Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. GPO setting to prevent all users from running an application
Modify properties of RODC server computer account.
CAPublishGP group should have the Manage CA permission.
Deploy a GPO for the Sales OU
Software Restriction Polices

2. To know if a new applicaiton is going to run on your network computers via AppLocker in GPO
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
Test-AppLockerPolicy
The Group Policy Management Console
DSMOD

3. George needs to administer a read-only domain controller named Server1 - but to do this with minimal permissions assigned to him. What tool should be used for this daunting task?
Then use on install image file that contains a single install image.
Dsmgmt
Configure RODC for Administrator Role Separation
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.

4. When implementing WSUS servers at branch offices or remote campuses you can configure the WSUS server a the remote location to be in
Get-ADUser cmdlet
Win2000
Autonomous mode...This allows the local administrator to approve their own updates.
Create a GPO and link the GPO to the domain then configure the GPO to be enforced

5. To delegate authority to users to manage only certain areas in Hyper-V use the
Dfsrdiag
Authorization Manager role assignment
Implement Windows System Resource Manager (WSRM) and configure user policies
Implement the Windows Search Service.

6. With Group Polices having over 8 -000 different settings - the possibility of conflicting policies - and security filters you should track multiple versions and offline modifications to GPOs. You should recommend
Microsoft Desktop Optimization Pack (MDOP)
Use local roles options within "dsmgmt"
Dsmgmt
Active Directory snapshots and Tombstone reanimation

7. If you need to implement a Cert Services solution that automates distribution of certificates - ensures security and gives external users acess to resources that use cert-based authentication
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
Then use Windows Deployment Services (WDS)
Domain based Distributed File System (DFS) will reduce network traffic
Windows System Resource Manager (WSRM)

8. You have administrative templates that another company wants to use on their domain. How would you configure the other company's domain to use these administrative templates?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

9. Policy states that domain controllers cannot contain optical drives. You need a backup and recovery plan that restores the domain controllers in the event of a catastrophic server failure. To accomplish this
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
Autonomous mode...This allows the local administrator to approve their own updates.

10. In order to ensure highly available Windows Update servers you should create this.
Modify the GPO to include folder redirection
Get-ADUser cmdlet
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
File Server Resource Manager (FSRM) quotas and file screens

11. Tool to allow a user to administer an RODC while minimizing the number of permissions assigned to user.
Add the new UPN Suffix to the forest
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
Configure block inheritance on the IT OU
Dsmgmt

12. You have 2 Server Core servers that are part of a Network Load Balance that host a web site. To be able to allow administrators - on their Windows 7 computers - remotely manage the NLB with automation
Software Restriction Polices
Deploy a failover cluster that contains one node in each office.
Configure offline files and enable manual caching
Enable Windows Remote Management (WinRM) on the servers.

13. You need to come up with a solution for managing user accounts that: allows Help Desk department to manage the user objects in all domains and minimize the administrative effort required to manage the frequent changes to the Help Desk department
ntdsutil
Install Hyper-V role and convert physical machines into virtual machines
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.

14. DCDNS1 is a DC and DNS server that host and ADI zone for company.com and is located in the main office. DNS2 is a DNS server that hosts a secondary zone for company.com and is located in the branch office. FSrv1 is a new file server that is located i
Refresh the zone on DNS2
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Configure caching on the shared folder (offline files)
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.

15. You need to ensure that users that access your web site can use any browser; however - they must be authenticated on a membership page. In order for this authentication to be done securely in IIS implement
Microsoft System Center Data Protection Manager 2010
Creating a data collector set that kick off a scritp that either move or delete files.
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
Basic Authentication and SSL

16. When configuring delegation of administration for Domain Controllers at a remote location you must Add the users or groups as members of the Domain Admins Group. However - be careful to allow just a certain user or group of users to manage the Domain
An Active Directory subnet object needs to be created.
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
Recommend GPT and basic disks
Windows Deployment Services (WDS)

17. To replicate SYSVOL using Distributed File System Replication (DFSR)...
Add the new UPN suffix to the forest.
DFL needs to be Windows Server 2008
1) Seize operations master roles from sever1 to server2 2) Rebuild Server as a replica domain controller 3) Transfer operations master roles from Server2 to Server1
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.

18. To restore previous version of script without taking up too much of time...
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
Attach VHD file created by Windows server backup
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
Converting physical servers to VMs - implementing SANn and SAN management components such as backup and site resiliency will create additional administrative overhead.

19. A script fails to create user accounts. Which cmdlet should be added to the script to create user accounts?
Import-Module
Prestage the computer account in AD
Implement folder redirection by using GPO. Then backup the folder redirection target.
Implement one LUN for the quorum and another LUN for the data

20. To ensure that user's documents are stored on the file server and thus subject to the corporate backup solution - you should implement this.
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
Multipath I/O feature
Network Load Balancing (NLB)
Folder redirection. Folder redirection is also useful when using roamin profiles.

21. When backing up multiple servers it is a Microsoft best practice to add the authorized user or group to the

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

22. What document management solution allows you to keep multiple versions of documents and automatically apply access policies to these documents? You should recommend
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
Active Directory Users and Computers utility
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010

23. 2 ways to relocate user and computer accounts to different OUs
Software Restriction Polices
DSMOD - ADUC
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
Certificate Templates

24. To backup Virtual Machines
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Windows System Resource Manager (WSRM)
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
Place the operating system files on one of the RAID 1 array - place the SQL transaction logs on the other RAID 1 array - and place the SQL database files on the RAID 5 array

25. Your forest containts only Windows Server 2008 domain controllers. What should be done to prepare the AD domain to install Windows Server 2008 R2 DCs?
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Run adprep /forestprep and adprep /domainprep
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
Network Load Balancing (NLB) cluster

26. Help desk staff must be able to update drivers on the domain controllers at the branch office and assign them the proper
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Recommend Group Policy preferences
Administrative Role Separation
Microsoft System Center Data Protection Manager 2010

27. What Function Level (FL) needs to be in place to enable AD Recycle Bin?
FFL Windows Server 2008 R2
Implement a Remote Desktop Connection Broker (RD Connection Broker)
1) Restart dc in DirectoryServiceRestoreMode - 2) Restory system state data to date before organizational unit was deleted - 3) Use ntdsutil utility to mark organizational unit as authoritative 4) Restart Domain Controller
Modify the GPO to include folder redirection

28. You are about to deploy 1 -000 Windows 7 desktops and your company has a web based application that only runs correctly when using IE 6. You should use
Autonomous mode...This allows the local administrator to approve their own updates.
Microsoft System Center Data Protection Manager 2010
MEDV to deploy virtual desktops
Modify the local policy to point to the Internal WSUS server

29. You need a solution that allows a global group to perform the following: stop and start services; change registry settings; change network settings
Windows Server 2003
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.

30. 3 Servers are Network Policy Servers (NPS) that function as RADIUS servers. The network has 20 wireless access points that are configured as RADIUS clients. You need to plan an audit strategy with the following requirements: stores audit data in a ce
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
File Server Resource Manager (FSRM) quotas and file screens
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).

31. You have a main office and 2 branch offices. Your OU structure mimics this. The branch office admins need to be able to apply GPOs only to their respective OUs. What 2 steps should you take to accomplish this?
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
DSMOD - ADUC
Microsoft Desktop Optimization Pack (MDOP) to your company
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.

32. To modify several user accounts to a new UPN suffix
Active Directory Users and Computers utility
Deploy a failover cluster that contains one node in each office.
Software Restriction Polices
Modify the local policy to point to the Internal WSUS server

33. You have a main office that contains two domain controllers and a branch office that has an RODC. What should be done so that a user named George can install updates on the RODC while preventing George from logging on to any other domain controller?
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
Software Restriction Polices
Use the Local Roles options with dsmgmt.
Get-ADUser cmdlet

34. To deploy templates across the organization
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.

35. Web server administrator's accountsd are in an OU called WebAdminOU and are member of a global group called WebAdmins. To allow the web server administrators to perform administrative tasks on the web servers - but not allow them to perform administr
Deploy a GPO to the WebSrvOU
Store all sensitive files in EFS encrypted folders and require home users to access the files by using SSTP
Assign the application to computers in the PC OU
Windows Deployment Services (WDS)

36. If you need to be able to create shared folders on Server 2008 R2
Ensure your account - or the group is a member of the local Administrators group for that specific server.
Configure authorization rules for Web developers on each web server
Configure caching on the shared folder (offline files)
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.

37. Jack and Jill go up the hill - both with a buck and a quarter
Either implement a DHCP server at the branch office - or configure a "Static Pool" on the RRAS server itself. If deploying a DHCP server at the branch office isn't an option - then once the Remote Access Server role has been deployed you can configur
Enable Credential Roaming
Jill came down with 2.50.
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions

38. You need to recommend a solution for users in the branch office to access files in the main office. To minimize the amount of time it takes for users in the Branch office to access files stored on servers in the main office - and minimize the number
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Service user account for AD LDS
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)

39. To determine size of AD database file...
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.
Implement a GPO for each domain
View properties of %systemroot%ntdsntds.dit

40. What should be done so application does not fail after 30 days while still keeping password policy in mind?
DISABLE slow link detection in the GPO
Event Log Subscriptions
Set-ADServiceAccount cmdlet
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.

41. To allow administrators tha trun Windows 7 ability to manage the DNS server that runs on the Server Core installation of Server 2008 R2
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
Event Viewer
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.

42. You need to design a data storage solution that meets the following: users must be able to choose the documents that will be available when they are away from the network; minimize the number of documents that are stored on users' portable computers;
Implement Network Access Protection (NAP) that uses 802.1x enforcement
Configure offline files and enable manual caching
Configure an audit policy by editing the default domain policy and configure Event Forwarding
Basic Authentication and SSL

43. If users complain that it is hard to find the shared folders on the network implement
Configure event log subscriptions
Additional DFS Targets
Event Viewer
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.

44. To make sure that all current certificate holders automatically enroll for the new template - use what utility?
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
Certificate Templates
ntdsutil

45. DCA is DC and DNS server that holds ADI zone for company.com DNSB is member server that has DNS server role installed. What should be done so DNSB can get zone updates from DCA?
Dfsrdiag
Then use Windows Deployment Services (WDS) on DHCP1.
Modify zone transfer settings for company.com zone on DCA
Configure caching on the shared folder and configure offline files to use encryption

46. When one needs to audit files - folders - printers and the registry enable
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Install Hyper-V role and convert physical machines into virtual machines
FILES option within Ntdsutil
Configure folder redirection

47. To configure Administrator Role Separation for an RODC
ntdsutil
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Subnet object needs to be created
Event Subscriptions

48. BLANK BLANK is a computer Group Policy setting that can be for example; Linked at an OU where public kiosks/remote desktop session host computers reside.
Group Policy Preferences
Use local roles options within "dsmgmt"
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie
From Server1 - run the Create Basic Task Wizard

49. Domain.com's network has a single forest and single domain. Users currently share files using the corporate FTP server and DropBox. You need a better solution for managing document and allowing access. The solution must meet the following: allow for
Repadmin
Microsoft SharePoint Foundation 2010
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
Role Separation

50. Certain apps may require that the end user have the ability to make changes to the application - however some applications may allow these changes to be made in the registry. To give you as the administrator the ability to make changes as necessary -
Use Netsh tool from administrator's computer.
Group Policy Preferences
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Major Subjects
Tests & Exams AP CLEP DSST GRE SAT GMAT	Certifications CISSP go to https://www.isc2.org/ PMP ITIL RHCE MCTS More...	IT Skills Android Programming Data Modeling Objective C Programming Basic Python Programming Adobe Illustrator More...	Business Skills Advertising Techniques Business Accounting Basics Business Strategy Human Resource Management Marketing Basics More...
Soft Skills Body Language People Skills Public Speaking Persuasion Job Hunting And Resumes More...	Vocabulary GRE Vocab SAT Vocab TOEFL Essential Vocab Basic English Words For All Global Words You Should Know Business English More...	Languages AP German Vocab AP Latin Vocab SAT Subject Test: French Italian Survival Norwegian Survival More...	Engineering Audio Engineering Computer Science Engineering Aerospace Engineering Chemical Engineering Structural Engineering More...
Health Sciences Basic Nursing Skills Health Science Language Fundamentals Veterinary Technology Medical Language Cardiology Clinical Surgery More...	English Grammar Fundamentals Literary And Rhetorical Vocab Elements Of Style Vocab Introduction To English Major Complete Advanced Sentences Literature Homonyms More...	Math Algebra Formulas Basic Arithmetic: Measurements Metric Conversions Geometric Properties Important Math Facts Number Sense Vocab Business Math More...	Other Major Subjects Science Economics History Law Performing-arts Cooking Logic & Reasoning Trivia

Test your basic knowledge |

MSITP

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests

Major Subjects

Tests & Exams

Certifications

IT Skills

Business Skills

Soft Skills

Vocabulary

Languages

Engineering

Health Sciences

English

Math

Other Major Subjects

Browse all subjects

Browse all tests

Most popular tests