Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. You have several Windows 2000 Servers that have a custom application installed. However - the apps are incompatible with each other and with Windows Server 2008 R2 - but they consume less than 10% of system resources. There is a policy that states al
Create and deploy a logon script that runs Auditpol.
Use local roles options within "dsmgmt"
Implement Network Access Protection (NAP)
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.

2. If you want to implement BitLocker and store recovery informaiton in a central location
Implement Network Access Protection (NAP) that uses 802.1x enforcement
Dfsrdiag
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.

3. hr.domain.com domain has an OU named Sales...You need to give UserA administrative rights so that he can manage Group Policies for the Sales OU while meeting the following requirments: UserA must be able to create and configure Group Polices in hr.do
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
Dynamically expanding VHD's
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
Service user account for AD LDS

4. The servers in each office run Server 2008 R2 Enterprise Edition. You need to plan a failover cluster solution to service users in both offices that meet these: maintain the availability of services if a single server fails; minimize the number of se
Create and deploy a logon script that runs Auditpol.
Deploy a failover cluster that contains one node in each office.
Ldp
Deploy a failover cluster that uses Node and File Share Disk Majority

5. An external partner plan requires the following: prevent sensitive documents from being forwarded to untrusted recipients or from being printed; allow users in the external partner organization to access the protected content to which they have been
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Event Viewer
Role Separation
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.

6. You need to recommend a solution for users in the branch office to access files in the main office. To minimize the amount of time it takes for users in the Branch office to access files stored on servers in the main office - and minimize the number
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Site
Autonomous mode...This allows the local administrator to approve their own updates.
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)

7. To replicate SYSVOL using Distributed File System Replication (DFSR)...
DFL needs to be Windows Server 2008
Windows Deployment Services (WDS)
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
Install From Media IFM

8. For complete fault tolerance the backend SQL Server should be protected as well - by placing it in a MSCS Failover Cluster) - To allow computers that are members of the domain to receive updates from a local WSUS you can easily create a group policy
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
Modify the local policy to point to the Internal WSUS server
PDC emulator with w32tm.exe
Administrators is the minimum group membership required to complete this procedure.

9. To speed up the deployment of the RODC in the new branch offices you should take advantage of this.
Domain based Distributed File System (DFS) will reduce network traffic
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
Install From Media IFM
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.

10. You need a tool that will help you manage LUN's for both iSCSI and Fibre Channel to support the provision of Virtual disks. You should recommend this.
Enable Credential Roaming
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Storage manager for SANs
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.

11. If you need a VPN soluction that stores VPN passwords as encrypted text and supports automatic enrollment of certificates
Either implement a DHCP server at the branch office - or configure a "Static Pool" on the RRAS server itself. If deploying a DHCP server at the branch office isn't an option - then once the Remote Access Server role has been deployed you can configur
Implement Windows BitLocker Drive Encryption (BitLocker)
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
802.1.x NAP

12. DNS zone is stored in custom applicaiton directory partition. What tool is used to ensure replicaiton to new installed DC?
A relying party trust should be created.
Administrative Role Separation
dnscmd
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.

13. You have been tasked with backing up all the GPOs in the domain. The IT manager also wants you to minimize the size of the backup. You decide to use...
Authorization Manager
Windows BitLocker Drive Encryption (Bit Locker)
Subnet object needs to be created
The Group Policy Management console

14. The strongest form of NAP is
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
Create a Network Load Balancing cluster.

15. What shold be done to configure AD RMS so users can protect their data?
dnscmd
Create an e-mail account in AD DS for your RMS users
Increase the tombstone lifetime for the forest.
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU

16. DFL is...
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Win2000 Native
Use local roles options within "dsmgmt"
Configure caching on the shared folder (offline files)

17. An AD LDS instance needs to be replicated from one server to another...
Use CISCO IP Helper command to configure.
Deploy a failover cluster that uses Node and File Share Disk Majority
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Service user account for AD LDS

18. Tools to view contents of an OU in an AD snapshot...
Printer driver isolation
dsa.msc - dsamain.exe - ntdsutil.exe
Winrm quickconfig
Store all sensitive files in EFS encrypted folders and require home users to access the files by using SSTP

19. Client computers run Windows 7 and all applications on the computers are configured to save documetns to the local Documents folder. You need a backup strategy that meets these: Back up the Documents folder for all users; minimize admin effort. To ac
Modify the schema of LDSInst1
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
Implement folder redirection by using GPO. Then backup the folder redirection target.
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)

20. You need a solution that replaces servers that host 2 applications. This solution must use Windows Server 2008 R2 and minimize cost.
Backup operator's domain local group
Implement Distributed File System Replication (DFSR) on both servers
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
Disable Site Link Bridging from IP Properties

21. When implementing WSUS servers at branch offices or remote campuses you can configure the WSUS server a the remote location to be in
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Create a MEDV workspace
Autonomous mode...This allows the local administrator to approve their own updates.
Install Hyper-V role and convert physical machines into virtual machines

22. IF you need to automate deployment of 32 and 64 bit 2008 R2 servers
Then use Windows Deployment Services (WDS) on DHCP1.
From Server1 - run the Create Basic Task Wizard
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.

23. Audit account management policy settings and Audit directory services access settings are enabled for the entire domain. What should be done to ensure that changes made to AD objects can be logged? The logged changes must include the old and new valu
Prestage the computer account in AD
Import-csv password.csv | Foreach {New-ADUser -Name $_.Name -Enabled $true_AccountPassword (ConvertTo_SecureString $_.Password -AsPlainText -force)}
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Run auditpol and then configure the Security settings of the Domain Controllers OU.

24. All servers run 2008 R2 and all client computers run XP SP1. You need to deploy Distributed File System (DFS) to meet these: minimize cost; provide redundancy in the event a single server fails; ensure client computers reconnect to their preferred se
Modify the local policy to point to the Internal WSUS server
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
Win2000 Native
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.

25. Need a solution that will ensure that the initial settings when creating new policies for both forests will become more consistent. You should...

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

26. If a user needs to access a new cert template when logging on to any client computer in domain and you need to automatically install on each client computer a cert
Add George to the Domain Admins group.
Domain based DFS namespace and configure a DFS replication group
Then configure auto enrollment of certificates and Credential Roaming.
Changed manually

27. To add a new UPN for all user accounts...
Group Policy Preferences
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
AD Domains and Trusts
Dfsrdiag

28. DCDNS1 is a DC and DNS server that host and ADI zone for company.com and is located in the main office. DNS2 is a DNS server that hosts a secondary zone for company.com and is located in the branch office. FSrv1 is a new file server that is located i
The Group Policy Management console
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Refresh the zone on DNS2
Create a MEDV workspace

29. SrvA has the AD LDS role and an instance named LDSInst1. You connect to this instance by using the ADSI Edit utility. When you execute the Create Object wizard there is no User object class. What should be done so you can create user objects in LDSIn
Set-ADServiceAccount cmdlet
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
Modify the schema of LDSInst1
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions

30. If users complain that it is hard to find the shared folders on the network implement
Then configure GlobalNames zones on each domain controller.
Passive file screens
An Active Directory subnet object needs to be created.
Additional DFS Targets

31. You plan to deploy 12 file servers. All computers and servers connect to Ethernet switches. Your data storage solution must meet these: maximizes performance and fault tolerance; allocates storage to the servers as needed; utilizes the existing netwo
File Server Resource Manager (FSRM) quotas and file screens
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
Event Viewer

32. Deploying a web server farm can be costly. You need to minimize the amount of disk space used.
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
Implement folder redirection by using GPO. Then backup the folder redirection target.
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
AD Rights Management Services

33. To create AD Domain Services snapshot
Windows Deployment Services (WDS)
Ntdsutil
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.

34. If you need to implement a Cert Services solution that automates distribution of certificates - ensures security and gives external users acess to resources that use cert-based authentication
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
Software Restriction Polices
Configure offline files and enable manual caching

35. You don't want users to be able to install removable devices on client computers. However - domain admins and desktop support technicians must be allowed to install removable devices on client computers
Enable - ADoptionalFeature cmdlet
Implement GPO for all client computers
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th

36. 4 steps to perform offline Defragmentation of AD database...
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
dnscmd tool
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service

37. In AD Sites and Service - which level is Universal Group Membership caching activated / deactivated?
Folder redirection. Folder redirection is also useful when using roamin profiles.
Modify the schema of LDSInst1
Site
DSMOD

38. Your office has no Internet connection. Your data provisioning solution must meet these requirements: users that are not connected to the network must be able to access files and folders on the network; unauthorized users must not have access to the
Configure caching on the shared folder and configure offline files to use encryption
Microsoft Application Virtualization (AppV)
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
Add the Windows Server Backup feature and Windows System Image recovery.

39. To join a server/PC outside of the domain to the network...
Folder redirection. Folder redirection is also useful when using roamin profiles.
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
djoin /requesteodj from internal server - djoin /provision from outside server/PC
Configure folder redirection

40. To identify users who bypass the new corporate security policy -
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
Active Directory Users and Computers
Network Load Balancing (NLB)
Configure Audit Special Logon and define Special Groups

41. RDSRv1 is a Server 2008 R2 Remote Desktop Session Host. RDSrv1 has 8 custome apps installed. Each is configured as a RDP RemoteApp. You notice that when a user runs one of the apps - other users report that the server seems slow and that some apps be
ntdsutil
Implement Windows System Resource Manager (WSRM)
Place the operating system files on one of the RAID 1 array - place the SQL transaction logs on the other RAID 1 array - and place the SQL database files on the RAID 5 array
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.

42. You need a solution that allows your users to collaborate with each other and that must meet these: enables - full text indexing of all user content - remote access to files by using a Web browser - secure access to files by assigning permisions; sup
Create a new Password Settings Object (PSO) for the IT users.
Include a server that runs Microsoft Office SharePoint Server 2010
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication

43. A DNS structure should be deployed acording to the following requirements: ensure resources in the root and child domains are accessible by FQDN; provide name resolution services in the event that a single server fails for a prolonged period of time;
WDS
Add George to the Domain Admins group.
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.

44. You need to design your WSUS infrastructure so that updates are highly available. To do so
Authorization Manager
IIS Manager user account
Add-ADFineGrainedPasswordPolicySubject cmdlet
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.

45. Files servers need to stay connected to the SAN if a NIC fails. You should recommend
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
IIS Chared Configuration
Multipath I/O feature
Windows Deployment Services (WDS)

46. FFL is...
Disable Site Link Bridging from the IP properties
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Configure separate application pools for each application
Win2000

47. When deploying group polices we want to configure them so that they are applied as quickly as possible. One way this can be done is if the policy only consists of computer settings. If this is the case we can do this.
Multipath I/O feature
Disable Site Link Bridging from the IP properties
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent
Run auditpol and then configure the Security settings of the Domain Controllers OU.

48. You need to deploy a sales application that only the sales users must have access to
Configure Audit Special Logon and define Special Groups
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Deploy a GPO for the Sales OU
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.

49. You need to allow remote access to the servers on your network while meeting the following requirements: all remote connections to the servers must be encrypted; all remote authentication attempts to the servers must be encrypted; only inbound connec
A relying party trust should be created.
Service user account for AD LDS
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
Install Microsoft Secure Socket Tunneling Protocol (SSTP)

50. To allow for an application on a Remote Desktop Server to be available through document invocation - you must
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
Implement Windows System Resource Manager (WSRM) and configure user policies
Install and share a printer on a server and then enable printer pooling.
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Major Subjects
Tests & Exams AP CLEP DSST GRE SAT GMAT	Certifications CISSP go to https://www.isc2.org/ PMP ITIL RHCE MCTS More...	IT Skills Android Programming Data Modeling Objective C Programming Basic Python Programming Adobe Illustrator More...	Business Skills Advertising Techniques Business Accounting Basics Business Strategy Human Resource Management Marketing Basics More...
Soft Skills Body Language People Skills Public Speaking Persuasion Job Hunting And Resumes More...	Vocabulary GRE Vocab SAT Vocab TOEFL Essential Vocab Basic English Words For All Global Words You Should Know Business English More...	Languages AP German Vocab AP Latin Vocab SAT Subject Test: French Italian Survival Norwegian Survival More...	Engineering Audio Engineering Computer Science Engineering Aerospace Engineering Chemical Engineering Structural Engineering More...
Health Sciences Basic Nursing Skills Health Science Language Fundamentals Veterinary Technology Medical Language Cardiology Clinical Surgery More...	English Grammar Fundamentals Literary And Rhetorical Vocab Elements Of Style Vocab Introduction To English Major Complete Advanced Sentences Literature Homonyms More...	Math Algebra Formulas Basic Arithmetic: Measurements Metric Conversions Geometric Properties Important Math Facts Number Sense Vocab Business Math More...	Other Major Subjects Science Economics History Law Performing-arts Cooking Logic & Reasoning Trivia

Test your basic knowledge |

MSITP

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests

Major Subjects

Tests & Exams

Certifications

IT Skills

Business Skills

Soft Skills

Vocabulary

Languages

Engineering

Health Sciences

English

Math

Other Major Subjects

Browse all subjects

Browse all tests

Most popular tests