SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Your data recovery strategy for your Server 2008 R2 file server must meet the followign requirements: All data volumes on the server must be backed up daily; backups must have a minimal impact on performance; if a disk fails - the recovery strategy m
Deploy a failover cluster that contains one node in each office.
Win2000 Native
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Enable Windows Remote Management (WinRM) on each server.
2. To make sure that all current certificate holders automatically enroll for the new template - use what utility?
Certificate Templates
1) Seize operations master roles from sever1 to server2 2) Rebuild Server as a replica domain controller 3) Transfer operations master roles from Server2 to Server1
Discover the run Microsoft Baseline Security Analyzer (MBSA)
Offline domain join
3. You need to allow remote access to the servers on your network while meeting the following requirements: all remote connections to the servers must be encrypted; all remote authentication attempts to the servers must be encrypted; only inbound connec
Enable - ADoptionalFeature cmdlet
Add-ADFineGrainedPasswordPolicySubject cmdlet
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
AD RMS
4. 4 steps to perform authoritative restore of a deleted OU...
Raise the DFL to Windows Server 2008 R2.
1) Restart dc in DirectoryServiceRestoreMode - 2) Restory system state data to date before organizational unit was deleted - 3) Use ntdsutil utility to mark organizational unit as authoritative 4) Restart Domain Controller
Implement Network Access Protection (NAP)
Configure an audit policy by editing the default domain policy and configure Event Forwarding
5. To deploy templates across the organization
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Multipath I/O feature
6. Client computers run Windows 7 and all applications on the computers are configured to save documetns to the local Documents folder. You need a backup strategy that meets these: Back up the Documents folder for all users; minimize admin effort. To ac
The WSUS client to retrieve updates from Microsoft Update (Do not Store updates locally)
Implement folder redirection by using GPO. Then backup the folder redirection target.
Implement Windows BitLocker Drive Encryption (BitLocker)
Microsoft Desktop Optimization Pack (MDOP)
7. WSSvr1 has Windows SharePoint Services role installed and contains 20 SharePoint sites. You need to optimize performance and ensure that if CPU utilization exceeds 75% - then an equal amount of system resources are allocated to each SharePoint site.
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Run auditpol and then configure the Security settings of the Domain Controllers OU.
Add the Windows Server Backup feature and Windows System Image recovery.
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
8. Within your company you have a server that will be running 8 VMs but only 6 concurrently. Your company has already purchased an Enterprise license for the server.
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
Purchase one additional Enterprise License
Restore-ADObject cmdlet
Configure RODC for Administrator Role Separation
9. When one needs to audit files - folders - printers and the registry enable
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
10. To join a server/PC outside of the domain to the network...
Incoming external trust
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
djoin /requesteodj from internal server - djoin /provision from outside server/PC
Authorization Manager
11. When deploying software across a large distributed enterprise you can reduce the need for clients to obtain the necessary .msi file needed for installation from over the network. Placing applications .msi file in a shared folder that is replicated us
Domain based DFS namespace and configure a DFS replication group
Domain based Distributed File System (DFS) will reduce network traffic
Enable Windows Remote Management (WinRM) on each server.
Enable - ADoptionalFeature cmdlet
12. DCDNS1 is a DC and DNS server that host and ADI zone for company.com and is located in the main office. DNS2 is a DNS server that hosts a secondary zone for company.com and is located in the branch office. FSrv1 is a new file server that is located i
Refresh the zone on DNS2
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
Configure RODC for Administrator Role Separation
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
13. Engineering department has 582 Windows Server 2008 R2 servers. You need to monitor the performance of all 582 with following requirements: Create alerts when average processor usage is higher than 85% for 15 minutes; Automatically adjust the processo
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
Deploy Microsoft System Center Operations Manager (SCOM)
dnscmd
14. All servers are 2008 R2. All client computers are Vista and have Outlook 2007 installed. Following resources are being accessed: exchange 2010 by using Outlook 2007 - database server on TCP port 38968 - 2008 R2 file servers. You need to provide users
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
Windows Server 2003
DISABLE slow link detection in the GPO
Test-AppLockerPolicy
15. To allow a specifc user or group to manage the address information for the user accounts...
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
DFL needs to be Windows Server 2008
Recommend Active Directory delegation
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.
16. You need to relocate an AD LDS instance from C: Drive to D: Drive
Create a new Password Settings Object (PSO) for the IT users.
Site
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
17. George's user account has been deleted in Active Directory. George's user account needs to be restored by usine minimal amount of effort. What should be done?
Deploy it by using Group Policy Software Installation method
Perform an authoritative restore
Add-ADFineGrainedPasswordPolicySubject cmdlet
Implement File Server Resource Manager (FSRM) quotas on the desired servers
18. To ensure that admins in the corporate office can manage and control all Windows Updates and manage WSUS computer groups - deploy this.
WSUS server in the branch office in replica mode.
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
FILES option within Ntdsutil
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
19. You have administrative templates that another company wants to use on their domain. How would you configure the other company's domain to use these administrative templates?
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
20. To allow for an application on a Remote Desktop Server to be available through document invocation - you must
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
Active Directory Right Management Services (AD RMS)
Then configure auto enrollment of certificates and Credential Roaming.
Windows XP Mode
21. If you need to deploy a DHCP server that supports computers that start from a PXE network adapater and support Win7
Back up to an external USB drive by using Windows Server Backup
IIS Manager user account
Then use Windows Deployment Services (WDS)
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
22. To ensure that a file on a file server do not leave the organization you must implement this.
Install From Media IFM
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
AD RMS
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.
23. Web server administrator's accountsd are in an OU called WebAdminOU and are member of a global group called WebAdmins. To allow the web server administrators to perform administrative tasks on the web servers - but not allow them to perform administr
Upgrading DFS to Windows Server 2008 R2
Deploy a failover cluster that uses Node and File Share Disk Majority
Deploy a GPO to the WebSrvOU
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
24. When recommending the server configurations for the new failover cluster that will live in a virtual environment from Hyper-V Manager on each node - configure ...
Passive file screens
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
Then install new Server 2008 R2 Enterprise subordinate CA.
25. You need a solution that meets policy while minimizing hardware and software costs
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Create a new Password Settings Object (PSO) for the IT users.
Active Directory Right Management Services (AD RMS)
26. To allow administrators tha trun Windows 7 ability to manage the DNS server that runs on the Server Core installation of Server 2008 R2
The WSUS client to retrieve updates from Microsoft Update (Do not Store updates locally)
Software Restriction Polices
Active Directory Users and Computers
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
27. If users need access to files locally and must be able to access files at another site if the local copy is not available you should implement this.
IIS Manager user account
WSUS server in the branch office in replica mode.
A Distributed File System (DFS) namespace
fsconfig on FSSrv2
28. All 2008 R2 servers and Windows 7 clients are connected to managed switches. The following are requirements for network access: only client computers that have up-to-date service packs installed can access the network; have up-to-date anti-malware so
Implement Network Access Protection (NAP) that uses 802.1x enforcement
Get-ADUser cmdlet
Certificate Templates
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
29. You need to recommend a solution to minimize the amount of time it takes for the sales department users to locate files in teh course bookings share.
New ACCOUNT STORE should be added and configured
Implement the Windows Search Service.
Active Directory Users and Computers utility
Create and deploy a logon script that runs Auditpol.
30. If you need to minimize amount of time and impact of 50 simultaneous Win7 installations
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
Configure block inheritance on the IT OU
Recommend Group Policy preferences
31. Need to access some resources in another domain that is part of another forest...What trust is created?
Incoming external trust
Run adprep /forestprep and adprep /domainprep
Enable Windows Remote Management (WinRM) on each server.
Microsoft Desktop Optimization Pack (MDOP)
32. To improve performance and provide redundancy if a single server fails - the intranet web site should be in this.
Network Load Balancing (NLB) cluster
DSMOD - ADUC
Then use on install image file that contains a single install image.
DFL needs to be Windows Server 2008
33. Currently you already have in place AD - DNS and DHCP. You need an automated deployment solution for the new servers that will boot using native VHD's. You should recommend
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary
Windows Deployment Services (WDS)
Configure offline files and enable manual caching
34. You have three domain controllers that perform a full back up every day. You need a recovery strategy for AD objects that meets these requirements: allows objects in a backup to be compared to objects in the live AD database; minimizes admin effort.
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Configure event log subscriptions
35. To add a server with AD FS 2.0 role to an existing AD FS farm...
File Server Resource Manager (FSRM) quotas and file screens
Domain based DFS namespace and configure a DFS replication group
fsconfig on FSSrv2
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
36. to prevent VMs from receiving updats from a group policy
net stop ntds
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.
Service user account for AD LDS
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
37. If you need to allow an external partner's computer to access internal network resources by using SSTP
Active Directory Right Management Services (AD RMS)
Configure Firewall Group Policies and link them at the Domain level
Microsoft SharePoint Foundation 2010
Deploy the Root CA certificate to the external computers.
38. You need a solution that replaces servers that host 2 applications. This solution must use Windows Server 2008 R2 and minimize cost.
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
Windows BitLocker Drive Encryption (Bit Locker)
Encrypting File System (EFS). This can be enabled locally or through a GPO.
Perform an authoritative restore
39. When service account passwords need to be changed for SQL they should be...
Changed manually
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
Implement a domain-based DFS namespace that uses replication
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
40. When recommending a monitoring solution for an application so that it's events can be stored in a central
Group Policy Preferences
Configure RODC for Administrator Role Separation
Event Subscriptions
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
41. Help desk staff must be able to update drivers on the domain controllers at the branch office and assign them the proper
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
Administrative Role Separation
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
From Server1 - run the Create Basic Task Wizard
42. To add a new UPN for all user accounts...
DISABLE slow link detection in the GPO
Enable Credential Roaming
AD Domains and Trusts
Implement Windows System Resource Manager (WSRM) and configure user policies
43. What should be used to montior the replication of group policy template files when your DFL is set at Windows Server 2008 R2?
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
Dfsrdiag
Configure event log subscriptions
44. Company users IPV4 and IPV6. A PC uses IPV6 and can no longer authenticate off the DC. What can be done to ensure IPV6 computers authenticate to DCs in same site...
The Group Policy Management Console
Use CISCO IP Helper command to configure.
Subnet object needs to be created
Utilize IFM (Install From Media)
45. Your office has no Internet connection. Your data provisioning solution must meet these requirements: users that are not connected to the network must be able to access files and folders on the network; unauthorized users must not have access to the
Subnet object needs to be created
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
Configure caching on the shared folder and configure offline files to use encryption
Domain based DFS namespace and configure a DFS replication group
46. To ensure that when certain users log on to any client computers in the branch office - they automatically receive the local administrator rights to the computer - and when they log off - they must lose the administrator rights
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Recommend Offline Files
47. To enforce corporate policy on ALL computers in the domain to show a legal notice when a user logs on to the domain
Properties of PSO need modified
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
Install From Media IFM
PowerShell 2.0
48. When you need to distribute a large number of incoming connections to stateless applications such as Web servers or VPN servers you should implement this.
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.
Implement a Remote Desktop Connection Broker (RD Connection Broker)
Network Load Balancing (NLB)
49. What should be modified so you can use the nslookup utility to list all SRV records for your domain?
Create an Active Directory-Integrated zone.
Zone transfer settings
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
Configure caching on the shared folder (offline files)
50. If you want to implement BitLocker and store recovery informaiton in a central location
Either implement a DHCP server at the branch office - or configure a "Static Pool" on the RRAS server itself. If deploying a DHCP server at the branch office isn't an option - then once the Remote Access Server role has been deployed you can configur
Authorization Manager role assignment
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.