Create Basic Task Wizard
Active Directory Domains and Trusts
PowerShell 2.0

7. Need a solution that will ensure that the initial settings when creating new policies for both forests will become more consistent. You should...

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

8. You have 2 Server Core servers that are part of a Network Load Balance that host a web site. To be able to allow administrators - on their Windows 7 computers - remotely manage the NLB with automation
Enable Windows Remote Management (WinRM) on the servers.
Data Recovery Agent
Configure offline files and enable manual caching
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.

9. You need to plan for the delegation of administrative authority for an OU in your AD named Staff. It should: allow help desk admins to create user accounts in the Staff OU; allow helpdesk admins to change the address attributes; prevent HelpDesk admi
Run the Delegation of Control Wizard on the Staff OU
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Utilize IFM (Install From Media)

10. To minimize the amount of storage required you should recommend
Incoming external trust
Share and Storage Management
Authorization Manager role assignment
Windows System Resource Manager (WSRM)

11. Files servers need to stay connected to the SAN if a NIC fails. You should recommend
Jill came down with 2.50.
Multipath I/O feature
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)

12. The solution requires that teachers that have been issued district based laptops - work remotely - and teach only on-line classes - must connect to the school network using split-tunnel VPN. Need to be sure that: minimize traffic over the VPN wheneve

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

13. You have a failover cluster that has an application installed. Service level agreement requires 55 percent of processor and memory utilization to be reserved for the app. A solution to guarantee service level agreement would be
Multipath I/O feature
Basic Authentication and SSL
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
Microsoft System Center Data Protection Manager 2010

14. To be able to manage all the corporate servers from a workstation - you must install the
PDC emulator with w32tm.exe
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Modify zone transfer settings for company.com zone on DCA
Back up to an external USB drive by using Windows Server Backup

15. Your company IP scheme uses both IPv4 and IPv6. You have a main and branch office. In the branch office you are using PC1. PC1 is now only using IPv6. You noticed that PC1 no longer authenticates off the DC that is in the branch office. What should b
An Active Directory subnet object needs to be created.
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
Microsoft System Center Data Protection Manager
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library

16. To ensure that a group in not giving too many permissions when delegating be sure to delagate permissions at the lower level OUs vs. at the domain level for example
Configure caching on the shared folder and configure offline files to use encryption
MEDV to deploy virtual desktops
Add the Windows Server Backup feature and Windows System Image recovery.
Assign permissions for the Groups OU and Branch OU to the help desk technicians.

17. What GPO setting should be configured to prevent all users from running an application?
Then configure auto enrollment of certificates and Credential Roaming.
Install Hyper-V role and convert physical machines into virtual machines
Software Restriction Polices
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.

18. Within your company you have a server that will be running 8 VMs but only 6 concurrently. Your company has already purchased an Enterprise license for the server.
AD Rights Management Services
Purchase one additional Enterprise License
Certificate Templates
Site

19. Backup solutions for the files servers that support a robotic-based tape library must support the enterprise; you should recommend
Microsoft System Center Data Protection Manager
Purchase one additional Enterprise License
Deploy a GPO to the WebSrvOU
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.

20. In Active Directory Sites and Services - what should be configured to ensure domain controllers only replicate between domain controllers in adjacent sites?
Event Subscriptions
Disable Site Link Bridging from the IP properties
1) Seize operations master roles from sever1 to server2 2) Rebuild Server as a replica domain controller 3) Transfer operations master roles from Server2 to Server1
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).

21. Recently you have installed a special application on your web sites that requires using a managed service account on the Web Servers. This application runs on a web server in each of 10 separate Active Directory domains.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

22. ServerA collects all events that occur on domain controllers with minimum effort from Event Viewer - what should be done to ensure notified when specific event occurs on any domain controllers...
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
From Server A - run Create Basic Task Wizard
net stop ntds

23. There is a file server in each office that contains a shared folder named Data. You need to plan the data availability for the Data folder according to these requirements: if WAN link fails - the files in the Data folder must be available in all of t
Deploy a GPO to the WebSrvOU
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Additional DFS Targets
Registry on users computer needs to be modified

24. To delegate authority to users to manage only certain areas in Hyper-V use the
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
Ldp
Assign the application to computers in the PC OU
Authorization Manager role assignment

25. You need a solution that meets policy while minimizing hardware and software costs
Create a new Password Settings Object (PSO) for the IT users.
Raise the DFL to Windows Server 2008 R2.
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Dynamically expanding VHD's

26. To limit each user's storage space and to prevent users from storing audio and video files on the servers you should recommend
Active Directory Users and Computers
Software Restriction Polices
File Server Resource Manager (FSRM) quotas and file screens
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster

27. Certain apps may require that the end user have the ability to make changes to the application - however some applications may allow these changes to be made in the registry. To give you as the administrator the ability to make changes as necessary -
Discover the run Microsoft Baseline Security Analyzer (MBSA)
Dfsrdiag
Backup operator's domain local group
Group Policy Preferences

28. You need a patch management strategy to deploy updates to the computers on the secure network. To accomplish
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
Run the Delegation of Control Wizard on the Staff OU
Deploy Microsoft System Center Operations Manager (SCOM)
Multipath I/O feature

29. To deploy templates across the organization
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.
Implement Windows System Resource Manager (WSRM)
MEDV to deploy virtual desktops

30. When implementing WSUS servers at branch offices or remote campuses you can configure the WSUS server a the remote location to be in
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Autonomous mode...This allows the local administrator to approve their own updates.
Deploy a failover cluster that contains one node in each office.
Add the new UPN suffix to the forest.

31. George's user account has been deleted in Active Directory. George's user account needs to be restored by usine minimal amount of effort. What should be done?
Microsoft Application Virtualization (AppV)
Recommend GPT and basic disks
Add the new UPN suffix to the forest.
Perform an authoritative restore

32. To monitor replication of group policy template files when DFL set at Windows 2008 R2...
Run net stop ntds
dsa.msc - dsamain.exe - ntdsutil.exe
Dfsrdiag
Deploy a failover cluster that uses Node and File Share Disk Majority

33. To back up your Hyper-VMs and the Hyper-V host; for each VM -
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
Domain based DFS namespace and configure a DFS replication group
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Dsmgmt

34. You need to deploy apps to client computers according to these req.: apps must be deployed to client computers that meet minimum hardware requirements; detaild reports on success/failure of the app deployments must be provided; deployments must be sc
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
ntdsutil
Ldp

35. You need to ensure that the guest account on all servers is disabled to
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Create a Network Load Balancing cluster.
Discover the run Microsoft Baseline Security Analyzer (MBSA)
Include a server that runs Microsoft Office SharePoint Server 2010

36. If the branch office has its own high speed WAN link and you need to minimize traffice between the corporate office and the Branch office - configure this.
The WSUS client to retrieve updates from Microsoft Update (Do not Store updates locally)
Add the new UPN Suffix to the forest
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
Create ADMX and ADML files. Configure the GPO and link it to the domain.

37. All DCs run Windows Server 2008 R2 and have the DNS Server role installed. The domain controllers for each location are stored locally. Each has its own standard primary zone to support its local domain.You need a plan that meets the following: WAN l
FILES option within Ntdsutil
Create a standard secondary of domain and create standard secondary of other domain.
Implement a domain-based DFS namespace that uses replication
IIS Chared Configuration

38. To replicate SYSVOL using Distributed File System Replication (DFSR)...
DFL needs to be Windows Server 2008
Changed manually
Raise the DFL to Windows Server 2008 R2.
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.

39. If subnets are connected by CISCO router that is RFC-1542 compliant
Use CISCO IP Helper command to configure.
AD Rights Management Services
Share and Storage Management
Modify the GPO to include folder redirection

40. To create and additional AD LDS applicaiton directory partition in existing instance...
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
Ldp
Test-AppLockerPolicy

41. Deployment of 10 WSUS servers across 10 branch office will take place over a three month period. The bandwidth between the corporate office and the branch offices must be minimized due to budget contraints within the company. Admins in the corporate
Either implement a DHCP server at the branch office - or configure a "Static Pool" on the RRAS server itself. If deploying a DHCP server at the branch office isn't an option - then once the Remote Access Server role has been deployed you can configur
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
DSMOD - ADUC
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office

42. You are about to deploy 1 -000 Windows 7 desktops and your company has a web based application that only runs correctly when using IE 6. You should use
Deploy Microsoft System Center Operations Manager (SCOM)
MEDV to deploy virtual desktops
Then configure GlobalNames zones on each domain controller.
Add the new UPN Suffix to the forest

43. For the users that work remotely that need access to files from the corporate office you should...
Share and Storage Management
Recommend Offline Files
Implement Windows System Resource Manager (WSRM)
FFL Windows Server 2008 R2

44. to make shares at a remote location available to users you should implement this.
Event Log Subscriptions
Enable Windows Remote Management (WinRM) on the servers.
Domain based Distributed File System (DFS) namespace and DFS Replication.
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.

45. To make deploying the custom Word dictionary easy
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
Recommend Group Policy preferences
New ACCOUNT STORE should be added and configured
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).

46. to ensure that users can ONLY view the list of DFS Targets to which they are assigned permissions
Printer driver isolation
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Dsmgmt
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.

47. If you need to implement Encrypting File System (EFS) and minimize amount of data transferred across and access EFS certs on any client computer
Enable Credential Roaming
Run adprep /forestprep and adprep /domainprep
Windows Deployment Services (WDS)
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.

48. IF you need to automate deployment of 32 and 64 bit 2008 R2 servers
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.
Deploy a failover cluster that contains one node in each office.
Then use Windows Deployment Services (WDS) on DHCP1.
Configure Firewall Group Policies and link them at the Domain level

49. Client computers run Windows 7 and all applications on the computers are configured to save documetns to the local Documents folder. You need a backup strategy that meets these: Back up the Documents folder for all users; minimize admin effort. To ac
CAPublishGP group should have the Manage CA permission.
Either implement a DHCP server at the branch office - or configure a "Static Pool" on the RRAS server itself. If deploying a DHCP server at the branch office isn't an option - then once the Remote Access Server role has been deployed you can configur
Backup operator's domain local group
Implement folder redirection by using GPO. Then backup the folder redirection target.

50. All client computers run Windows 7. You have 8 Window Server 2003 servers that run Terminal Services. There is also an ISA server that runs the firewall. You need to plan on giving remote users access to the Terminal Servers according to these requir
Windows System Resource Manager (WSRM)
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
1) Restart dc in DirectoryServiceRestoreMode - 2) Restory system state data to date before organizational unit was deleted - 3) Use ntdsutil utility to mark organizational unit as authoritative 4) Restart Domain Controller
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).