SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Striped volumes
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
PDC emulator with w32tm.exe
Active Directory Users and Computers
Improve the performance of File Servers
2. You have a couple support technicians located in branch office on Server 2008 R2 machines with the following requirements: Install server roles; stop and start services; minimize the security privileges granted to the support technicians
DFL needs to be Windows Server 2008
Configure caching on the shared folder and configure offline files to use encryption
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
3. What should be done to resolve names by using GlobalNames zone?
dnscmd tool
A relying party trust should be created.
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
Raise the DFL to Windows Server 2008 R2.
4. SiteA is an existing AD site. You just created a new site in AD named SiteB. AD replication needs to be configured betwen the two sites so you install a new DC and you careatd a site link between the two sites. What should be done next?
Administrative Role Separation
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
Data Recovery Agent
5. You need a strategy for backing up your 2008 R2 file servers according to these: allows for individual file restore; allows for complete server recovery; supports scheduled backups; provides decentralized control over backups and recovery; minimizes
Use a GPO to configure device installation restrictions
Back up to an external USB drive by using Windows Server Backup
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
6. UPN Suffix xxxx.com needs to be available for user accounts...
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Implement one LUN for the quorum and another LUN for the data
Add the new UPN Suffix to the forest
Test-AppLockerPolicy
7. Within your company you have a server that will be running 8 VMs but only 6 concurrently. Your company has already purchased an Enterprise license for the server.
Add George to the Domain Admins group.
Purchase one additional Enterprise License
djoin /requesteodj from internal server - djoin /provision from outside server/PC
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
8. You have a 2008 R2 serever that has SQL Server 2008 installed. The server has one RAID 5 array and two RAID 1 arrays. You need to allocate hard disck space on the server according to the followign requirements: prevent data los if a single hard disk
Then use Windows Deployment Services (WDS)
Place the operating system files on one of the RAID 1 array - place the SQL transaction logs on the other RAID 1 array - and place the SQL database files on the RAID 5 array
PowerShell 2.0
Deploy Microsoft System Center Operations Manager (SCOM)
9. You have few Server 2003 servers that have Terminal services installed. You also have a firewall that runs ISA Server 2006. Your remote access strategy for the terminal servers needs to meeet the following: restricts accsss to specific Remote Desktop
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
Recommend GPT and basic disks
Software Restriction Polices
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
10. When recommending a monitoring solution for an application so that it's events can be stored in a central
Event Subscriptions
Active Directory snapshots and Tombstone reanimation
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
11. You need to create a DNS infrastructure that must allow client computers in each office to register DNA names within their respective offices and client computuers must be able to resolve names for hosts in all offices
Create an Active Directory-Integrated zone.
Group Policy Preferences
Configure event log subscriptions
Multipath I/O feature
12. You need to generate a report on the status of software updates for your Windows 7 client computers with the following requirements: display all of the operating system updates and Microsoft application updates that installed successfully and failed;
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
Creating a data collector set that kick off a scritp that either move or delete files.
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition
Deploy the Root CA certificate to the external computers.
13. FFL is...
Win2000 Native
Implement Windows System Resource Manager (WSRM) and configure user policies
Win2000
Refresh the zone on DNS2
14. All DCs have been upgraded from Windows Server 2003 to Windows Server 2008 R2. What should be done to ensure the Sysvol share replicates by using DFS Replicaiton (DFS-R)?
Windows System Resource Manager (WSRM)
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)
Raise the DFL to Windows Server 2008 R2.
dsa.msc - dsamain.exe - ntdsutil.exe
15. You need to plan the deployment of an application that must meet these requirements: users must have - access to the app when they are connected to the network; access the application from an icon on their desktops.
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
Authorization Manager
Assign the application to all client computers by using a GPO.
16. The strongest form of NAP is
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Recommend Offline Files
Deploy a failover cluster that uses Node and File Share Disk Majority
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
17. Your company IP scheme uses both IPv4 and IPv6. You have a main and branch office. In the branch office you are using PC1. PC1 is now only using IPv6. You noticed that PC1 no longer authenticates off the DC that is in the branch office. What should b
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Dfsrdiag
An Active Directory subnet object needs to be created.
18. Two different solutions are available to help assign IP addresses to remote clients that need to VPN or Dial-in to the branch office.
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
19. What Function Level (FL) needs to be in place to enable AD Recycle Bin?
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
FFL Windows Server 2008 R2
Enable - ADoptionalFeature cmdlet
WSUS server in the branch office in replica mode.
20. If you need to minimize amount of time and impact of 50 simultaneous Win7 installations
Administrators is the minimum group membership required to complete this procedure.
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Assign the application to computers in the PC OU
Microsoft System Center Data Protection Manager
21. to ensure that users can ONLY view the list of DFS Targets to which they are assigned permissions
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
802.1.x NAP
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
Implement Windows System Resource Manager (WSRM)
22. Your data provisioning solution must meet the following requirements: users must have access to their Documents folder regardless of the client computer that they use; user documents should not be stored on the local client computer; minimize the tim
Install From Media IFM
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Configure folder redirection
Run the Delegation of Control Wizard on the Staff OU
23. Your domain has three OUs - HR - IT - and Sales. You need to redesign the layout of the OUs to support the following: Prevent GPOs that are linked to the domain from applying to computers located in IT OU; minimize number of GPOs; minimize number of
Configure block inheritance on the IT OU
Dfsrdiag
Modify zone transfer settings for company.com zone on DCA
Zone transfer settings
24. When configuring delegation of administration for Domain Controllers at a remote location you must Add the users or groups as members of the Domain Admins Group. However - be careful to allow just a certain user or group of users to manage the Domain
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
Microsoft Desktop Optimization Pack (MDOP) to your company
25. If you want to allow the administrator in each office to manage DHCP scope for their own office - and prevent the administror of one office from managing DHCP scopes on the DHCP server in another office with mimimal admin effort
FILES option within Ntdsutil
Converting physical servers to VMs - implementing SANn and SAN management components such as backup and site resiliency will create additional administrative overhead.
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
Microsoft SharePoint Foundation 2010
26. The servers in each office run Server 2008 R2 Enterprise Edition. You need to plan a failover cluster solution to service users in both offices that meet these: maintain the availability of services if a single server fails; minimize the number of se
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
Implement folder redirection by using GPO. Then backup the folder redirection target.
Deploy a failover cluster that contains one node in each office.
Registry on users computer needs to be modified
27. To be able to manage all the corporate servers from a workstation - you must install the
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
1) Seize operations master roles from sever1 to server2 2) Rebuild Server as a replica domain controller 3) Transfer operations master roles from Server2 to Server1
NOT be able to store that data on an iSCSI SAN
28. To delegate authority to users to manage only certain areas in Hyper-V use the
Authorization Manager role assignment
Windows Server 2003
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
Implement a domain-based DFS namespace that uses replication
29. If a user needs to access a new cert template when logging on to any client computer in domain and you need to automatically install on each client computer a cert
Microsoft System Center Data Protection Manager
1) Restart dc in DirectoryServiceRestoreMode - 2) Restory system state data to date before organizational unit was deleted - 3) Use ntdsutil utility to mark organizational unit as authoritative 4) Restart Domain Controller
Then configure auto enrollment of certificates and Credential Roaming.
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
30. If you need to implement Encrypting File System (EFS) and minimize amount of data transferred across and access EFS certs on any client computer
Multipath I/O feature
An Active Directory subnet object needs to be created.
Ldp
Enable Credential Roaming
31. You need to access some resources in another domain that is part of another forest. What type of trust should you create?
Certificate Templates
Incoming external trust
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Remote Desktop Virtualization host - you wouldn't want all the users on the same Remote Desktop Session host to be local administrators.
32. to increase the reliability of the print server - configure...
DSMOD - ADUC
Changed manually
Deploy the Root CA certificate to the external computers.
Printer driver isolation
33. When deploying an application using the Group Policy distribution method assign the...
Domain based Distributed File System (DFS) will reduce network traffic
Implement Windows BitLocker Drive Encryption (BitLocker)
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
Use Netsh tool from administrator's computer.
34. If users complain that it is hard to find the shared folders on the network implement
Additional DFS Targets
File Server Resource Manager (FSRM) quotas and file screens
Use a GPO to configure device installation restrictions
DSMOD
35. Tool to change Directory Services Restore Mode password on Domain Controller...
Configure separate application pools for each application
Win2000
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
ntdsutil
36. WSUS infrastructure must meet the following: distributed from a central location - all computers must continue to receive updates in the event that a server fails
Create an e-mail account in AD DS for your RMS users.
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Implement Windows System Resource Manager (WSRM)
37. You are about to deploy a distributed database appliation that will run on multiple 2008 R2 servers. This deployment needs to follow these requirements: uses the existing network infrastructure; uses standard Windows management tools; allocates stora
Create an Active Directory-Integrated zone.
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.
Perform an authoritative restore
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
38. You have two identical print devices. You must plan a print services infrastructure where: the print services must be available - even if one print device fails and have the ability to manage the print queue from a central location
Execute the Set-ADServiceAccount cmdlet
Install and share a printer on a server and then enable printer pooling.
Dsmgmt
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
39. What document management solution allows you to keep multiple versions of documents and automatically apply access policies to these documents? You should recommend
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
Add the user to the Domain Admins global group
40. If a file server reaches 15% free disk space - you could free up some disk space by
From Server A - run Create Basic Task Wizard
Windows Server 2003
Creating a data collector set that kick off a scritp that either move or delete files.
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
41. For complete fault tolerance the backend SQL Server should be protected as well - by placing it in a MSCS Failover Cluster) - To allow computers that are members of the domain to receive updates from a local WSUS you can easily create a group policy
Modify the local policy to point to the Internal WSUS server
Deploy a failover cluster that contains one node in each office.
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
Prestage the computer account in AD
42. You have 5 windows Server 2008 R2 servers that are configured with the File Server role. you need to monitor the file servers with the following requirements in mind: administrators must be able to create reports that display folder usage by differen
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Zone transfer settings
The Group Policy Management Console
43. To recover objects deleted from Active Directory you should recommend
Event Subscriptions
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
Install Windows Server Backup and modify the Windows firewall settings
Active Directory snapshots and Tombstone reanimation
44. If a new application needs to be deployed on the network and it comes as a .msi package and then do this.
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)
Deploy it by using Group Policy Software Installation method
Add-ADFineGrainedPasswordPolicySubject cmdlet
45. In Active Directory Sites and Services - what should be configured to ensure domain controllers only replicate between domain controllers in adjacent sites?
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Configure the zone as an Activde Directory-Integrated zone.
Disable Site Link Bridging from the IP properties
Winrm quickconfig
46. The ability to set quotas at the volume level has been around for many years - however if you have have servers that need quotas - but instead of placing the quota at the volume level you need to place the quota on an individual folder -
Implement File Server Resource Manager (FSRM) quotas on the desired servers
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
Raise the DFL to Windows Server 2008 R2.
Domain based DFS namespace and configure a DFS replication group
47. Your DFS deployment needs to meet these requirements: minimize the bandwidth required to replicate data; ensure users see only folders to which they have access; ensure users can access the data locally.
The WSUS client to retrieve updates from Microsoft Update (Do not Store updates locally)
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
Refresh the zone on DNS2
Create a standard secondary of domain and create standard secondary of other domain.
48. Your office has no Internet connection. Your data provisioning solution must meet these requirements: users that are not connected to the network must be able to access files and folders on the network; unauthorized users must not have access to the
Configure caching on the shared folder and configure offline files to use encryption
Enable Windows Remote Management (WinRM) on each server.
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
49. You need to rebuild a server and reinstall the operating system - and rollback all operations master roles to original state...
Enable Windows Remote Management (WinRM) on each server.
Configure the zone as an Activde Directory-Integrated zone.
1) Seize operations master roles from sever1 to server2 2) Rebuild Server as a replica domain controller 3) Transfer operations master roles from Server2 to Server1
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
50. An AD LDS instance needs to be replicated from one server to another...
Service user account for AD LDS
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
Configure block inheritance on the IT OU
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
