SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. You need a solution for your Web servers that meet these requirements: ensures that the Web site is accessible even if a single server fails; supports the addition of more Web servers without interrupting client connections.
Then use Windows Deployment Services (WDS)
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
Create a Network Load Balancing cluster.
2. To limit each user's storage space and to prevent users from storing audio and video files on the servers you should recommend
File Server Resource Manager (FSRM) quotas and file screens
From Server1 - run the Create Basic Task Wizard
Utilize IFM (Install From Media)
From Server A - run Create Basic Task Wizard
3. To allow administrators to create and store .ADMX templates in a way that allows them to have access to the template no matter what administrative computer they logon to you must
Share and Storage Management
Deploy Microsoft System Center Operations Manager (SCOM)
Create a Central Store
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
4. when deploying Virtual Machines in a Remote Desktop pool you can minimize the amount of disk space used by the VM and reduced the admin effort by deploying this.
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
File Server Resource Manager (FSRM) quotas and file screens
Add the new UPN Suffix to the forest
5. You have three domain controllers that perform a full back up every day. You need a recovery strategy for AD objects that meets these requirements: allows objects in a backup to be compared to objects in the live AD database; minimizes admin effort.
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
dnscmd tool
Microsoft Application Virtualization (AppV)
Create a Central Store
6. To update ADRMS password...
djoin /requesteodj from internal server - djoin /provision from outside server/PC
AD Rights Management Services
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
7. Deployment solutions that will allow both the 64 bit version of Office 2010 and the 32 bit version Office 2003 to run at a same time on a Windows 7 computer - and to do that when the computer is offline - are very limited. You should recommend
Get-ADUser cmdlet
Ldp
Microsoft Application Virtualization (AppV)
View properties of %systemroot%ntdsntds.dit
8. All DCs run Windows Server 2008 R2 and have the DNS Server role installed. The domain controllers for each location are stored locally. Each has its own standard primary zone to support its local domain.You need a plan that meets the following: WAN l
Create a standard secondary of domain and create standard secondary of other domain.
Zone transfer settings
Purchase one additional Enterprise License
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
9. Your data provisioning solution must meet the following requirements: users must have access to their Documents folder regardless of the client computer that they use; user documents should not be stored on the local client computer; minimize the tim
fsconfig on FSSrv2
Folder redirection. Folder redirection is also useful when using roamin profiles.
Configure folder redirection
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
10. RDSrv1 is a Server 2008 R2 server with Remote Desktop Services installed. You are planning to establish a Terminal Server Farm that must meet these requirements: New users automatically connect to the terminal server that has the fewest active sessio
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.
File Server Resource Manager (FSRM) quotas and file screens
Implement a Remote Desktop Connection Broker (RD Connection Broker)
Remote Desktop Virtualization host - you wouldn't want all the users on the same Remote Desktop Session host to be local administrators.
11. If you need a VPN soluction that stores VPN passwords as encrypted text and supports automatic enrollment of certificates
Ensure your account - or the group is a member of the local Administrators group for that specific server.
Install Windows Server Backup and modify the Windows firewall settings
Configure RODC for Administrator Role Separation
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
12. You need to deploy a distributed database application that meets the following: allocates storage to servers as required; isolates storage traffic from the exisiting network; ensures that data is available if a single disk fails; ensures that data is
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
13. To replicate SYSVOL using Distributed File System Replication (DFSR)...
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
DFL needs to be Windows Server 2008
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
View properties of %systemroot%ntdsntds.dit
14. You need to recommend a server configuration to support a Web-based application that must meet these requirements: the app must be available to all users if a single server fails; support the installation of .NET applications; Minimize software costs
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Execute the Set-ADServiceAccount cmdlet
From Server A - run Create Basic Task Wizard
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
15. To determine size of AD database file...
View properties of %systemroot%ntdsntds.dit
Dynamically expanding VHD's
Create ADMX and ADML files. Configure the GPO and link it to the domain.
Microsoft System Center Data Protection Manager
16. You have few Server 2003 servers that have Terminal services installed. You also have a firewall that runs ISA Server 2006. Your remote access strategy for the terminal servers needs to meeet the following: restricts accsss to specific Remote Desktop
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
Implement folder redirection by using GPO. Then backup the folder redirection target.
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
17. You have administrative templates that another company wants to use on their domain. How would you configure the other company's domain to use these administrative templates?
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
18. You have a couple support technicians located in branch office on Server 2008 R2 machines with the following requirements: Install server roles; stop and start services; minimize the security privileges granted to the support technicians
FILES option within Ntdsutil
Enable Windows Remote Management (WinRM) on each server.
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
19. To backup to tape/robotic tape and to backup VMs you must use...
Microsoft System Center Data Protection Manager 2010
Use the Local Roles options with dsmgmt.
Run adprep /forestprep and adprep /domainprep
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
20. To speed up the deployment of the RODC in the new branch offices you should take advantage of this.
Incoming external trust
Install From Media IFM
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
WSUS server in the branch office in replica mode.
21. Help desk staff must be able to update drivers on the domain controllers at the branch office and assign them the proper
Administrative Role Separation
Dsmgmt
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
Creating a data collector set that kick off a scritp that either move or delete files.
22. When using Remote Desktop and Remote Desktop Session hosts - to be able to control both who can gain access - and to what - on the network configure;
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
Create a Central Store
Implement a GPO for each domain
23. You need to rebuild a server and reinstall the operating system - and rollback all operations master roles to original state...
Incoming external trust
Implement Network Access Protection (NAP) that uses 802.1x enforcement
1) Seize operations master roles from sever1 to server2 2) Rebuild Server as a replica domain controller 3) Transfer operations master roles from Server2 to Server1
Group Policy Preferences
24. There is a file server in each office that contains a shared folder named Data. You need to plan the data availability for the Data folder according to these requirements: if WAN link fails - the files in the Data folder must be available in all of t
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Windows BitLocker Drive Encryption (Bit Locker)
Ntfrsutil
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
25. What should be done first to defragment the AD database?
Run net stop ntds
Then use Windows Deployment Services (WDS)
Site
Configure RODC for Administrator Role Separation
26. All servers run 2008 R2. All client computers run Windows 7 and Outlook 2010. The sales team needs to use Outlook 2003 to support a custom application. You need a deployment strategy that meets these requirements: provide access to Outlook 2003 and 2
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Recommend Group Policy preferences
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
27. You are evaluating whether to use express installation files as an update distribution mechanism. The technical requirement that
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Deploy a failover cluster that uses Node and File Share Disk Majority
Configure offline files and enable manual caching
28. To make deploying the custom Word dictionary easy
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
Implement Network Access Protection (NAP)
Printer driver isolation
Recommend Group Policy preferences
29. You have a main office that contains two domain controllers and a branch office that has an RODC. What should be done so that a user named George can install updates on the RODC while preventing George from logging on to any other domain controller?
Use the Local Roles options with dsmgmt.
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
Additional DFS Targets
Enable - ADoptionalFeature cmdlet
30. You need to allow a user to add a single computer to a domain - without any additional rights...
WSUS server in the branch office in replica mode.
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
Prestage the computer account in AD
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
31. You need a tool that will help you manage LUN's for both iSCSI and Fibre Channel to support the provision of Virtual disks. You should recommend this.
AD RMS
Get-ADUser cmdlet
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.
Storage manager for SANs
32. To minimize the amount of storage used for virtual machines in a Virtual desktop pool the VHD's should be
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
33. An external partner plan requires the following: prevent sensitive documents from being forwarded to untrusted recipients or from being printed; allow users in the external partner organization to access the protected content to which they have been
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Disable Site Link Bridging from IP Properties
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Install Hyper-V role and convert physical machines into virtual machines
34. Recently it was decided to increase the performance of the company's Web Servers by deploying a NLB Web server farm. You need to ensure that the content is easily replicated across all the servers in the farm. You should implement this.
Network Load Balancing (NLB) cluster
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Distributed File System (DFS) Replication
Improve the performance of File Servers
35. Engineering department has 582 Windows Server 2008 R2 servers. You need to monitor the performance of all 582 with following requirements: Create alerts when average processor usage is higher than 85% for 15 minutes; Automatically adjust the processo
Modify the GPO to include folder redirection
Deploy Microsoft System Center Operations Manager (SCOM)
Add George to the Domain Admins group.
Offline domain join
36. To minimize the amount of storage required you should recommend
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Run auditpol and then configure the Security settings of the Domain Controllers OU.
Back up to an external USB drive by using Windows Server Backup
Share and Storage Management
37. Several employees say they can't get on domain with "password incorrect" message. What utility tool can be used to identify issue and also ensure users can log into domain?
Repadmin
Run adprep /forestprep and adprep /domainprep
Passive file screens
Implement a domain-based DFS namespace that uses replication
38. What utility is used to see what accounts cached on RODC?
Active Directory Users and Computers
The WSUS client to retrieve updates from Microsoft Update (Do not Store updates locally)
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
39. When you need to distribute a large number of incoming connections to stateless applications such as Web servers or VPN servers you should implement this.
Network Load Balancing (NLB)
Storage manager for SANs
DSMOD
Include a server that runs Microsoft Office SharePoint Server 2010
40. All 2008 R2 servers and Windows 7 clients are connected to managed switches. The following are requirements for network access: only client computers that have up-to-date service packs installed can access the network; have up-to-date anti-malware so
Implement Network Access Protection (NAP) that uses 802.1x enforcement
Ensure your account - or the group is a member of the local Administrators group for that specific server.
Create an e-mail account in AD DS for your RMS users
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
41. To compact AD database...
Dfsrdiag
Create ADMX and ADML files. Configure the GPO and link it to the domain.
FILES option within Ntdsutil
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
42. The ability to set quotas at the volume level has been around for many years - however if you have have servers that need quotas - but instead of placing the quota at the volume level you need to place the quota on an individual folder -
Create a Central Store
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Implement File Server Resource Manager (FSRM) quotas on the desired servers
Remote Desktop Virtualization host - you wouldn't want all the users on the same Remote Desktop Session host to be local administrators.
43. Certain groups of users must be able to approve certificate requrests and revoke certificates but not be able to modify the properties of the CA. You should recommend
Role Separation
Administrators is the minimum group membership required to complete this procedure.
Install the RSAT tool on their workstation to provide for more efficient network management
Modify the schema of LDSInst1
44. IE can be a security concern - however you can take advantage of Group policies to lock down IE as much as possible
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
45. to minimize the attack surface area of the servers and reduce licensing cost you should recommend
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.
Modify properties of RODC server computer account.
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
46. Your AD domain has an OU named Sales OU that contains the user accounts of the Sales department. A new password polity needs to be created for the Sales department that is different from the domain password policy. How is this accomplished?
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
Implement Distributed File System Replication (DFSR) on both servers
File Server Resource Manager (FSRM) quotas and file screens
Create a standard secondary of domain and create standard secondary of other domain.
47. Your file server contains 2 volumes; one that contains the operating system and the other volume contains all data files. Your recovery strategy must meet these requirements: allows the operating system to be restored; allows the data files to be res
CAPublishGP group should have the Manage CA permission.
Add the Windows Server Backup feature and Windows System Image recovery.
File Server Resource Manager (FSRM) quotas and file screens
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
48. You need to create a DNS infrastructure that must allow client computers in each office to register DNA names within their respective offices and client computuers must be able to resolve names for hosts in all offices
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
Restore-ADObject cmdlet
Active Directory snapshots and Tombstone reanimation
Create an Active Directory-Integrated zone.
49. Your data recovery strategy for your Server 2008 R2 file server must meet the followign requirements: All data volumes on the server must be backed up daily; backups must have a minimal impact on performance; if a disk fails - the recovery strategy m
Group Policy Preferences
Test-AppLockerPolicy
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
50. If you need to deploy a DHCP server that supports computers that start from a PXE network adapater and support Win7
Then use Windows Deployment Services (WDS)
Disable Site Link Bridging from IP Properties
Implement Windows System Resource Manager (WSRM) and configure user policies
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
