SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. DFL is Windows Server 2003 and client computers run Vista. DCRMS is a server that holds AD RMS. What should be done to configure AD RMS so users - including Waldo - can protect their data?
Implement Network Access Protection (NAP) that uses 802.1x enforcement
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Create an e-mail account in AD DS for your RMS users.
Create TWO new starter GPO's one with user administrative templates configure - and one with computer admin template configured - and export them to .cab files - and make the .cab files available in both forests...Then when creating new group policie
2. Tool to montior replicaiton of group policy template files when DFL set at Windows SVR 2003
Ntfrsutil
Microsoft System Center Data Protection Manager 2010
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Jill came down with 2.50.
3. You need to ensure that your Windows 2008 R2 file servers meet the following: supports volumes larger than 2 terabytes - if a single disk fails - maintain data redundancy - if a single server fails - maintain access to all data - maximize disk throug
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Implement Network Access Protection (NAP) that uses 802.1x enforcement
Configure authorization rules for Web developers on each web server
4. Your data provisioning solution must meet the following requirements: users must have access to their Documents folder regardless of the client computer that they use; user documents should not be stored on the local client computer; minimize the tim
WDS
Implement a domain-based DFS namespace that uses replication
Configure folder redirection
Folder redirection. Folder redirection is also useful when using roamin profiles.
5. If you need to allow an external partner's computer to access internal network resources by using SSTP
Use a GPO to configure device installation restrictions
Deploy it by using Group Policy Software Installation method
Basic Authentication and SSL
Deploy the Root CA certificate to the external computers.
6. IF you need to automate deployment of 32 and 64 bit 2008 R2 servers
Configure the zone as an Activde Directory-Integrated zone.
Implement one LUN for the quorum and another LUN for the data
Then use Windows Deployment Services (WDS) on DHCP1.
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
7. You need to deploy 15 Server Core installations that are only accessible by HTTP and HTTPS. Administration of these must be able to enable administrators to install and administer server roles remotely and fully manage servers remotely
Enable Windows Remote Management (WinRM) on each server.
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
PowerShell 2.0
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
8. What should be modified so you can use the nslookup utility to list all SRV records for your domain?
Zone transfer settings
Deploy a failover cluster that uses Node and File Share Disk Majority
Microsoft SharePoint Foundation 2010
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
9. To configure Administrator Role Separation for an RODC
Multipath I/O feature
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Add-ADFineGrainedPasswordPolicySubject cmdlet
10. Tools to view contents of an OU in an AD snapshot...
Run the Delegation of Control Wizard on the Staff OU
dsa.msc - dsamain.exe - ntdsutil.exe
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
11. To ensure that when certain users log on to any client computers in the branch office - they automatically receive the local administrator rights to the computer - and when they log off - they must lose the administrator rights
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Add the Windows Server Backup feature and Windows System Image recovery.
Network Load Balancing (NLB) cluster
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
12. If you need to deploy multiple servers through automation of installation and activation and minimize network traffic
Active Directory Users and Computers utility
View properties of %systemroot%ntdsntds.dit
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
13. If you want to implement BitLocker and store recovery informaiton in a central location
Modify properties of RODC server computer account.
Incoming external trust
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
14. To enforce corporate policy on ALL computers in the domain to show a legal notice when a user logs on to the domain
AD RMS
Ensure your account - or the group is a member of the local Administrators group for that specific server.
Active Directory snapshots and Tombstone reanimation
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
15. You are about to deploy a distributed database appliation that will run on multiple 2008 R2 servers. This deployment needs to follow these requirements: uses the existing network infrastructure; uses standard Windows management tools; allocates stora
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
Configure Audit Special Logon and define Special Groups
16. To decrease the amount of time it takes for the certain users to generate reports. You should recommend
Windows System Resource Manager (WSRM)
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Ntfrsutil
17. You need to relocate an AD LDS instance from C: Drive to D: Drive
Add-ADFineGrainedPasswordPolicySubject cmdlet
Subnet object needs to be created
Implement Network Access Protection (NAP) that uses 802.1x enforcement
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
18. GPO's can be difficult to manage; you need a solution that will include version tracking and offline modifications. You should recommend
Create a MEDV workspace
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Microsoft Desktop Optimization Pack (MDOP) to your company
Run the Delegation of Control Wizard on the Staff OU
19. To improve performance and provide redundancy if a single server fails - the intranet web site should be in this.
Ensure your account - or the group is a member of the local Administrators group for that specific server.
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
Network Load Balancing (NLB) cluster
20. Currently you already have in place AD - DNS and DHCP. You need an automated deployment solution for the new servers that will boot using native VHD's. You should recommend
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.
Windows Deployment Services (WDS)
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
21. To prevent computers that do not have the Windows Firewall enabled from connecting to the wireless access point or the physical switch - you should implement this.
802.1.x NAP
Create TWO new starter GPO's one with user administrative templates configure - and one with computer admin template configured - and export them to .cab files - and make the .cab files available in both forests...Then when creating new group policie
Test-AppLockerPolicy
dnscmd
22. To make a 64-bit application available to several 32-bit XP SP3 computers in the branch office you could use either a remote desktop session host or a remote desktop virtualization host. However - if the application requires you to be a local adminis
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
23. To restore deleted user account from AD Recycle Bin...
Restore-ADObject cmdlet
Set-ADServiceAccount cmdlet
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
AD Rights Management Services
24. GPO setting to prevent all users from running an application
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
dsa.msc - dsamain.exe - ntdsutil.exe
Software Restriction Polices
25. You need to manage GPO to meet the following: allow administrators to view and edit the GPO in their own language; minimize number of GPOs deployed
Creating a data collector set that kick off a scritp that either move or delete files.
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Create ADMX and ADML files. Configure the GPO and link it to the domain.
Include a server that runs Microsoft Office SharePoint Server 2010
26. To deploy templates across the organization
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
Software Restriction Polices
Implement Network Access Protection (NAP) that uses 802.1x enforcement
Recommend Active Directory delegation
27. To restore previous version of script without taking up too much of time...
FILES option within Ntdsutil
Event Subscriptions
Deploy a failover cluster that uses Node and File Share Disk Majority
Attach VHD file created by Windows server backup
28. You need to modify DNS infrastructure to support dynamic updates to ALL DNS servers; ensure DNS service available even if single server fails; encrypt the synchronization data sent between DNS servers.
Configure the zone as an Activde Directory-Integrated zone.
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
Properties of PSO need modified
Backup operator's domain local group
29. You are evaluating whether to use express installation files as an update distribution mechanism. The technical requirement that
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Create an e-mail account in AD DS for your RMS users
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
Enable Windows Remote Management (WinRM) on the servers.
30. To update ADRMS password...
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
Windows System Resource Manager (WSRM)
AD Rights Management Services
WDS
31. Your company recently created a corporate web site using their own internal developers. Recently your CIO has decided that it would be best that some of the work be done by an outside contractor - and to allow that contractor to only the specific sec
Configure event log subscriptions
DISABLE slow link detection in the GPO
Prestage the computer account in AD
IIS Manager user account
32. Requirements are: support the installation of SQL Server 2008; Provide redundancy for SQL services if a single server fails. To accomplish this
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Deploy the Root CA certificate to the external computers.
Share and Storage Management
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
33. WSSvr1 has Windows SharePoint Services role installed and contains 20 SharePoint sites. You need to optimize performance and ensure that if CPU utilization exceeds 75% - then an equal amount of system resources are allocated to each SharePoint site.
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
PowerShell 2.0
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
34. DNS zone is stored in custom applicaiton directory partition. What tool is used to ensure replicaiton to new installed DC?
Software Restriction Polices
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Implement GPO for all client computers
dnscmd
35. In order to replicate SYSVOL shares by using DFS Replicaiton (DFS-R)
AD Domains and Trusts
Get-ADUser cmdlet
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Raise the DFL to Windows Server 2008 R2.
36. You have a main office and a branch office. Your Active Director domain runs at functional level Windows Server 2008. You are planning to implement file servers in each office. Your file sharing implementation must meet the following requirements: us
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
Implement a domain-based DFS namespace that uses replication
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.
1) Restart dc in DirectoryServiceRestoreMode - 2) Restory system state data to date before organizational unit was deleted - 3) Use ntdsutil utility to mark organizational unit as authoritative 4) Restart Domain Controller
37. Ensure password length for a group set to 12 characters long while others keep password policy
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
Add-ADFineGrainedPasswordPolicySubject cmdlet
Microsoft SharePoint Foundation 2010
Zone transfer settings
38. Domain.com's network has a single forest and single domain. Users currently share files using the corporate FTP server and DropBox. You need a better solution for managing document and allowing access. The solution must meet the following: allow for
Registry on users computer needs to be modified
Microsoft SharePoint Foundation 2010
Windows Deployment Services (WDS)
Dynamically expanding VHD's
39. In AD Sites and Service - which level is Universal Group Membership caching activated / deactivated?
Then configure auto enrollment of certificates and Credential Roaming.
Create TWO new starter GPO's one with user administrative templates configure - and one with computer admin template configured - and export them to .cab files - and make the .cab files available in both forests...Then when creating new group policie
IIS Chared Configuration
Site
40. You need to access some resources in another domain that is part of another forest. What type of trust should you create?
Implement Windows System Resource Manager (WSRM) and configure user policies
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
Configure an audit policy by editing the default domain policy and configure Event Forwarding
Incoming external trust
41. To ensure that a group in not giving too many permissions when delegating be sure to delagate permissions at the lower level OUs vs. at the domain level for example
NOT be able to store that data on an iSCSI SAN
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
Modify properties of RODC server computer account.
DFL needs to be Windows Server 2008
42. You need to design your WSUS infrastructure so that updates are highly available. To do so
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
DSMOD - ADUC
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
43. Files servers need to stay connected to the SAN if a NIC fails. You should recommend
net stop ntds
Dsmgmt
Increase the tombstone lifetime for the forest.
Multipath I/O feature
44. In order to reduce the administrative overhead typically involved with viewing event logs across multiple servers you should implement this.
Event Log Subscriptions
Configure separate application pools for each application
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
A relying party trust should be created.
45. You have few Server 2003 servers that have Terminal services installed. You also have a firewall that runs ISA Server 2006. Your remote access strategy for the terminal servers needs to meeet the following: restricts accsss to specific Remote Desktop
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
Microsoft System Center Data Protection Manager
Install the RSAT tool on their workstation to provide for more efficient network management
Software Restriction Polices
46. You have 2 Server Core servers that are part of a Network Load Balance that host a web site. To be able to allow administrators - on their Windows 7 computers - remotely manage the NLB with automation
An Active Directory subnet object needs to be created.
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.
Additional DFS Targets
Enable Windows Remote Management (WinRM) on the servers.
47. You need to plan the deployment of an application that must meet these requirements: users must have - access to the app when they are connected to the network; access the application from an icon on their desktops.
Assign the application to all client computers by using a GPO.
Microsoft System Center Data Protection Manager
Configure caching on the shared folder (offline files)
Event Subscriptions
48. To join a server/PC outside of the domain to the network...
Raise the DFL to Windows Server 2008 R2.
Share and Storage Management
djoin /requesteodj from internal server - djoin /provision from outside server/PC
Utilize IFM (Install From Media)
49. If the companies support staff is currently using Remote Desktop to connect to the servers in the data center to perform all management tasks - it would be wise to have them instead
Install the RSAT tool on their workstation to provide for more efficient network management
Configure folder redirection
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
dnscmd
50. To identify users who bypass the new corporate security policy -
Configure Audit Special Logon and define Special Groups
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
