Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. To ensure IT Help Desk Users can create GPOs in the domain and give them a GPO that contains preconfigured settings that will be used to create new GPOs -
Then configure auto enrollment of certificates and Credential Roaming.
Software Restriction Polices
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Execute the Active Directory Diagnostics Data Collector Set and then review the report.

2. You have few Server 2003 servers that have Terminal services installed. You also have a firewall that runs ISA Server 2006. Your remote access strategy for the terminal servers needs to meeet the following: restricts accsss to specific Remote Desktop
Install and share a printer on a server and then enable printer pooling.
FFL Windows Server 2008 R2
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
Deploy a GPO to the WebSrvOU

3. Your AD environment has an Enterprise Root CA. What 2 actions should you take to ensure that only administrators can sign code?
Dsmgmt
DSMOD
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
Distributed File System (DFS) Replication

4. The solution requires that teachers that have been issued district based laptops - work remotely - and teach only on-line classes - must connect to the school network using split-tunnel VPN. Need to be sure that: minimize traffic over the VPN wheneve

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

5. To monitor replication of group policy template files when DFL set at Windows 2008 R2...
AD RMS
Active Directory snapshots and Tombstone reanimation
Incoming external trust
Dfsrdiag

6. All computers are running either Windows SP2 or Windows 7. You want to audit users that are accessing the administrative shares on all the computers...
Create and deploy a logon script that runs Auditpol.
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Network Load Balancing (NLB) cluster
Dynamically expanding VHD's

7. You need a solution that allows a global group to perform the following: stop and start services; change registry settings; change network settings
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.
Back up to an external USB drive by using Windows Server Backup
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.
Disable Site Link Bridging from the IP properties

8. What utility is used to see what accounts cached on RODC?
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
DISABLE slow link detection in the GPO
The WSUS client to retrieve updates from Microsoft Update (Do not Store updates locally)
Active Directory Users and Computers

9. To ensure that admins in the corporate office can manage and control all Windows Updates and manage WSUS computer groups - deploy this.
Implement one LUN for the quorum and another LUN for the data
Configure caching on the shared folder and configure offline files to use encryption
WSUS server in the branch office in replica mode.
Win2000 Native

10. To prevent account password from being cached on RODC server...
AD Domains and Trusts
Group Policy Preferences
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.
Modify properties of RODC server computer account.

11. To limit each user's storage space and to prevent users from storing audio and video files on the servers you should recommend
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
File Server Resource Manager (FSRM) quotas and file screens

12. You don't want users to be able to install removable devices on client computers. However - domain admins and desktop support technicians must be allowed to install removable devices on client computers
DISABLE slow link detection in the GPO
Windows System Resource Manager (WSRM)
Then install new Server 2008 R2 Enterprise subordinate CA.
Implement GPO for all client computers

13. You need to devise a security solution so that after 15 days the documents distributed to the members of the School Board can only be opened by the creator owners in the high school year book department. You should recommend...
Purchase one additional Enterprise License
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.
Active Directory Right Management Services (AD RMS)
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.

14. When taking files offline there is always a security risk. Corporate files now reside on a laptop that will leave the confines of the corporate office. When taking files offline it is best practice to help protect these files using
Recommend Offline Files
ntdsutil
Create a Central Store
Encrypting File System (EFS). This can be enabled locally or through a GPO.

15. File that contains the last logon time and custom attributes values for each user in your forest.
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
Get-ADUser cmdlet
Utilize IFM (Install From Media)
Import-Module

16. You need to deploy a new application according to the following requirements: must be available to remote users when they are offline; must access the application from an icon on the Start menu
Increase the tombstone lifetime for the forest.
Improve the performance of File Servers
Create a Central Store
Assign the application to computers in the PC OU

17. If you need to minimize amount of time and impact of 50 simultaneous Win7 installations
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
PDC emulator with w32tm.exe
Authorization Manager role assignment
Implement a GPO for each domain

18. To speed up the deployment of the RODC in the new branch offices you should take advantage of this.
Install From Media IFM
Implement folder redirection by using GPO. Then backup the folder redirection target.
Group Policy Preferences
Purchase one additional Enterprise License

19. To back up your Hyper-VMs and the Hyper-V host; for each VM -
Authorization Manager
Microsoft SharePoint Foundation 2010
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
Install Hyper-V role and convert physical machines into virtual machines

20. Internet access is provided through the main office to the satellite offices. You need to design a patch management for the satellite offices that meet the following requirements: WSUS updates are approved from a central location; internet traffic is
Dfsrdiag
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Folder redirection. Folder redirection is also useful when using roamin profiles.
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.

21. Tools to view contents of an OU in an AD snapshot...
ntdsutil
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
Multipath I/O feature
dsa.msc - dsamain.exe - ntdsutil.exe

22. You have a couple support technicians located in branch office on Server 2008 R2 machines with the following requirements: Install server roles; stop and start services; minimize the security privileges granted to the support technicians
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
Properties of PSO need modified
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.

23. Need to access some resources in another domain that is part of another forest...What trust is created?
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
Ntdsutil
Incoming external trust
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.

24. You need to recommend a BitLocker recovery method you should recommend this.
Configure Firewall Group Policies and link them at the Domain level
Data Recovery Agent
Add the new UPN Suffix to the forest
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).

25. Your AD domain has an OU named Sales OU that contains the user accounts of the Sales department. A new password polity needs to be created for the Sales department that is different from the domain password policy. How is this accomplished?
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
Zone transfer settings
PowerShell 2.0
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.

26. hr.domain.com domain has an OU named Sales...You need to give UserA administrative rights so that he can manage Group Policies for the Sales OU while meeting the following requirments: UserA must be able to create and configure Group Polices in hr.do
Disable Site Link Bridging from IP Properties
Configure Audit Special Logon and define Special Groups
PDC emulator with w32tm.exe
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.

27. You need to recommend a solution for users in the branch office to access files in the main office. To minimize the amount of time it takes for users in the Branch office to access files stored on servers in the main office - and minimize the number
Configure RODC for Administrator Role Separation
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
dnscmd tool
Recommend Active Directory delegation

28. A script fails to create user accounts. Which cmdlet should be added to the script to create user accounts?
Ntfrsutil
Implement a GPO for each domain
Import-Module
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.

29. If users need access to files locally and must be able to access files at another site if the local copy is not available you should implement this.
Enable - ADoptionalFeature cmdlet
Service user account for AD LDS
A Distributed File System (DFS) namespace
Implement a GPO for each domain

30. You need to relocate an AD LDS instance from C: Drive to D: Drive
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
Certificate Templates
Import-csv password.csv | Foreach {New-ADUser -Name $_.Name -Enabled $true_AccountPassword (ConvertTo_SecureString $_.Password -AsPlainText -force)}

31. An AD LDS instance needs to be replicated from one server to another...
Ensure your account - or the group is a member of the local Administrators group for that specific server.
Software Restriction Polices
AD RMS
Service user account for AD LDS

32. Company.com is working on a set of corporate documents. These documents are stored in a shared folder on your corporate file server. You need to protect documents as they get created.
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
A relying party trust should be created.

33. To enforce corporate policy on ALL computers in the domain to show a legal notice when a user logs on to the domain
Role Separation
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
Implement Windows BitLocker Drive Encryption (BitLocker)
PDC emulator with w32tm.exe

34. To ensure that a group in not giving too many permissions when delegating be sure to delagate permissions at the lower level OUs vs. at the domain level for example
Properties of PSO need modified
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
Refresh the zone on DNS2
Printer driver isolation

35. You have a root domain and four child domains. Policy requirements state that all local guest accounts must be renamed and disabled - and all local administrator accounts must be renamed
Implement a GPO for each domain
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
Create a Central Store

36. Your file server contains 2 volumes; one that contains the operating system and the other volume contains all data files. Your recovery strategy must meet these requirements: allows the operating system to be restored; allows the data files to be res
Add the Windows Server Backup feature and Windows System Image recovery.
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
Run net stop ntds
Active Directory Domains and Trusts

37. You plan to upgrade your networks desktops to Windows 7 however - after testing you discover an application that will only run on Windows XP. You need to make this application available to a large number of desktops.
FILES option within Ntdsutil
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
Create a MEDV workspace

38. SrvA has the AD LDS role and an instance named LDSInst1. You connect to this instance by using the ADSI Edit utility. When you execute the Create Object wizard there is no User object class. What should be done so you can create user objects in LDSIn
Install Windows Server Backup and modify the Windows firewall settings
dnscmd
Modify the schema of LDSInst1
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).

39. You have been tasked with backing up all the GPOs in the domain. The IT manager also wants you to minimize the size of the backup. You decide to use...
Test-AppLockerPolicy
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
Restore-ADObject cmdlet
The Group Policy Management console

40. WSUS infrastructure must meet the following: distributed from a central location - all computers must continue to receive updates in the event that a server fails
A relying party trust should be created.
Dsmgmt
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
Active Directory Users and Computers utility

41. Within your company you have a server that will be running 8 VMs but only 6 concurrently. Your company has already purchased an Enterprise license for the server.
Purchase one additional Enterprise License
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
Implement one LUN for the quorum and another LUN for the data
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.

42. George needs to administer a read-only domain controller named Server1 - but to do this with minimal permissions assigned to him. What tool should be used for this daunting task?
Use a GPO to configure device installation restrictions
Dsmgmt
Create ADMX and ADML files. Configure the GPO and link it to the domain.
Add the user to the Domain Admins global group

43. New Password Policy needs to be created for OU different from domain password policy
Recommend Group Policy preferences
Microsoft System Center Data Protection Manager
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates

44. ServerA collects all events that occur on domain controllers with minimum effort from Event Viewer - what should be done to ensure notified when specific event occurs on any domain controllers...
From Server A - run Create Basic Task Wizard
Incoming external trust
1) Restart dc in DirectoryServiceRestoreMode - 2) Restory system state data to date before organizational unit was deleted - 3) Use ntdsutil utility to mark organizational unit as authoritative 4) Restart Domain Controller
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th

45. You need to recommend a Windows update strategy for the new branch office. The branch office has a 512 Kbps connection the corporate office and a 2 MB connection to the Internet. You should recommend this.
Offline domain join
Backup operator's domain local group
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
A Distributed File System (DFS) namespace

46. When deploying servers one would have to include some kind of process that would ultimately join the servers to the domain - this typically would require a script and a reboot. to help eliminate some of the steps involved and automate the deployment
Printer driver isolation
Offline domain join
Create an Active Directory-Integrated zone.
Assign the application to computers in the PC OU

47. To decrease the amount of time it takes for the certain users to generate reports. You should recommend
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
Windows System Resource Manager (WSRM)
dsa.msc - dsamain.exe - ntdsutil.exe
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).

48. To restore deleted user account from AD Recycle Bin...
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
Restore-ADObject cmdlet
Group Policy Preferences
Win2000

49. Srv1 - Srv2 - Srv 3 are Network Policy Servers (NPS) that function as RADIUS Servers. Srv1 is also Microsoft SQL Server 2008 server. The network has 20 wireless access points that are configured as RADIUS clients. You need an audit strategy with the
NOT be able to store that data on an iSCSI SAN
Recommend GPT and basic disks
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
dnscmd tool

50. When using Remote Desktop and Remote Desktop Session hosts - to be able to control both who can gain access - and to what - on the network configure;
Configure offline files and enable manual caching
Backup operator's domain local group
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
Implement a GPO for each domain

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Major Subjects
Tests & Exams AP CLEP DSST GRE SAT GMAT	Certifications CISSP go to https://www.isc2.org/ PMP ITIL RHCE MCTS More...	IT Skills Android Programming Data Modeling Objective C Programming Basic Python Programming Adobe Illustrator More...	Business Skills Advertising Techniques Business Accounting Basics Business Strategy Human Resource Management Marketing Basics More...
Soft Skills Body Language People Skills Public Speaking Persuasion Job Hunting And Resumes More...	Vocabulary GRE Vocab SAT Vocab TOEFL Essential Vocab Basic English Words For All Global Words You Should Know Business English More...	Languages AP German Vocab AP Latin Vocab SAT Subject Test: French Italian Survival Norwegian Survival More...	Engineering Audio Engineering Computer Science Engineering Aerospace Engineering Chemical Engineering Structural Engineering More...
Health Sciences Basic Nursing Skills Health Science Language Fundamentals Veterinary Technology Medical Language Cardiology Clinical Surgery More...	English Grammar Fundamentals Literary And Rhetorical Vocab Elements Of Style Vocab Introduction To English Major Complete Advanced Sentences Literature Homonyms More...	Math Algebra Formulas Basic Arithmetic: Measurements Metric Conversions Geometric Properties Important Math Facts Number Sense Vocab Business Math More...	Other Major Subjects Science Economics History Law Performing-arts Cooking Logic & Reasoning Trivia

Test your basic knowledge |

MSITP

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests

Major Subjects

Tests & Exams

Certifications

IT Skills

Business Skills

Soft Skills

Vocabulary

Languages

Engineering

Health Sciences

English

Math

Other Major Subjects

Browse all subjects

Browse all tests

Most popular tests