Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. To be able to user an application from one AD FS with authentication server to another...
Win2000
PDC emulator with w32tm.exe
A relying party trust should be created.
Offline domain join

2. To enable the AD Recycle Bin
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.
Enable - ADoptionalFeature cmdlet
Execute the Set-ADServiceAccount cmdlet
Assign the application to computers in the PC OU

3. Domain.com's network consists of a Single AD domain. All servers and domain controllers run Windows Server 2008 R2. You need to ensure that you can: track all changes made to AD objects by the recently hired IT consulting firm; Ensure that the audits
Enable - ADoptionalFeature cmdlet
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Configure an audit policy by editing the default domain policy and configure Event Forwarding
Add-ADFineGrainedPasswordPolicySubject cmdlet

4. You have 159 server 2008 R2 servers that must meet the following: notification by e-mail to the administrator if error occurs on any server with minimum effort...
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Purchase one additional Enterprise License
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
Reinstall AD DS on DCC.company.com as a WRITABLE DC.

5. when deploying Virtual Machines in a Remote Desktop pool you can minimize the amount of disk space used by the VM and reduced the admin effort by deploying this.
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
Folder redirection. Folder redirection is also useful when using roamin profiles.
Perform an authoritative restore
Incoming external trust

6. You need to deploy a distributed database application that meets the following: allocates storage to servers as required; isolates storage traffic from the exisiting network; ensures that data is available if a single disk fails; ensures that data is
Then configure GlobalNames zones on each domain controller.
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Then use on install image file that contains a single install image.
Import-csv password.csv | Foreach {New-ADUser -Name $_.Name -Enabled $true_AccountPassword (ConvertTo_SecureString $_.Password -AsPlainText -force)}

7. If your company has the need to create administrative templates (.admx) files for Active Directory runnin on server 2008 R2 you should recommend...
Win2000 Native
Disable Site Link Bridging from the IP properties
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
Then configure auto enrollment of certificates and Credential Roaming.

8. You need to plan for the delegation of administrative authority for an OU in your AD named Staff. It should: allow help desk admins to create user accounts in the Staff OU; allow helpdesk admins to change the address attributes; prevent HelpDesk admi
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Ntdsutil
WSUS server in the branch office in replica mode.
Run the Delegation of Control Wizard on the Staff OU

9. To create and additional AD LDS applicaiton directory partition in existing instance...
Ldp
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
Use CISCO IP Helper command to configure.
Implement a GPO for each domain

10. You need to plan the deployment of an application that must meet these requirements: users must have - access to the app when they are connected to the network; access the application from an icon on their desktops.
Assign the application to all client computers by using a GPO.
Create an e-mail account in AD DS for your RMS users.
Import-csv password.csv | Foreach {New-ADUser -Name $_.Name -Enabled $true_AccountPassword (ConvertTo_SecureString $_.Password -AsPlainText -force)}
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.

11. You need a tool that will help you manage LUN's for both iSCSI and Fibre Channel to support the provision of Virtual disks. You should recommend this.
Network Load Balancing (NLB)
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
Storage manager for SANs

12. To ensure that recovery is possible if a file on a file server is deleted accidentally
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
Distributed File System (DFS) Replication
Implement Shadow Copies
Disable Site Link Bridging from the IP properties

13. Minimal FFL needed to deploy an RODC that runs Windows Server 2008 R2...
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
Windows Server 2003
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions

14. From Win7 PC - to view all account logon successes that occur on domain and consolidate to one list...
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
File Server Resource Manager (FSRM) quotas and file screens
Winrm quickconfig
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.

15. To ensure that when certain users log on to any client computers in the branch office - they automatically receive the local administrator rights to the computer - and when they log off - they must lose the administrator rights
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Dfsrdiag
Software Restriction Polices
Network Load Balancing (NLB)

16. Your data recovery strategy for your Server 2008 R2 file server must meet the followign requirements: All data volumes on the server must be backed up daily; backups must have a minimal impact on performance; if a disk fails - the recovery strategy m
Event Viewer
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
Configure block inheritance on the IT OU

17. You need to recommend a solution to ensure that users in the Philadelphia corporate office can access the courseware files in the remote Fernwood office. You should deploy this.
Create a MEDV workspace
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
Site
Domain based DFS namespace and configure a DFS replication group

18. All servers run 2008 R2. All client computers run Windows 7 and Outlook 2010. The sales team needs to use Outlook 2003 to support a custom application. You need a deployment strategy that meets these requirements: provide access to Outlook 2003 and 2
Add the user to the Domain Admins global group
Implement Network Access Protection (NAP)
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Add the new UPN suffix to the forest.

19. Two different solutions are available to help assign IP addresses to remote clients that need to VPN or Dial-in to the branch office.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

20. The solution requires that teachers that have been issued district based laptops - work remotely - and teach only on-line classes - must connect to the school network using split-tunnel VPN. Need to be sure that: minimize traffic over the VPN wheneve

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

21. To determine size of AD database file...
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
Deploy Microsoft System Center Operations Manager (SCOM)
1) Seize operations master roles from sever1 to server2 2) Rebuild Server as a replica domain controller 3) Transfer operations master roles from Server2 to Server1
View properties of %systemroot%ntdsntds.dit

22. When implementing WSUS servers at branch offices or remote campuses you can configure the WSUS server a the remote location to be in
Autonomous mode...This allows the local administrator to approve their own updates.
Authorization Manager
Share and Storage Management
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU

23. Deploying a web server farm can be costly. You need to minimize the amount of disk space used.
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Zone transfer settings
AD Domains and Trusts
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.

24. DFL is Windows Server 2003 and client computers run Vista. DCRMS is a server that holds AD RMS. What should be done to configure AD RMS so users - including Waldo - can protect their data?
Windows System Resource Manager (WSRM)
Recommend Group Policy preferences
Create an e-mail account in AD DS for your RMS users.
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.

25. All DCs have been upgraded from Windows Server 2003 to Windows Server 2008 R2. What should be done to ensure the Sysvol share replicates by using DFS Replicaiton (DFS-R)?
Authorization Manager role assignment
Then use on install image file that contains a single install image.
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
Raise the DFL to Windows Server 2008 R2.

26. When using Remote Desktop and Remote Desktop Session hosts - to be able to control both who can gain access - and to what - on the network configure;
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
FILES option within Ntdsutil
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.

27. What should be configured to ensure domain controllers only replicate between doain controllers in adjacent sites?
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
Disable Site Link Bridging from IP Properties

28. All servers use internal storage only. Srv1 is a Server 2008 R2 file server. you need to deploy a client/server application so that it is available if a single server fails. To achieve this while minimizing cost
1) Seize operations master roles from sever1 to server2 2) Rebuild Server as a replica domain controller 3) Transfer operations master roles from Server2 to Server1
Modify zone transfer settings for company.com zone on DCA
Deploy a failover cluster that uses Node and File Share Disk Majority
Then use Windows Deployment Services (WDS)

29. You need to access some resources in another domain that is part of another forest. What type of trust should you create?
Then use on install image file that contains a single install image.
Microsoft Desktop Optimization Pack (MDOP) to your company
Incoming external trust
Use local roles options within "dsmgmt"

30. You need to come up with a solution for managing user accounts that: allows Help Desk department to manage the user objects in all domains and minimize the administrative effort required to manage the frequent changes to the Help Desk department
Dynamically expanding VHD's
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.

31. Your data provisioning solution must meet the following requirements: users must have access to their Documents folder regardless of the client computer that they use; user documents should not be stored on the local client computer; minimize the tim
Active Directory Domains and Trusts
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Offline domain join
Configure folder redirection

32. to prevent VMs from receiving updats from a group policy
Purchase one additional Enterprise License
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.
Ensure your account - or the group is a member of the local Administrators group for that specific server.
Dfsrdiag

33. You need to deploy a new application according to the following requirements: must be available to remote users when they are offline; must access the application from an icon on the Start menu
Include a server that runs Microsoft Office SharePoint Server 2010
Assign the application to computers in the PC OU
Then use on install image file that contains a single install image.
Create ADMX and ADML files. Configure the GPO and link it to the domain.

34. To restore deleted user account from AD Recycle Bin...
Add-ADFineGrainedPasswordPolicySubject cmdlet
Microsoft System Center Data Protection Manager
Registry on users computer needs to be modified
Restore-ADObject cmdlet

35. To be able to manage all the corporate servers from a workstation - you must install the
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
Deploy it by using Group Policy Software Installation method
Implement the Windows Search Service.
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop

36. You have a main office that contains two domain controllers and a branch office that has an RODC. What should be done so that a user named George can install updates on the RODC while preventing George from logging on to any other domain controller?
Use the Local Roles options with dsmgmt.
Share and Storage Management
Domain based DFS namespace and configure a DFS replication group
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files

37. If you want to implement BitLocker and store recovery informaiton in a central location
Microsoft Desktop Optimization Pack (MDOP) to your company
Implement GPO for all client computers
Recommend GPT and basic disks
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.

38. To recover objects deleted from Active Directory you should recommend
Active Directory snapshots and Tombstone reanimation
Domain based Distributed File System (DFS) will reduce network traffic
A relying party trust should be created.
Configure folder redirection

39. To know if a new applicaiton is going to run on your network computers via AppLocker in GPO
New ACCOUNT STORE should be added and configured
Enable Credential Roaming
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
Test-AppLockerPolicy

40. SiteA is an existing AD site. You just created a new site in AD named SiteB. AD replication needs to be configured betwen the two sites so you install a new DC and you careatd a site link between the two sites. What should be done next?
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
DISABLE slow link detection in the GPO
Purchase one additional Enterprise License

41. To protect all computers on the network from unwanted access and to ensure a consistent configuration
Incoming external trust
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
Configure Firewall Group Policies and link them at the Domain level
File Server Resource Manager (FSRM) quotas and file screens

42. Your file server contains 2 volumes; one that contains the operating system and the other volume contains all data files. Your recovery strategy must meet these requirements: allows the operating system to be restored; allows the data files to be res
Add the Windows Server Backup feature and Windows System Image recovery.
Implement Windows System Resource Manager (WSRM) and configure user policies
Configure authorization rules for Web developers on each web server
Enable Credential Roaming

43. You have a single AD domain named ad.company.com. The FFL is windows 2000 and the DFL is Windows 2000 Native. The UPN suffix company.com needs to be available for user accounts. What should be done first?
Implement Distributed File System Replication (DFSR) on both servers
Add the new UPN suffix to the forest.
Set-ADServiceAccount cmdlet
Deploy a GPO for the Sales OU

44. You have been tasked with backing up all the GPOs in the domain. The IT manager also wants you to minimize the size of the backup. You decide to use...
Execute the Set-ADServiceAccount cmdlet
Configure an audit policy by editing the default domain policy and configure Event Forwarding
The Group Policy Management console
Assign the application to computers in the PC OU

45. George needs to administer a read-only domain controller named Server1 - but to do this with minimal permissions assigned to him. What tool should be used for this daunting task?
Dsmgmt
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
Microsoft System Center Data Protection Manager
Add the new UPN Suffix to the forest

46. Your company IP scheme uses both IPv4 and IPv6. You have a main and branch office. In the branch office you are using PC1. PC1 is now only using IPv6. You noticed that PC1 no longer authenticates off the DC that is in the branch office. What should b
DISABLE slow link detection in the GPO
Implement a Remote Desktop Connection Broker (RD Connection Broker)
An Active Directory subnet object needs to be created.
Event Viewer

47. You don't want users to be able to install removable devices on client computers. However - domain admins and desktop support technicians must be allowed to install removable devices on client computers
Configure an audit policy by editing the default domain policy and configure Event Forwarding
Implement GPO for all client computers
Enable - ADoptionalFeature cmdlet
View properties of %systemroot%ntdsntds.dit

48. Within your company you have a server that will be running 8 VMs but only 6 concurrently. Your company has already purchased an Enterprise license for the server.
DSMOD - ADUC
Purchase one additional Enterprise License
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.

49. To minimize the amount of storage used for virtual machines in a Virtual desktop pool the VHD's should be

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

50. You need a strategy for backing up your 2008 R2 file servers according to these: allows for individual file restore; allows for complete server recovery; supports scheduled backups; provides decentralized control over backups and recovery; minimizes
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Configure event log subscriptions
Domain based Distributed File System (DFS) will reduce network traffic
Back up to an external USB drive by using Windows Server Backup