SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. If you need secure method to verify validity of individual certificates and minimize network bandwidth
Basic Authentication and SSL
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.
Domain based Distributed File System (DFS) namespace and DFS Replication.
Subnet object needs to be created
2. To allow a specifc user or group to manage the address information for the user accounts...
dnscmd tool
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
Recommend Active Directory delegation
3. To ensure that the branch office with its own high speed internet connection receives the exact same updates as the corporate office you should recommend this.
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
4. Web server administrator's accountsd are in an OU called WebAdminOU and are member of a global group called WebAdmins. To allow the web server administrators to perform administrative tasks on the web servers - but not allow them to perform administr
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.
Converting physical servers to VMs - implementing SANn and SAN management components such as backup and site resiliency will create additional administrative overhead.
Improve the performance of File Servers
Deploy a GPO to the WebSrvOU
5. To make a 64-bit application available to several 32-bit XP SP3 computers in the branch office you could use either a remote desktop session host or a remote desktop virtualization host. However - if the application requires you to be a local adminis
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
6. A DNS structure should be deployed acording to the following requirements: ensure resources in the root and child domains are accessible by FQDN; provide name resolution services in the event that a single server fails for a prolonged period of time;
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Enable - ADoptionalFeature cmdlet
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
7. You need to recommend a server configuration to support a Web-based application that must meet these requirements: the app must be available to all users if a single server fails; support the installation of .NET applications; Minimize software costs
Modify the GPO to include folder redirection
Creating a data collector set that kick off a scritp that either move or delete files.
Add the user to the Domain Admins global group
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
8. In AD Sites and Service - which level is Universal Group Membership caching activated / deactivated?
Then use Windows Deployment Services (WDS) on DHCP1.
Windows Deployment Services (WDS)
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Site
9. Currently you already have in place AD - DNS and DHCP. You need an automated deployment solution for the new servers that will boot using native VHD's. You should recommend
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
Windows Deployment Services (WDS)
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Active Directory Domains and Trusts
10. To recover objects deleted from Active Directory you should recommend
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
Active Directory snapshots and Tombstone reanimation
Deploy a GPO for the Sales OU
Increase the tombstone lifetime for the forest.
11. To restore deleted user account from AD Recycle Bin...
Microsoft Desktop Optimization Pack (MDOP) to your company
Restore-ADObject cmdlet
Then configure GlobalNames zones on each domain controller.
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
12. To control access to resources using WSRM and to help prevent memory leaks from monopolizing your web server
Configure separate application pools for each application
Test-AppLockerPolicy
Encrypting File System (EFS). This can be enabled locally or through a GPO.
Attach VHD file created by Windows server backup
13. DNS zone is stored in custom applicaiton directory partition. What tool is used to ensure replicaiton to new installed DC?
Recommend GPT and basic disks
Modify zone transfer settings for company.com zone on DCA
Add the new UPN Suffix to the forest
dnscmd
14. What should be done so the application does not fail after 30 days while still keeping the password policy in mind?
Execute the Set-ADServiceAccount cmdlet
CAPublishGP group should have the Manage CA permission.
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Then use Windows Deployment Services (WDS)
15. For complete fault tolerance the backend SQL Server should be protected as well - by placing it in a MSCS Failover Cluster) - To allow computers that are members of the domain to receive updates from a local WSUS you can easily create a group policy
Modify the local policy to point to the Internal WSUS server
Deploy Microsoft System Center Operations Manager (SCOM)
Back up to an external USB drive by using Windows Server Backup
Enable Windows Remote Management (WinRM) on the servers.
16. To ensure that a file on a file server do not leave the organization you must implement this.
AD RMS
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
Create TWO new starter GPO's one with user administrative templates configure - and one with computer admin template configured - and export them to .cab files - and make the .cab files available in both forests...Then when creating new group policie
Group Policy Preferences
17. Internet access is provided through the main office to the satellite offices. You need to design a patch management for the satellite offices that meet the following requirements: WSUS updates are approved from a central location; internet traffic is
Then configure GlobalNames zones on each domain controller.
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
18. WSUS infrastructure must meet the following: distributed from a central location - all computers must continue to receive updates in the event that a server fails
Modify properties of RODC server computer account.
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
Active Directory Domains and Trusts
Add-ADFineGrainedPasswordPolicySubject cmdlet
19. What should be done so application does not fail after 30 days while still keeping password policy in mind?
File Server Resource Manager (FSRM) quotas and file screens
Set-ADServiceAccount cmdlet
From Server A - run Create Basic Task Wizard
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.
20. 3 servers are configured as DNS servers and are ADI for the company.com zone. DNS only allows for secure updates - but you need to enable dynamic DNS updates on DCC.company.com...What do you do?
Configure Firewall Group Policies and link them at the Domain level
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
Increase the tombstone lifetime for the forest.
21. If you need to encrypt all data on all disks
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Then use Windows BitLocker Drive Encryption
Domain based Distributed File System (DFS) will reduce network traffic
Windows Deployment Services (WDS)
22. You need to manage GPO to meet the following: allow administrators to view and edit the GPO in their own language; minimize number of GPOs deployed
Share and Storage Management
Domain based DFS namespace and configure a DFS replication group
Prestage the computer account in AD
Create ADMX and ADML files. Configure the GPO and link it to the domain.
23. There are now 4 primary types of VPN solutions - PPTP - L2TP - SSTP and Direct Access. If you need to implement a VPN on Vista SP1 or higher machines you can implement SSTP.
Raise the DFL to Windows Server 2008 R2.
Improve the performance of File Servers
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
Ldp
24. If you want to allow single-label name resolution
Then configure GlobalNames zones on each domain controller.
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
PDC emulator with w32tm.exe
25. If you want to allow the administrator in each office to manage DHCP scope for their own office - and prevent the administror of one office from managing DHCP scopes on the DHCP server in another office with mimimal admin effort
Then use Windows Deployment Services (WDS)
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
Include a server that runs Microsoft Office SharePoint Server 2010
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
26. You have 2 Server Core servers that are part of a Network Load Balance that host a web site. To be able to allow administrators - on their Windows 7 computers - remotely manage the NLB with automation
Event Log Subscriptions
Then configure auto enrollment of certificates and Credential Roaming.
Enable Windows Remote Management (WinRM) on the servers.
Incoming external trust
27. To update ADRMS password...
Dfsrdiag
Implement Windows System Resource Manager (WSRM) and configure user policies
AD Rights Management Services
Import-csv password.csv | Foreach {New-ADUser -Name $_.Name -Enabled $true_AccountPassword (ConvertTo_SecureString $_.Password -AsPlainText -force)}
28. UPN Suffix xxxx.com needs to be available for user accounts...
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
Microsoft Application Virtualization (AppV)
Add the new UPN Suffix to the forest
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
29. You need to deploy a distributed database application that meets the following: allocates storage to servers as required; isolates storage traffic from the exisiting network; ensures that data is available if a single disk fails; ensures that data is
Multipath I/O feature
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
Domain based Distributed File System (DFS) namespace and DFS Replication.
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
30. A specific application requires registry modifications to be in place before installing; you should use
Microsoft Desktop Optimization Pack (MDOP)
Group Policy Preferences
Network Load Balancing (NLB)
Create an e-mail account in AD DS for your RMS users
31. IF you need to automate deployment of 32 and 64 bit 2008 R2 servers
Active Directory Users and Computers utility
FFL Windows Server 2008 R2
Folder redirection. Folder redirection is also useful when using roamin profiles.
Then use Windows Deployment Services (WDS) on DHCP1.
32. All servers run 2008 R2 and all client computers run Windows 7. Provide a necessary access solution that meets: only computers that have the most up-to-date service packs can be granted general network access; all noncompliant computers must be redir
Implement Network Access Protection (NAP)
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
Create and deploy a logon script that runs Auditpol.
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
33. To compact AD database...
Active Directory snapshots and Tombstone reanimation
djoin /requesteodj from internal server - djoin /provision from outside server/PC
FILES option within Ntdsutil
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
34. You need to modify DNS infrastructure to support dynamic updates to ALL DNS servers; ensure DNS service available even if single server fails; encrypt the synchronization data sent between DNS servers.
Remote Desktop Virtualization host - you wouldn't want all the users on the same Remote Desktop Session host to be local administrators.
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
Configure the zone as an Activde Directory-Integrated zone.
MEDV to deploy virtual desktops
35. 4 steps to perform offline Defragmentation of AD database...
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
Microsoft SharePoint Foundation 2010
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
36. To ensure that recovery is possible if a file on a file server is deleted accidentally
Configure offline files and enable manual caching
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
Implement Shadow Copies
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
37. When one needs to audit files - folders - printers and the registry enable
A Distributed File System (DFS) namespace
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Add-ADFineGrainedPasswordPolicySubject cmdlet
38. In order for admins at a branch office to be able to change their passwords and logon if a single DC fails even if the WAN Link to the corporate office fails you shoud
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
39. Need a solution that will ensure that the initial settings when creating new policies for both forests will become more consistent. You should...
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
40. You have a main office that contains two domain controllers and a branch office that has an RODC. What should be done so that a user named George can install updates on the RODC while preventing George from logging on to any other domain controller?
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
A relying party trust should be created.
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
Use the Local Roles options with dsmgmt.
41. Domain.com's network has a single forest and single domain. Users currently share files using the corporate FTP server and DropBox. You need a better solution for managing document and allowing access. The solution must meet the following: allow for
Create an Active Directory-Integrated zone.
Configure authorization rules for Web developers on each web server
Microsoft SharePoint Foundation 2010
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.
42. Recently it was decided to increase the performance of the company's Web Servers by deploying a NLB Web server farm. You need to ensure that the content is easily replicated across all the servers in the farm. You should implement this.
An Active Directory subnet object needs to be created.
Distributed File System (DFS) Replication
Add George to the Domain Admins group.
Use CISCO IP Helper command to configure.
43. Your forest containts only Windows Server 2008 domain controllers. What should be done to prepare the AD domain to install Windows Server 2008 R2 DCs?
Then configure GlobalNames zones on each domain controller.
Run adprep /forestprep and adprep /domainprep
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
A Distributed File System (DFS) namespace
44. Can be used to install the Windows RE on existing servers
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
WDS
45. To replicate SYSVOL using Distributed File System Replication (DFSR)...
DFL needs to be Windows Server 2008
Implement Network Access Protection (NAP)
Run net stop ntds
net stop ntds
46. To allow all users in the forest to be able to resolve the names in the Forest Root Partition
Dsmgmt
Purchase one additional Enterprise License
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition
Configure the zone as an Activde Directory-Integrated zone.
47. To help restrict access to Windows 7 computer in the event that it gets stolen implement
Active Directory Right Management Services (AD RMS)
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Windows BitLocker Drive Encryption (Bit Locker)
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
48. All servers run 2008 R2. All client computers run Windows 7 and Outlook 2010. The sales team needs to use Outlook 2003 to support a custom application. You need a deployment strategy that meets these requirements: provide access to Outlook 2003 and 2
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Active Directory Right Management Services (AD RMS)
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
49. Striped volumes
Then configure auto enrollment of certificates and Credential Roaming.
Improve the performance of File Servers
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
50. Certain apps may require that the end user have the ability to make changes to the application - however some applications may allow these changes to be made in the registry. To give you as the administrator the ability to make changes as necessary -
Repadmin
WSUS server in the branch office in replica mode.
Group Policy Preferences
Incoming external trust
Sorry!:) No result found.
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests