SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. What should be done to identify which LDAP computers are using the largest amount of available CPU resources on a DC?
Data Recovery Agent
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
Network Load Balancing (NLB) cluster
Implement GPO for all client computers
2. You need to ensure that your Windows 2008 R2 file servers meet the following: supports volumes larger than 2 terabytes - if a single disk fails - maintain data redundancy - if a single server fails - maintain access to all data - maximize disk throug
Implement one LUN for the quorum and another LUN for the data
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
Configure block inheritance on the IT OU
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
3. You need to design a data storage solution that meets the following: users must be able to choose the documents that will be available when they are away from the network; minimize the number of documents that are stored on users' portable computers;
WSUS server in the branch office in replica mode.
Configure offline files and enable manual caching
Active Directory Users and Computers utility
dnscmd
4. AD CS is configured on Server1 as a standalone CA. What two actions should you do to audit changes to the CA configuration settings and the CA security settings?
Group Policy Preferences
Microsoft Desktop Optimization Pack (MDOP)
Deploy Microsoft System Center Operations Manager (SCOM)
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.
5. You need to recommend a server configuration to support a Web-based application that must meet these requirements: the app must be available to all users if a single server fails; support the installation of .NET applications; Minimize software costs
Microsoft Desktop Optimization Pack (MDOP) to your company
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
Backup operator's domain local group
6. What should be modified so you can use the nslookup utility to list all SRV records for your domain?
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
Zone transfer settings
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
7. When configuring delegation of administration for Domain Controllers at a remote location you must Add the users or groups as members of the Domain Admins Group. However - be careful to allow just a certain user or group of users to manage the Domain
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
Group Policy Preferences
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
Authorization Manager role assignment
8. So a user can install updates on an RODC while preventing them from logging on to any other domain controller...
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Use local roles options within "dsmgmt"
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
DSMOD - ADUC
9. RDSrv1 is a Server 2008 R2 server with Remote Desktop Services installed. You are planning to establish a Terminal Server Farm that must meet these requirements: New users automatically connect to the terminal server that has the fewest active sessio
Implement a Remote Desktop Connection Broker (RD Connection Broker)
Improve the performance of File Servers
From Server1 - run the Create Basic Task Wizard
Ldp
10. A script fails to create user accounts. Which cmdlet should be added to the script to create user accounts?
Enable Windows Remote Management (WinRM) on the servers.
Recommend Offline Files
Windows System Resource Manager (WSRM)
Import-Module
11. To replicate SYSVOL using Distributed File System Replication (DFSR)...
DFL needs to be Windows Server 2008
Active Directory Right Management Services (AD RMS)
Network Load Balancing (NLB) cluster
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
12. All servers use internal storage only. Srv1 is a Server 2008 R2 file server. you need to deploy a client/server application so that it is available if a single server fails. To achieve this while minimizing cost
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
Deploy a failover cluster that uses Node and File Share Disk Majority
Windows BitLocker Drive Encryption (Bit Locker)
Ntdsutil
13. All DCs have been upgraded from Windows Server 2003 to Windows Server 2008 R2. What should be done to ensure the Sysvol share replicates by using DFS Replicaiton (DFS-R)?
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Raise the DFL to Windows Server 2008 R2.
14. To allow a specifc user or group to manage the address information for the user accounts...
Recommend Active Directory delegation
DSMOD
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
Install Windows Server Backup and modify the Windows firewall settings
15. to make shares at a remote location available to users you should implement this.
net stop ntds
Domain based Distributed File System (DFS) namespace and DFS Replication.
Your machine and remote desktops
Utilize IFM (Install From Media)
16. hr.domain.com domain has an OU named Sales...You need to give UserA administrative rights so that he can manage Group Policies for the Sales OU while meeting the following requirments: UserA must be able to create and configure Group Polices in hr.do
Implement Distributed File System Replication (DFSR) on both servers
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
17. When recommending a monitoring solution for an application so that it's events can be stored in a central
CAPublishGP group should have the Manage CA permission.
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.
Active Directory Users and Computers
Event Subscriptions
18. Internet access is provided through the main office to the satellite offices. You need to design a patch management for the satellite offices that meet the following requirements: WSUS updates are approved from a central location; internet traffic is
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Deploy a GPO for the Sales OU
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
19. You need to recommend a Windows update strategy for the new branch office. The branch office has a 512 Kbps connection the corporate office and a 2 MB connection to the Internet. You should recommend this.
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
20. AD RMS is being used on the network. George is only a member of the AD RMS Enterprise Administrators group. Mitt needs to be able to change the service connection point (SCP) for the AD RMS installation. What should be done so George can accomplish t
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Create a Network Load Balancing cluster.
Event Log Subscriptions
Add George to the Domain Admins group.
21. IF you need to automate deployment of 32 and 64 bit 2008 R2 servers
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Then use Windows Deployment Services (WDS) on DHCP1.
Enable - ADoptionalFeature cmdlet
Upgrading DFS to Windows Server 2008 R2
22. Certain apps may require that the end user have the ability to make changes to the application - however some applications may allow these changes to be made in the registry. To give you as the administrator the ability to make changes as necessary -
Network Load Balancing (NLB) cluster
Group Policy Preferences
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
Then use on install image file that contains a single install image.
23. DFL is...
Implement Shadow Copies
Win2000 Native
Properties of PSO need modified
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
24. 3 servers are configured as DNS servers and are ADI for the company.com zone. DNS only allows for secure updates - but you need to enable dynamic DNS updates on DCC.company.com...What do you do?
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
Configure folder redirection
Implement a domain-based DFS namespace that uses replication
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
25. To compact AD database...
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
FILES option within Ntdsutil
Incoming external trust
26. Certain groups of users must be able to approve certificate requrests and revoke certificates but not be able to modify the properties of the CA. You should recommend
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Role Separation
WSUS server in the branch office in replica mode.
Jill came down with 2.50.
27. You have 159 server 2008 R2 servers that must meet the following: notification by e-mail to the administrator if error occurs on any server with minimum effort...
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
Refresh the zone on DNS2
28. To restore previous version of script without taking up too much of time...
Implement a domain-based DFS namespace that uses replication
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
Attach VHD file created by Windows server backup
Refresh the zone on DNS2
29. If your company has the need to create administrative templates (.admx) files for Active Directory runnin on server 2008 R2 you should recommend...
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
DSMOD - ADUC
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
30. To make deploying the custom Word dictionary easy
Enable - ADoptionalFeature cmdlet
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
Active Directory Users and Computers
Recommend Group Policy preferences
31. You need to generate a report on the status of software updates for your Windows 7 client computers with the following requirements: display all of the operating system updates and Microsoft application updates that installed successfully and failed;
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
32. You have administrative templates that another company wants to use on their domain. How would you configure the other company's domain to use these administrative templates?
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
33. When deploying an application using the Group Policy distribution method assign the...
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
The Group Policy Management console
Use CISCO IP Helper command to configure.
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
34. You have 9 2008 R2 servers that host Web apps. You need a remote mgmt strategy to manage the Web servers according to these requirements: Web developers need to be able to configure features on the Web sites; Web developers should not have full admin
Configure authorization rules for Web developers on each web server
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
AD RMS
35. To deploy templates across the organization
PowerShell 2.0
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Microsoft System Center Data Protection Manager
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
36. Domain.com's network has a single forest and single domain. Users currently share files using the corporate FTP server and DropBox. You need a better solution for managing document and allowing access. The solution must meet the following: allow for
Implement a domain-based DFS namespace that uses replication
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
Microsoft SharePoint Foundation 2010
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
37. RDSRv1 is a Server 2008 R2 Remote Desktop Session Host. RDSrv1 has 8 custome apps installed. Each is configured as a RDP RemoteApp. You notice that when a user runs one of the apps - other users report that the server seems slow and that some apps be
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.
Implement Windows System Resource Manager (WSRM)
Authorization Manager role assignment
AD Rights Management Services
38. 4 steps to perform offline Defragmentation of AD database...
fsconfig on FSSrv2
An Active Directory subnet object needs to be created.
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
Create an e-mail account in AD DS for your RMS users
39. to protect file servers and hard disks that may be at risk of being accessed or stolen
Implement Windows BitLocker Drive Encryption (BitLocker)
Use local roles options within "dsmgmt"
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
MEDV to deploy virtual desktops
40. Assign the application to the user if you want the icon to appear on the start menu or desktop - but to allow the user to install it. Keep in mind if you assign the application to the user ....
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
Authorization Manager role assignment
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
41. For the users that work remotely that need access to files from the corporate office you should...
dsa.msc - dsamain.exe - ntdsutil.exe
Recommend Offline Files
Configure block inheritance on the IT OU
Certificate Templates
42. You need to design patch management for satellite offices that meet the following requirements: WSUS updates are approved independently for each satellite office; Internet traffic is minimized. To accomplish
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Microsoft Desktop Optimization Pack (MDOP)
43. Server1 collects all events that occur on your domain controllers. Using the minimal effort - from Event Viewer - what should be done to ensure you are notified when a specific event has occurred on any of your domain controllers?
Import-Module
From Server1 - run the Create Basic Task Wizard
Modify properties of RODC server computer account.
The Group Policy Management console
44. New Password Policy needs to be created for OU different from domain password policy
IIS Manager user account
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
Implement a GPO for each domain
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
45. You have a root domain and four child domains. Policy requirements state that all local guest accounts must be renamed and disabled - and all local administrator accounts must be renamed
IIS Chared Configuration
Group Policy Preferences
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Implement a GPO for each domain
46. You have three domain controllers that perform a full back up every day. You need a recovery strategy for AD objects that meets these requirements: allows objects in a backup to be compared to objects in the live AD database; minimizes admin effort.
NOT be able to store that data on an iSCSI SAN
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Implement File Server Resource Manager (FSRM) quotas on the desired servers
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
47. Domain.com recently deployed several Windows Server 2008 R2 file servers. You recently have had a problem with the file server in the sales department. On a regular basis the hard drive on the file server reaches capcity. You have to routinely perfor
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
Your machine and remote desktops
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
48. Your data recovery strategy for your Server 2008 R2 file server must meet the followign requirements: All data volumes on the server must be backed up daily; backups must have a minimal impact on performance; if a disk fails - the recovery strategy m
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
Disable Site Link Bridging from the IP properties
49. You have two identical print devices. You must plan a print services infrastructure where: the print services must be available - even if one print device fails and have the ability to manage the print queue from a central location
IIS Manager user account
Install and share a printer on a server and then enable printer pooling.
Configure the zone as an Activde Directory-Integrated zone.
Then configure GlobalNames zones on each domain controller.
50. A specific application requires registry modifications to be in place before installing; you should use
Configure authorization rules for Web developers on each web server
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Group Policy Preferences
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
