Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. You need to generate a report on the status of software updates for your Windows 7 client computers with the following requirements: display all of the operating system updates and Microsoft application updates that installed successfully and failed;
Create a Network Load Balancing cluster.
Configure offline files and enable manual caching
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
fsconfig on FSSrv2

2. Two different solutions are available to help assign IP addresses to remote clients that need to VPN or Dial-in to the branch office.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

3. To ensure that user's documents are stored on the file server and thus subject to the corporate backup solution - you should implement this.
Implement GPO for all client computers
Jill came down with 2.50.
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
Folder redirection. Folder redirection is also useful when using roamin profiles.

4. You need a patch management strategy to deploy updates to the computers on the secure network. To accomplish
The Group Policy Management console
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
Jill came down with 2.50.
Dsmgmt

5. To be able to manage all the corporate servers from a workstation - you must install the
Microsoft Desktop Optimization Pack (MDOP)
Perform an authoritative restore
DISABLE slow link detection in the GPO
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop

6. If you need to deploy a DHCP server that supports computers that start from a PXE network adapater and support Win7
Domain based Distributed File System (DFS) will reduce network traffic
Create a Network Load Balancing cluster.
Then use Windows Deployment Services (WDS)
An Active Directory subnet object needs to be created.

7. So a user can install updates on an RODC while preventing them from logging on to any other domain controller...
Configure RODC for Administrator Role Separation
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
Use local roles options within "dsmgmt"
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)

8. All servers run 2008 R2 and all client computers run Windows 7. Server users have laptops and work from home. You need to plan an infrastructure to secure sensitive files according to these requirements: files must be - stored in an encrypted format;
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
Store all sensitive files in EFS encrypted folders and require home users to access the files by using SSTP
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.

9. To restore previous version of script without taking up too much of time...
Attach VHD file created by Windows server backup
Raise the DFL to Windows Server 2008 R2.
Active Directory Users and Computers utility
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)

10. To create and additional AD LDS applicaiton directory partition in existing instance...
Microsoft Desktop Optimization Pack (MDOP) to your company
PDC emulator with w32tm.exe
Ldp
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)

11. DCA is DC and DNS server that holds ADI zone for company.com DNSB is member server that has DNS server role installed. What should be done so DNSB can get zone updates from DCA?
Incoming external trust
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Modify zone transfer settings for company.com zone on DCA
Multipath I/O feature

12. FFL is...
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Win2000
Implement Windows System Resource Manager (WSRM)
Authorization Manager

13. A script fails to create user accounts. Which cmdlet should be added to the script to create user accounts?
Import-Module
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Improve the performance of File Servers
Ntfrsutil

14. UPN Suffix xxxx.com needs to be available for user accounts...
DISABLE slow link detection in the GPO
FILES option within Ntdsutil
Assign the application to computers in the PC OU
Add the new UPN Suffix to the forest

15. If users need access to files locally and must be able to access files at another site if the local copy is not available you should implement this.
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
Attach VHD file created by Windows server backup
A Distributed File System (DFS) namespace
Reinstall AD DS on DCC.company.com as a WRITABLE DC.

16. All DCs have been upgraded from Windows Server 2003 to Windows Server 2008 R2. What should be done to ensure the Sysvol share replicates by using DFS Replicaiton (DFS-R)?
Share and Storage Management
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
Raise the DFL to Windows Server 2008 R2.

17. To modify several user accounts to a new UPN suffix
Raise the DFL to Windows Server 2008 R2.
Active Directory Users and Computers utility
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
Dsmgmt

18. AD RMS is being used on the network. George is only a member of the AD RMS Enterprise Administrators group. Mitt needs to be able to change the service connection point (SCP) for the AD RMS installation. What should be done so George can accomplish t
Add George to the Domain Admins group.
Microsoft SharePoint Foundation 2010
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
Refresh the zone on DNS2

19. If you need a VPN soluction that stores VPN passwords as encrypted text and supports automatic enrollment of certificates
Event Log Subscriptions
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
Deploy Microsoft System Center Operations Manager (SCOM)

20. Your forest containts only Windows Server 2008 domain controllers. What should be done to prepare the AD domain to install Windows Server 2008 R2 DCs?
Run adprep /forestprep and adprep /domainprep
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
Changed manually
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.

21. There is a file server in each office that contains a shared folder named Data. You need to plan the data availability for the Data folder according to these requirements: if WAN link fails - the files in the Data folder must be available in all of t
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
CAPublishGP group should have the Manage CA permission.
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.

22. To defragment and AD database...
Restore-ADObject cmdlet
net stop ntds
Incoming external trust
Changed manually

23. Need a solution that will ensure that the initial settings when creating new policies for both forests will become more consistent. You should...

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

24. SrvA has the AD LDS role and an instance named LDSInst1. You connect to this instance by using the ADSI Edit utility. When you execute the Create Object wizard there is no User object class. What should be done so you can create user objects in LDSIn
Administrators is the minimum group membership required to complete this procedure.
Modify the schema of LDSInst1
Implement Windows System Resource Manager (WSRM) and configure user policies
Ntfrsutil

25. For the users that work remotely that need access to files from the corporate office you should...
Use the Local Roles options with dsmgmt.
Software Restriction Polices
Windows Server 2003
Recommend Offline Files

26. If you need to allow an external partner's computer to access internal network resources by using SSTP
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
Deploy the Root CA certificate to the external computers.

27. Your data recovery strategy for your Server 2008 R2 file server must meet the followign requirements: All data volumes on the server must be backed up daily; backups must have a minimal impact on performance; if a disk fails - the recovery strategy m
Use the Local Roles options with dsmgmt.
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
djoin /requesteodj from internal server - djoin /provision from outside server/PC

28. Jack and Jill go up the hill - both with a buck and a quarter
Jill came down with 2.50.
Remote Desktop Virtualization host - you wouldn't want all the users on the same Remote Desktop Session host to be local administrators.
Converting physical servers to VMs - implementing SANn and SAN management components such as backup and site resiliency will create additional administrative overhead.
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations

29. When implementing a Hyper-V environment the benefits are enormous - however there are certain aspects of virtualization that can create some additional administrative overhead that you can not have in a pure physical environment for example
Get-ADUser cmdlet
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.
Converting physical servers to VMs - implementing SANn and SAN management components such as backup and site resiliency will create additional administrative overhead.
Deploy a failover cluster that uses Node and File Share Disk Majority

30. You have several Windows 2000 Servers that have a custom application installed. However - the apps are incompatible with each other and with Windows Server 2008 R2 - but they consume less than 10% of system resources. There is a policy that states al
Modify the schema of LDSInst1
Raise the DFL to Windows Server 2008 R2.
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.

31. All servers run 2008 R2 and all client computers run XP SP1. You need to deploy Distributed File System (DFS) to meet these: minimize cost; provide redundancy in the event a single server fails; ensure client computers reconnect to their preferred se
Configure separate application pools for each application
Role Separation
Configure an audit policy by editing the default domain policy and configure Event Forwarding
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.

32. WSUS infrastructure must meet the following: distributed from a central location - all computers must continue to receive updates in the event that a server fails
Use Netsh tool from administrator's computer.
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
Windows BitLocker Drive Encryption (Bit Locker)
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.

33. If you need to encrypt all data on all disks
Microsoft Desktop Optimization Pack (MDOP) to your company
Microsoft SharePoint Foundation 2010
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Then use Windows BitLocker Drive Encryption

34. What should be done to resolve names by using GlobalNames zone?
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
dnscmd tool
Add the new UPN suffix to the forest.
Zone transfer settings

35. You need to recommend management solution that will allow users to manage only certain parts of Hyper-V
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
Authorization Manager
Deploy a failover cluster that contains one node in each office.

36. You have two offices that are connected via a WAN link. Each office has a 2008 R2 file server. Users store their data on their local file server - but they can also acces data from the other office. You must implement a data solution according to the
Implement Distributed File System Replication (DFSR) on both servers
Create an e-mail account in AD DS for your RMS users.
Upgrading DFS to Windows Server 2008 R2
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files

37. SrvA has Remote Desktop Services role installed. You notice that users are consuming more than 40% of CPU resources. You want to prevent them from consuming more than 10% - however - administrators should not be limited.
Configure event log subscriptions
Implement Windows System Resource Manager (WSRM) and configure user policies
Incoming external trust
Dfsrdiag

38. To be able to user an application from one AD FS with authentication server to another...
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
Event Viewer
A relying party trust should be created.
Configure separate application pools for each application

39. George's user account has been deleted in Active Directory. George's user account needs to be restored by usine minimal amount of effort. What should be done?
Win2000 Native
Create a standard secondary of domain and create standard secondary of other domain.
Perform an authoritative restore
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.

40. What role to keep same time as an external server?
PDC emulator with w32tm.exe
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
Get-ADUser cmdlet
AD Rights Management Services

41. If the companies support staff is currently using Remote Desktop to connect to the servers in the data center to perform all management tasks - it would be wise to have them instead
Implement the Windows Search Service.
Install the RSAT tool on their workstation to provide for more efficient network management
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
Deploy Microsoft System Center Operations Manager (SCOM)

42. You need to implement read only copies of files at several locations. You currently have DFS for 2008 deployed. You should recommend this.
Active Directory Domains and Trusts
Upgrading DFS to Windows Server 2008 R2
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Create a GPO and link the GPO to the domain then configure the GPO to be enforced

43. When backing up multiple servers it is a Microsoft best practice to add the authorized user or group to the

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

44. What should be configured to ensure domain controllers only replicate between doain controllers in adjacent sites?
Implement Network Access Protection (NAP) that uses 802.1x enforcement
Disable Site Link Bridging from IP Properties
Improve the performance of File Servers
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.

45. If you want to allow the administrator in each office to manage DHCP scope for their own office - and prevent the administror of one office from managing DHCP scopes on the DHCP server in another office with mimimal admin effort
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
Back up to an external USB drive by using Windows Server Backup
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.

46. You are about to deploy a distributed database appliation that will run on multiple 2008 R2 servers. This deployment needs to follow these requirements: uses the existing network infrastructure; uses standard Windows management tools; allocates stora
Windows XP Mode
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)

47. To ensure IT Help Desk Users can create GPOs in the domain and give them a GPO that contains preconfigured settings that will be used to create new GPOs -
Role Separation
Create an e-mail account in AD DS for your RMS users.
Administrators is the minimum group membership required to complete this procedure.
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.

48. 3 servers are configured as DNS servers and are ADI for the company.com zone. DNS only allows for secure updates - but you need to enable dynamic DNS updates on DCC.company.com...What do you do?
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
WSUS server in the branch office in replica mode.
Run the Delegation of Control Wizard on the Staff OU
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd

49. Company.com is working on a set of corporate documents. These documents are stored in a shared folder on your corporate file server. You need to protect documents as they get created.
Then use Windows Deployment Services (WDS)
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Implement Windows BitLocker Drive Encryption (BitLocker)
Create and deploy a logon script that runs Auditpol.

50. To be able to remotely administer DNS servers that run on the Server Core installation of Server 2008 R2 - via MMC console
Event Log Subscriptions
Deploy Microsoft System Center Operations Manager (SCOM)
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.