SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. In order to replicate SYSVOL shares by using DFS Replicaiton (DFS-R)
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
Create and deploy a logon script that runs Auditpol.
Raise the DFL to Windows Server 2008 R2.
2. 3 servers are configured as DNS servers and are ADI for the company.com zone. DNS only allows for secure updates - but you need to enable dynamic DNS updates on DCC.company.com...What do you do?
NOT be able to store that data on an iSCSI SAN
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
Implement a Remote Desktop Connection Broker (RD Connection Broker)
3. You need a tool that will help you manage LUN's for both iSCSI and Fibre Channel to support the provision of Virtual disks. You should recommend this.
Storage manager for SANs
Remote Desktop Virtualization host - you wouldn't want all the users on the same Remote Desktop Session host to be local administrators.
Configure block inheritance on the IT OU
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
4. Your office has no Internet connection. Your data provisioning solution must meet these requirements: users that are not connected to the network must be able to access files and folders on the network; unauthorized users must not have access to the
Configure caching on the shared folder and configure offline files to use encryption
Recommend Active Directory delegation
Prestage the computer account in AD
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
5. Need to access some resources in another domain that is part of another forest...What trust is created?
Use local roles options within "dsmgmt"
Incoming external trust
Active Directory Users and Computers utility
Raise the DFL to Windows Server 2008 R2.
6. To identify users who bypass the new corporate security policy -
Group Policy Preferences
Configure Audit Special Logon and define Special Groups
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
7. The solution requires that teachers that have been issued district based laptops - work remotely - and teach only on-line classes - must connect to the school network using split-tunnel VPN. Need to be sure that: minimize traffic over the VPN wheneve
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
8. All DCs run Windows Server 2008 R2 and have the DNS Server role installed. The domain controllers for each location are stored locally. Each has its own standard primary zone to support its local domain.You need a plan that meets the following: WAN l
Create a standard secondary of domain and create standard secondary of other domain.
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
Enable Windows Remote Management (WinRM) on the servers.
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
9. You need to ensure that users that access your web site can use any browser; however - they must be authenticated on a membership page. In order for this authentication to be done securely in IIS implement
Site
Domain based Distributed File System (DFS) will reduce network traffic
Basic Authentication and SSL
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
10. If your company has the need to create administrative templates (.admx) files for Active Directory runnin on server 2008 R2 you should recommend...
Win2000
Group Policy Preferences
The Group Policy Management console
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
11. When recommending a monitoring solution for an application so that it's events can be stored in a central
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Active Directory snapshots and Tombstone reanimation
Software Restriction Polices
Event Subscriptions
12. To backup Virtual Machines
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Implement Network Access Protection (NAP)
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
13. To ensure that when certain users log on to any client computers in the branch office - they automatically receive the local administrator rights to the computer - and when they log off - they must lose the administrator rights
Software Restriction Polices
CAPublishGP group should have the Manage CA permission.
Add the user to the Domain Admins global group
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
14. Currently you already have in place AD - DNS and DHCP. You need an automated deployment solution for the new servers that will boot using native VHD's. You should recommend
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
Windows Deployment Services (WDS)
Multipath I/O feature
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
15. Company.com is working on a set of corporate documents. These documents are stored in a shared folder on your corporate file server. You need to protect documents as they get created.
Then use Windows Deployment Services (WDS)
Remote Desktop Virtualization host - you wouldn't want all the users on the same Remote Desktop Session host to be local administrators.
Windows Server 2003
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
16. You have 5 windows Server 2008 R2 servers that are configured with the File Server role. you need to monitor the file servers with the following requirements in mind: administrators must be able to create reports that display folder usage by differen
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
Winrm quickconfig
Modify the schema of LDSInst1
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
17. Enables you to receive emails when domain users locked out of accounts...
Add the new UPN Suffix to the forest
Event Viewer
Perform an authoritative restore
Configure an audit policy by editing the default domain policy and configure Event Forwarding
18. Srv1 - Srv2 - Srv 3 are Network Policy Servers (NPS) that function as RADIUS Servers. Srv1 is also Microsoft SQL Server 2008 server. The network has 20 wireless access points that are configured as RADIUS clients. You need an audit strategy with the
Upgrading DFS to Windows Server 2008 R2
Dfsrdiag
Recommend Group Policy preferences
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
19. What GPO setting should be configured to prevent all users from running an application?
Then configure GlobalNames zones on each domain controller.
IIS Chared Configuration
Software Restriction Polices
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
20. You have 9 2008 R2 servers that host Web apps. You need a remote mgmt strategy to manage the Web servers according to these requirements: Web developers need to be able to configure features on the Web sites; Web developers should not have full admin
Configure authorization rules for Web developers on each web server
Implement Network Access Protection (NAP)
Assign the application to all client computers by using a GPO.
Registry on users computer needs to be modified
21. Server1 collects all events that occur on your domain controllers. Using the minimal effort - from Event Viewer - what should be done to ensure you are notified when a specific event has occurred on any of your domain controllers?
Storage manager for SANs
From Server1 - run the Create Basic Task Wizard
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
IIS Manager user account
22. You need to deploy apps to client computers according to these req.: apps must be deployed to client computers that meet minimum hardware requirements; detaild reports on success/failure of the app deployments must be provided; deployments must be sc
Enable Windows Remote Management (WinRM) on the servers.
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
Then use Windows Deployment Services (WDS)
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.
23. GPO setting to prevent all users from running an application
Software Restriction Polices
Then configure auto enrollment of certificates and Credential Roaming.
Get-ADUser cmdlet
Group Policy Preferences
24. When deploying servers one would have to include some kind of process that would ultimately join the servers to the domain - this typically would require a script and a reboot. to help eliminate some of the steps involved and automate the deployment
Offline domain join
Service user account for AD LDS
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
25. You are about to deploy 1 -000 Windows 7 desktops and your company has a web based application that only runs correctly when using IE 6. You should use
MEDV to deploy virtual desktops
Active Directory Right Management Services (AD RMS)
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
Administrative Role Separation
26. The two role services must be deployed to prevent machines from connecting to the network if their security center settings (Firewall - Windows Updates - Defender) are NOT up to date are
Then configure GlobalNames zones on each domain controller.
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
Your machine and remote desktops
27. You need to design your WSUS infrastructure so that updates are highly available. To do so
Include a server that runs Microsoft Office SharePoint Server 2010
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
Test-AppLockerPolicy
Authorization Manager role assignment
28. To decrease the amount of time it takes for the certain users to generate reports. You should recommend
Windows System Resource Manager (WSRM)
New ACCOUNT STORE should be added and configured
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
Microsoft Application Virtualization (AppV)
29. To add a server with AD FS 2.0 role to an existing AD FS farm...
Upgrading DFS to Windows Server 2008 R2
fsconfig on FSSrv2
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
From Server A - run Create Basic Task Wizard
30. 3 Servers are Network Policy Servers (NPS) that function as RADIUS servers. The network has 20 wireless access points that are configured as RADIUS clients. You need to plan an audit strategy with the following requirements: stores audit data in a ce
Implement File Server Resource Manager (FSRM) quotas on the desired servers
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
31. To ensure that the branch office with its own high speed internet connection receives the exact same updates as the corporate office you should recommend this.
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)
Implement one LUN for the quorum and another LUN for the data
32. If you need to allow an external partner's computer to access internal network resources by using SSTP
Deploy the Root CA certificate to the external computers.
Create ADMX and ADML files. Configure the GPO and link it to the domain.
Upgrading DFS to Windows Server 2008 R2
Storage manager for SANs
33. To ensure that admins in the corporate office can manage and control all Windows Updates and manage WSUS computer groups - deploy this.
Windows BitLocker Drive Encryption (Bit Locker)
Implement one LUN for the quorum and another LUN for the data
A relying party trust should be created.
WSUS server in the branch office in replica mode.
34. A DNS structure should be deployed acording to the following requirements: ensure resources in the root and child domains are accessible by FQDN; provide name resolution services in the event that a single server fails for a prolonged period of time;
PDC emulator with w32tm.exe
PowerShell 2.0
Prestage the computer account in AD
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
35. You need to design a data storage solution that meets the following: users must be able to choose the documents that will be available when they are away from the network; minimize the number of documents that are stored on users' portable computers;
Configure offline files and enable manual caching
Run adprep /forestprep and adprep /domainprep
Assign the application to computers in the PC OU
Event Subscriptions
36. To know if a new applicaiton is going to run on your network computers via AppLocker in GPO
Implement Windows System Resource Manager (WSRM) and configure user policies
Implement Shadow Copies
Test-AppLockerPolicy
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
37. If the companies support staff is currently using Remote Desktop to connect to the servers in the data center to perform all management tasks - it would be wise to have them instead
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Create a Central Store
Backup operator's domain local group
Install the RSAT tool on their workstation to provide for more efficient network management
38. You have a 2008 R2 server configured as Remote Desktop Session host. You need to deploy a line-of-business app; however - the app requires desktop themes to be enabled. Your deployment strategy must meet these requirements: only authorized users must
Then use Windows Deployment Services (WDS)
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
FFL Windows Server 2008 R2
fsconfig on FSSrv2
39. Within your company you have a server that will be running 8 VMs but only 6 concurrently. Your company has already purchased an Enterprise license for the server.
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
Install Windows Server Backup and modify the Windows firewall settings
Purchase one additional Enterprise License
40. 4 steps to perform offline Defragmentation of AD database...
Use Netsh tool from administrator's computer.
Implement the Windows Search Service.
Upgrading DFS to Windows Server 2008 R2
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
41. What utility is used to see what accounts cached on RODC?
Configure event log subscriptions
Active Directory Users and Computers
802.1.x NAP
Raise the DFL to Windows Server 2008 R2.
42. SrvA has Remote Desktop Services role installed. You notice that users are consuming more than 40% of CPU resources. You want to prevent them from consuming more than 10% - however - administrators should not be limited.
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Administrative Role Separation
Configure caching on the shared folder and configure offline files to use encryption
Implement Windows System Resource Manager (WSRM) and configure user policies
43. You don't want users to be able to install removable devices on client computers. However - domain admins and desktop support technicians must be allowed to install removable devices on client computers
Implement GPO for all client computers
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
MEDV to deploy virtual desktops
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
44. What should be done to identify which LDAP computers are using the largest amount of available CPU resources on a DC?
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
Prestage the computer account in AD
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
45. FFL is...
Win2000
IIS Manager user account
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
46. You plan to upgrade your networks desktops to Windows 7 however - after testing you discover an application that will only run on Windows XP. You need to make this application available to a large number of desktops.
Microsoft System Center Data Protection Manager 2010
Create and deploy a logon script that runs Auditpol.
Create a MEDV workspace
Use Netsh tool from administrator's computer.
47. If you need secure method to verify validity of individual certificates and minimize network bandwidth
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
WSUS server in the branch office in replica mode.
48. SrvA has the AD LDS role and an instance named LDSInst1. You connect to this instance by using the ADSI Edit utility. When you execute the Create Object wizard there is no User object class. What should be done so you can create user objects in LDSIn
Modify the schema of LDSInst1
Implement Network Access Protection (NAP)
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
PowerShell 2.0
49. If you need to deploy multiple servers through automation of installation and activation and minimize network traffic
Prestage the computer account in AD
Modify zone transfer settings for company.com zone on DCA
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
fsconfig on FSSrv2
50. You need to come up with a solution for managing user accounts that: allows Help Desk department to manage the user objects in all domains and minimize the administrative effort required to manage the frequent changes to the Help Desk department
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
Configure an audit policy by editing the default domain policy and configure Event Forwarding
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
Sorry!:) No result found.
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests