Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. George's user account has been deleted in Active Directory. George's user account needs to be restored by usine minimal amount of effort. What should be done?
Perform an authoritative restore
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
Incoming external trust
Winrm quickconfig

2. When deploying an application using the Group Policy distribution method assign the...
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.
NOT be able to store that data on an iSCSI SAN
802.1.x NAP

3. To allow connection to a 256 Kbps ISDN...
Active Directory Right Management Services (AD RMS)
DISABLE slow link detection in the GPO
net stop ntds
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.

4. You have a root domain and four child domains. Policy requirements state that all local guest accounts must be renamed and disabled - and all local administrator accounts must be renamed
Printer driver isolation
Implement a GPO for each domain
Implement a domain-based DFS namespace that uses replication
The Group Policy Management console

5. If you need to minimize amount of time and impact of 50 simultaneous Win7 installations
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
IIS Manager user account
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
Deploy a failover cluster that contains one node in each office.

6. to ensure that users can ONLY view the list of DFS Targets to which they are assigned permissions
Repadmin
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
Authorization Manager role assignment
Software Restriction Polices

7. Domain.com's network has a single forest and single domain. Users currently share files using the corporate FTP server and DropBox. You need a better solution for managing document and allowing access. The solution must meet the following: allow for
Microsoft SharePoint Foundation 2010
File Server Resource Manager (FSRM) quotas and file screens
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.

8. What role to keep same time as an external server?
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
PDC emulator with w32tm.exe
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
FILES option within Ntdsutil

9. PowerShell script to create user accounts with passwords from a file called password.csv
Import-csv password.csv | Foreach {New-ADUser -Name $_.Name -Enabled $true_AccountPassword (ConvertTo_SecureString $_.Password -AsPlainText -force)}
Implement the Windows Search Service.
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
Ntfrsutil

10. To delegate authority to users to manage only certain areas in Hyper-V use the
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Authorization Manager role assignment
Recommend Group Policy preferences
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.

11. What should be done first to defragment the AD database?
Run net stop ntds
Site
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Role Separation

12. Tools to view contents of an OU in an AD snapshot...
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
Assign the application to all client computers by using a GPO.
dsa.msc - dsamain.exe - ntdsutil.exe

13. Policy states that domain controllers cannot contain optical drives. You need a backup and recovery plan that restores the domain controllers in the event of a catastrophic server failure. To accomplish this
Group Policy Preferences
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary

14. If users complain that it is hard to find the shared folders on the network implement
dnscmd
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Implement one LUN for the quorum and another LUN for the data
Additional DFS Targets

15. You have three domain controllers that perform a full back up every day. You need a recovery strategy for AD objects that meets these requirements: allows objects in a backup to be compared to objects in the live AD database; minimizes admin effort.
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Event Log Subscriptions
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Configure caching on the shared folder (offline files)

16. To replicate SYSVOL using Distributed File System Replication (DFSR)...
IIS Manager user account
DFL needs to be Windows Server 2008
Create an Active Directory-Integrated zone.
New ACCOUNT STORE should be added and configured

17. You need a solution for your Web servers that meet these requirements: ensures that the Web site is accessible even if a single server fails; supports the addition of more Web servers without interrupting client connections.
Then configure GlobalNames zones on each domain controller.
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Create a Network Load Balancing cluster.
Create ADMX and ADML files. Configure the GPO and link it to the domain.

18. A DNS structure should be deployed acording to the following requirements: ensure resources in the root and child domains are accessible by FQDN; provide name resolution services in the event that a single server fails for a prolonged period of time;
Active Directory Users and Computers utility
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010

19. Deployment solutions that will allow both the 64 bit version of Office 2010 and the 32 bit version Office 2003 to run at a same time on a Windows 7 computer - and to do that when the computer is offline - are very limited. You should recommend
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Microsoft Application Virtualization (AppV)
ntdsutil
Increase the tombstone lifetime for the forest.

20. to increase the reliability of the print server - configure...
Printer driver isolation
Assign the application to all client computers by using a GPO.
Perform an authoritative restore
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events

21. With AppLocker settings - which Windows PowerShell cmdlet would be used to identify whether a specific application file is allowed to run on a computer?
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Test-AppLockerPolicy
Run net stop ntds
Modify zone transfer settings for company.com zone on DCA

22. If you want to allow single-label name resolution
Set-ADServiceAccount cmdlet
Purchase one additional Enterprise License
Then configure GlobalNames zones on each domain controller.
Modify zone transfer settings for company.com zone on DCA

23. If you need to deploy a DHCP server that supports computers that start from a PXE network adapater and support Win7
Then use Windows Deployment Services (WDS)
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent
Create an e-mail account in AD DS for your RMS users.
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.

24. To allow administrators to create and store .ADMX templates in a way that allows them to have access to the template no matter what administrative computer they logon to you must
Windows Deployment Services (WDS)
Create a MEDV workspace
The Group Policy Management Console
Create a Central Store

25. To be able to remotely administer DNS servers that run on the Server Core installation of Server 2008 R2 - via MMC console
Install and share a printer on a server and then enable printer pooling.
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent

26. To prevent computers that do not have the Windows Firewall enabled from connecting to the wireless access point or the physical switch - you should implement this.
802.1.x NAP
Deploy Microsoft System Center Operations Manager (SCOM)
Backup operator's domain local group
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop

27. GPO's can be difficult to manage; you need a solution that will include version tracking and offline modifications. You should recommend
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
Microsoft Desktop Optimization Pack (MDOP) to your company
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
Modify the local policy to point to the Internal WSUS server

28. You need to recommend a solution to minimize the amount of time it takes for the sales department users to locate files in teh course bookings share.
DSMOD
Implement the Windows Search Service.
The Group Policy Management console
Add the new UPN Suffix to the forest

29. If you want to allow the administrator in each office to manage DHCP scope for their own office - and prevent the administror of one office from managing DHCP scopes on the DHCP server in another office with mimimal admin effort
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
Implement a Remote Desktop Connection Broker (RD Connection Broker)
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
Active Directory Domains and Trusts

30. Two different solutions are available to help assign IP addresses to remote clients that need to VPN or Dial-in to the branch office.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

31. To compact AD database...
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.
WDS
FILES option within Ntdsutil
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.

32. To configure Administrator Role Separation for an RODC
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.

33. You have been tasked with backing up all the GPOs in the domain. The IT manager also wants you to minimize the size of the backup. You decide to use...
Microsoft System Center Data Protection Manager
Event Subscriptions
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
The Group Policy Management console

34. You don't want users to be able to install removable devices on client computers. However - domain admins and desktop support technicians must be allowed to install removable devices on client computers
Implement GPO for all client computers
dnscmd
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
Incoming external trust

35. Requirements are: support the installation of SQL Server 2008; Provide redundancy for SQL services if a single server fails. To accomplish this
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Microsoft System Center Data Protection Manager 2010

36. What shold be done to configure AD RMS so users can protect their data?
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
Create an e-mail account in AD DS for your RMS users.
Create an e-mail account in AD DS for your RMS users

37. Minimal FFL needed to deploy an RODC that runs Windows Server 2008 R2...
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.
Windows Server 2003
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
Create and deploy a logon script that runs Auditpol.

38. You have few Server 2003 servers that have Terminal services installed. You also have a firewall that runs ISA Server 2006. Your remote access strategy for the terminal servers needs to meeet the following: restricts accsss to specific Remote Desktop
WSUS server in the branch office in replica mode.
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
Folder redirection. Folder redirection is also useful when using roamin profiles.
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).

39. Internet access is provided through the main office to the satellite offices. You need to design a patch management for the satellite offices that meet the following requirements: WSUS updates are approved from a central location; internet traffic is
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
Domain based Distributed File System (DFS) will reduce network traffic
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.

40. When backing up multiple servers it is a Microsoft best practice to add the authorized user or group to the

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

41. When configuring delegation of administration for Domain Controllers at a remote location you must Add the users or groups as members of the Domain Admins Group. However - be careful to allow just a certain user or group of users to manage the Domain
Add the Windows Server Backup feature and Windows System Image recovery.
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
Deploy a GPO to the WebSrvOU
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.

42. UPN Suffix xxxx.com needs to be available for user accounts...
Network Load Balancing (NLB) cluster
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
Add the new UPN Suffix to the forest
Utilize IFM (Install From Media)

43. to minimize the attack surface area of the servers and reduce licensing cost you should recommend
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Prestage the computer account in AD
NOT be able to store that data on an iSCSI SAN
Encrypting File System (EFS). This can be enabled locally or through a GPO.

44. You need to design patch management for satellite offices that meet the following requirements: WSUS updates are approved independently for each satellite office; Internet traffic is minimized. To accomplish
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Modify the local policy to point to the Internal WSUS server
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.

45. To restore deleted user account from AD Recycle Bin...
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
Install Hyper-V role and convert physical machines into virtual machines
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
Restore-ADObject cmdlet

46. Need to access some resources in another domain that is part of another forest...What trust is created?
Microsoft Desktop Optimization Pack (MDOP) to your company
Service user account for AD LDS
Incoming external trust
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.

47. What GPO setting should be configured to prevent all users from running an application?
Software Restriction Polices
Back up to an external USB drive by using Windows Server Backup
Modify zone transfer settings for company.com zone on DCA
Configure offline files and enable manual caching

48. AD CS is configured on Server1 as a standalone CA. What two actions should you do to audit changes to the CA configuration settings and the CA security settings?
Then configure auto enrollment of certificates and Credential Roaming.
Microsoft Desktop Optimization Pack (MDOP) to your company
Configure the zone as an Activde Directory-Integrated zone.
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.

49. The solution requires that teachers that have been issued district based laptops - work remotely - and teach only on-line classes - must connect to the school network using split-tunnel VPN. Need to be sure that: minimize traffic over the VPN wheneve

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

50. RDSRv1 is a Server 2008 R2 Remote Desktop Session Host. RDSrv1 has 8 custome apps installed. Each is configured as a RDP RemoteApp. You notice that when a user runs one of the apps - other users report that the server seems slow and that some apps be
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
Modify the GPO to include folder redirection
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.
Implement Windows System Resource Manager (WSRM)

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Major Subjects
Tests & Exams AP CLEP DSST GRE SAT GMAT	Certifications CISSP go to https://www.isc2.org/ PMP ITIL RHCE MCTS More...	IT Skills Android Programming Data Modeling Objective C Programming Basic Python Programming Adobe Illustrator More...	Business Skills Advertising Techniques Business Accounting Basics Business Strategy Human Resource Management Marketing Basics More...
Soft Skills Body Language People Skills Public Speaking Persuasion Job Hunting And Resumes More...	Vocabulary GRE Vocab SAT Vocab TOEFL Essential Vocab Basic English Words For All Global Words You Should Know Business English More...	Languages AP German Vocab AP Latin Vocab SAT Subject Test: French Italian Survival Norwegian Survival More...	Engineering Audio Engineering Computer Science Engineering Aerospace Engineering Chemical Engineering Structural Engineering More...
Health Sciences Basic Nursing Skills Health Science Language Fundamentals Veterinary Technology Medical Language Cardiology Clinical Surgery More...	English Grammar Fundamentals Literary And Rhetorical Vocab Elements Of Style Vocab Introduction To English Major Complete Advanced Sentences Literature Homonyms More...	Math Algebra Formulas Basic Arithmetic: Measurements Metric Conversions Geometric Properties Important Math Facts Number Sense Vocab Business Math More...	Other Major Subjects Science Economics History Law Performing-arts Cooking Logic & Reasoning Trivia

Test your basic knowledge |

MSITP

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests

Major Subjects

Tests & Exams

Certifications

IT Skills

Business Skills

Soft Skills

Vocabulary

Languages

Engineering

Health Sciences

English

Math

Other Major Subjects

Browse all subjects

Browse all tests

Most popular tests