Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. You need to devise a security solution so that after 15 days the documents distributed to the members of the School Board can only be opened by the creator owners in the high school year book department. You should recommend...
802.1.x NAP
Create a new Password Settings Object (PSO) for the IT users.
Active Directory Right Management Services (AD RMS)
Domain based DFS namespace and configure a DFS replication group

2. hr.domain.com domain has an OU named Sales...You need to give UserA administrative rights so that he can manage Group Policies for the Sales OU while meeting the following requirments: UserA must be able to create and configure Group Polices in hr.do
Implement Distributed File System Replication (DFSR) on both servers
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
Configure RODC for Administrator Role Separation

3. To create and additional AD LDS applicaiton directory partition in existing instance...
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
Ldp
Back up to an external USB drive by using Windows Server Backup
Network Load Balancing (NLB)

4. When one needs to audit files - folders - printers and the registry enable
WDS
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
WSUS server in the branch office in replica mode.
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers

5. What should be used to montior the replication of group policy template files when your DFL is set at Windows Server 2008 R2?
Place the operating system files on one of the RAID 1 array - place the SQL transaction logs on the other RAID 1 array - and place the SQL database files on the RAID 5 array
Configure RODC for Administrator Role Separation
Implement Distributed File System Replication (DFSR) on both servers
Dfsrdiag

6. If you need to minimize the bandwidth for installation
Microsoft Desktop Optimization Pack (MDOP)
Basic Authentication and SSL
Utilize IFM (Install From Media)
Domain based Distributed File System (DFS) namespace and DFS Replication.

7. When deploying an application using the Group Policy distribution method assign the...
Assign the application to all client computers by using a GPO.
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
Microsoft System Center Data Protection Manager
Assign the application to computers in the PC OU

8. Two different solutions are available to help assign IP addresses to remote clients that need to VPN or Dial-in to the branch office.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

9. To update ADRMS password...
Implement Windows System Resource Manager (WSRM)
Group Policy Preferences
The WSUS client to retrieve updates from Microsoft Update (Do not Store updates locally)
AD Rights Management Services

10. Srv1 is a file server that has five internal SCSI hard drives. Your storage strategy needs to meet the following requirements: Physically separates the operating system data from the user data; maximize the disk space available for data storage; uses
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
Zone transfer settings
Install From Media IFM

11. To back up your Hyper-VMs and the Hyper-V host; for each VM -
Windows System Resource Manager (WSRM)
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
AD Rights Management Services
djoin /requesteodj from internal server - djoin /provision from outside server/PC

12. There is a file server in each office that contains a shared folder named Data. You need to plan the data availability for the Data folder according to these requirements: if WAN link fails - the files in the Data folder must be available in all of t
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Deploy a GPO for the Sales OU
Creating a data collector set that kick off a scritp that either move or delete files.

13. To configure Administrator Role Separation for an RODC
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
Enable Windows Remote Management (WinRM) on each server.
Network Load Balancing (NLB)

14. When recommending a monitoring solution for an application so that it's events can be stored in a central
Event Viewer
Event Subscriptions
Ensure your account - or the group is a member of the local Administrators group for that specific server.
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).

15. You have a couple support technicians located in branch office on Server 2008 R2 machines with the following requirements: Install server roles; stop and start services; minimize the security privileges granted to the support technicians
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
The Group Policy Management Console
Deploy it by using Group Policy Software Installation method

16. Domain.com recently deployed several Windows Server 2008 R2 file servers. You recently have had a problem with the file server in the sales department. On a regular basis the hard drive on the file server reaches capcity. You have to routinely perfor
Implement Distributed File System Replication (DFSR) on both servers
Include a server that runs Microsoft Office SharePoint Server 2010
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
Use the Local Roles options with dsmgmt.

17. to make shares at a remote location available to users you should implement this.
Configure caching on the shared folder (offline files)
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Domain based Distributed File System (DFS) namespace and DFS Replication.
Attach VHD file created by Windows server backup

18. Company users IPV4 and IPV6. A PC uses IPV6 and can no longer authenticate off the DC. What can be done to ensure IPV6 computers authenticate to DCs in same site...
Subnet object needs to be created
Active Directory Right Management Services (AD RMS)
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
Then configure auto enrollment of certificates and Credential Roaming.

19. If the companies support staff is currently using Remote Desktop to connect to the servers in the data center to perform all management tasks - it would be wise to have them instead
Configure block inheritance on the IT OU
Install the RSAT tool on their workstation to provide for more efficient network management
Deploy a failover cluster that contains one node in each office.
Configure caching on the shared folder (offline files)

20. You plan to upgrade your networks desktops to Windows 7 however - after testing you discover an application that will only run on Windows XP. You need to make this application available to a large number of desktops.
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Create a MEDV workspace
Microsoft Application Virtualization (AppV)
Perform an authoritative restore

21. You need to recommend management solution that will allow users to manage only certain parts of Hyper-V
WDS
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
Storage manager for SANs
Authorization Manager

22. All servers run 2008 R2 and all client computers run Windows 7. Server users have laptops and work from home. You need to plan an infrastructure to secure sensitive files according to these requirements: files must be - stored in an encrypted format;
Store all sensitive files in EFS encrypted folders and require home users to access the files by using SSTP
Disable Site Link Bridging from the IP properties
Add the new UPN suffix to the forest.
A Distributed File System (DFS) namespace

23. PowerShell script to create user accounts with passwords from a file called password.csv
Service user account for AD LDS
Modify the schema of LDSInst1
Then install new Server 2008 R2 Enterprise subordinate CA.
Import-csv password.csv | Foreach {New-ADUser -Name $_.Name -Enabled $true_AccountPassword (ConvertTo_SecureString $_.Password -AsPlainText -force)}

24. UPN Suffix xxxx.com needs to be available for user accounts...
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
Add the new UPN Suffix to the forest
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.

25. An external partner plan requires the following: prevent sensitive documents from being forwarded to untrusted recipients or from being printed; allow users in the external partner organization to access the protected content to which they have been
802.1.x NAP
Windows System Resource Manager (WSRM)
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.

26. To limit each user's storage space and to prevent users from storing audio and video files on the servers you should recommend
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Deploy a GPO to the WebSrvOU
File Server Resource Manager (FSRM) quotas and file screens

27. WSUS infrastructure must meet the following: distributed from a central location - all computers must continue to receive updates in the event that a server fails
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Create a Network Load Balancing cluster.

28. You need to create a DNS infrastructure that must allow client computers in each office to register DNA names within their respective offices and client computuers must be able to resolve names for hosts in all offices
Create an Active Directory-Integrated zone.
IIS Chared Configuration
Install and share a printer on a server and then enable printer pooling.
Back up to an external USB drive by using Windows Server Backup

29. RDSRv1 is a Server 2008 R2 Remote Desktop Session Host. RDSrv1 has 8 custome apps installed. Each is configured as a RDP RemoteApp. You notice that when a user runs one of the apps - other users report that the server seems slow and that some apps be
Back up to an external USB drive by using Windows Server Backup
Implement Windows System Resource Manager (WSRM)
Discover the run Microsoft Baseline Security Analyzer (MBSA)
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop

30. You need to modify DNS infrastructure to support dynamic updates to ALL DNS servers; ensure DNS service available even if single server fails; encrypt the synchronization data sent between DNS servers.
Assign the application to all client computers by using a GPO.
Configure the zone as an Activde Directory-Integrated zone.
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Implement a domain-based DFS namespace that uses replication

31. If you need to change the TCP/IP addresses on 30 servers using the minimum amount of administrative effort

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

32. New Password Policy needs to be created for OU different from domain password policy
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Subnet object needs to be created
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.

33. You need to generate a report on the status of software updates for your Windows 7 client computers with the following requirements: display all of the operating system updates and Microsoft application updates that installed successfully and failed;
DFL needs to be Windows Server 2008
Microsoft System Center Data Protection Manager
Active Directory Domains and Trusts
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO

34. Client computers run Windows 7 and all applications on the computers are configured to save documetns to the local Documents folder. You need a backup strategy that meets these: Back up the Documents folder for all users; minimize admin effort. To ac
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
Recommend Active Directory delegation
Dsmgmt
Implement folder redirection by using GPO. Then backup the folder redirection target.

35. To be able to user an application from one AD FS with authentication server to another...
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
djoin /requesteodj from internal server - djoin /provision from outside server/PC
A relying party trust should be created.

36. DCA is DC and DNS server that holds ADI zone for company.com DNSB is member server that has DNS server role installed. What should be done so DNSB can get zone updates from DCA?
Modify zone transfer settings for company.com zone on DCA
Ensure your account - or the group is a member of the local Administrators group for that specific server.
DSMOD - ADUC
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.

37. You need to recommend a server configuration to support a Web-based application that must meet these requirements: the app must be available to all users if a single server fails; support the installation of .NET applications; Minimize software costs
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Use local roles options within "dsmgmt"
Configure block inheritance on the IT OU

38. To ensure that user's documents are stored on the file server and thus subject to the corporate backup solution - you should implement this.
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Folder redirection. Folder redirection is also useful when using roamin profiles.
Configure event log subscriptions
Properties of PSO need modified

39. Certain apps may require that the end user have the ability to make changes to the application - however some applications may allow these changes to be made in the registry. To give you as the administrator the ability to make changes as necessary -
Recommend Group Policy preferences
Group Policy Preferences
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.

40. You are upgrading only a few computers in one department to Windows 7. These computers are running a legacy XP application you should recommend...
Windows XP Mode
Active Directory Domains and Trusts
Printer driver isolation
DSMOD

41. WSSvr1 has Windows SharePoint Services role installed and contains 20 SharePoint sites. You need to optimize performance and ensure that if CPU utilization exceeds 75% - then an equal amount of system resources are allocated to each SharePoint site.
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
Create a MEDV workspace
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.

42. AD RMS is being used on the network. George is only a member of the AD RMS Enterprise Administrators group. Mitt needs to be able to change the service connection point (SCP) for the AD RMS installation. What should be done so George can accomplish t
Modify zone transfer settings for company.com zone on DCA
Add George to the Domain Admins group.
Microsoft Desktop Optimization Pack (MDOP) to your company
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.

43. When recommending the server configurations for the new failover cluster that will live in a virtual environment from Hyper-V Manager on each node - configure ...
Include a server that runs Microsoft Office SharePoint Server 2010
1) Seize operations master roles from sever1 to server2 2) Rebuild Server as a replica domain controller 3) Transfer operations master roles from Server2 to Server1
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.

44. If you need to be able to create shared folders on Server 2008 R2
Ensure your account - or the group is a member of the local Administrators group for that specific server.
Create a Central Store
Active Directory Domains and Trusts
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.

45. Jack and Jill go up the hill - both with a buck and a quarter
Creating a data collector set that kick off a scritp that either move or delete files.
Jill came down with 2.50.
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
Assign the application to computers in the PC OU

46. You are about to deploy 1 -000 Windows 7 desktops and your company has a web based application that only runs correctly when using IE 6. You should use
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
MEDV to deploy virtual desktops
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
Printer driver isolation

47. BLANK BLANK is a computer Group Policy setting that can be for example; Linked at an OU where public kiosks/remote desktop session host computers reside.
Create a Network Load Balancing cluster.
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie
Autonomous mode...This allows the local administrator to approve their own updates.
Creating a data collector set that kick off a scritp that either move or delete files.

48. The solution requires that teachers that have been issued district based laptops - work remotely - and teach only on-line classes - must connect to the school network using split-tunnel VPN. Need to be sure that: minimize traffic over the VPN wheneve

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

49. to prevent VMs from receiving updats from a group policy
Refresh the zone on DNS2
Then configure GlobalNames zones on each domain controller.
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)

50. to ensure that server backups can be performed remotely from your backup server on your company file server you should perform these two actions
Microsoft System Center Data Protection Manager 2010
Remote Desktop Virtualization host - you wouldn't want all the users on the same Remote Desktop Session host to be local administrators.
Install Windows Server Backup and modify the Windows firewall settings
DSMOD - ADUC