SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Domain.com's network consists of a Single AD domain. All servers and domain controllers run Windows Server 2008 R2. You need to ensure that you can: track all changes made to AD objects by the recently hired IT consulting firm; Ensure that the audits
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
Configure an audit policy by editing the default domain policy and configure Event Forwarding
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Dsmgmt
2. You need to plan the deployment of an application that must meet these requirements: users must have - access to the app when they are connected to the network; access the application from an icon on their desktops.
Changed manually
Utilize IFM (Install From Media)
Assign the application to all client computers by using a GPO.
Install the RSAT tool on their workstation to provide for more efficient network management
3. To prevent account password from being cached on RODC server...
Service user account for AD LDS
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office
Modify properties of RODC server computer account.
4. Certain groups of users must be able to approve certificate requrests and revoke certificates but not be able to modify the properties of the CA. You should recommend
Deploy a failover cluster that contains one node in each office.
Raise the DFL to Windows Server 2008 R2.
Role Separation
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
5. Assign the application to the user if you want the icon to appear on the start menu or desktop - but to allow the user to install it. Keep in mind if you assign the application to the user ....
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
The Group Policy Management console
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
6. You need a solution for your Web servers that meet these requirements: ensures that the Web site is accessible even if a single server fails; supports the addition of more Web servers without interrupting client connections.
Create a Network Load Balancing cluster.
Modify the schema of LDSInst1
Implement Windows System Resource Manager (WSRM)
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
7. To create and additional AD LDS applicaiton directory partition in existing instance...
Ldp
File Server Resource Manager (FSRM) quotas and file screens
Windows XP Mode
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
8. You just dconfigured so that Server1 zone is stored in AD and accept secure dynamic updates. What command should be executed so that Server2 can accept secure dynamic updates?
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
9. Your file server contains 2 volumes; one that contains the operating system and the other volume contains all data files. Your recovery strategy must meet these requirements: allows the operating system to be restored; allows the data files to be res
Windows XP Mode
Run adprep /forestprep and adprep /domainprep
Add the Windows Server Backup feature and Windows System Image recovery.
Microsoft System Center Data Protection Manager
10. You have several Windows 2000 Servers that have a custom application installed. However - the apps are incompatible with each other and with Windows Server 2008 R2 - but they consume less than 10% of system resources. There is a policy that states al
Windows Server 2003
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Win2000
11. If users complain that it is hard to find the shared folders on the network implement
Deploy a GPO to the WebSrvOU
Include a server that runs Microsoft Office SharePoint Server 2010
Additional DFS Targets
AD Rights Management Services
12. AD structure includes a forest with one root domain and one child domain. Child domain lists entries that start with "S-1-5-21" but no account name listed. What should be done so account names are listed?
Enable Credential Roaming
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
Offline domain join
13. What should be done to ensure changes made to AD objects can be logged?
Implement a GPO for each domain
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
14. All servers run 2008 R2 and all client computers run XP SP1. You need to deploy Distributed File System (DFS) to meet these: minimize cost; provide redundancy in the event a single server fails; ensure client computers reconnect to their preferred se
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.
Configure an audit policy by editing the default domain policy and configure Event Forwarding
15. Jack and Jill go up the hill - both with a buck and a quarter
Jill came down with 2.50.
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
Install Windows Server Backup and modify the Windows firewall settings
The Group Policy Management console
16. If you need to deploy a DHCP server that supports computers that start from a PXE network adapater and support Win7
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Then use Windows Deployment Services (WDS)
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Event Viewer
17. GPO setting to prevent all users from running an application
Network Load Balancing (NLB)
Software Restriction Polices
Configure offline files and enable manual caching
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
18. All 2008 R2 servers and Windows 7 clients are connected to managed switches. The following are requirements for network access: only client computers that have up-to-date service packs installed can access the network; have up-to-date anti-malware so
Raise the DFL to Windows Server 2008 R2.
Implement Network Access Protection (NAP) that uses 802.1x enforcement
Microsoft Desktop Optimization Pack (MDOP)
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
19. You need to recommend a solution to minimize the amount of time it takes for the sales department users to locate files in teh course bookings share.
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
Implement the Windows Search Service.
FILES option within Ntdsutil
Create an Active Directory-Integrated zone.
20. Recently it was decided to increase the performance of the company's Web Servers by deploying a NLB Web server farm. You need to ensure that the content is easily replicated across all the servers in the farm. You should implement this.
Run auditpol and then configure the Security settings of the Domain Controllers OU.
Distributed File System (DFS) Replication
Active Directory Users and Computers
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent
21. Enables you to receive emails when domain users locked out of accounts...
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Network Load Balancing (NLB)
Event Viewer
Import-Module
22. The two role services must be deployed to prevent machines from connecting to the network if their security center settings (Firewall - Windows Updates - Defender) are NOT up to date are
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
Converting physical servers to VMs - implementing SANn and SAN management components such as backup and site resiliency will create additional administrative overhead.
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
23. Policy states that users are to log into AD by usine a new User Principal Name (UPN). What tool should be used to modify the UPN suffix for all user accounts?
Modify the schema of LDSInst1
Basic Authentication and SSL
Store all sensitive files in EFS encrypted folders and require home users to access the files by using SSTP
DSMOD
24. You have 5 windows Server 2008 R2 servers that are configured with the File Server role. you need to monitor the file servers with the following requirements in mind: administrators must be able to create reports that display folder usage by differen
IIS Chared Configuration
Attach VHD file created by Windows server backup
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Assign the application to computers in the PC OU
25. Tools to view contents of an OU in an AD snapshot...
dsa.msc - dsamain.exe - ntdsutil.exe
Assign the application to all client computers by using a GPO.
DSMOD - ADUC
Passive file screens
26. To ensure that administrators are allowed to install USB drives on their Windows 7 computers - but NOT allow non-administrators
Role Separation
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
Network Load Balancing (NLB) cluster
Use a GPO to configure device installation restrictions
27. PowerShell script to create user accounts with passwords from a file called password.csv
Create a new Password Settings Object (PSO) for the IT users.
Use a GPO to configure device installation restrictions
Import-csv password.csv | Foreach {New-ADUser -Name $_.Name -Enabled $true_AccountPassword (ConvertTo_SecureString $_.Password -AsPlainText -force)}
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
28. To ensure that a file on a file server do not leave the organization you must implement this.
Domain based DFS namespace and configure a DFS replication group
Then configure auto enrollment of certificates and Credential Roaming.
Modify the local policy to point to the Internal WSUS server
AD RMS
29. The strongest form of NAP is
Dsmgmt
DSMOD
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
Deploy the Root CA certificate to the external computers.
30. CAPublishGP needs to be able to publish new certificate revocation lists - but not be able to revoke certificates. How is this accomplished?
CAPublishGP group should have the Manage CA permission.
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
net stop ntds
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
31. You need to deploy 15 Server Core installations that are only accessible by HTTP and HTTPS. Administration of these must be able to enable administrators to install and administer server roles remotely and fully manage servers remotely
Enable Windows Remote Management (WinRM) on each server.
Event Viewer
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
Store all sensitive files in EFS encrypted folders and require home users to access the files by using SSTP
32. To ensure that user's documents are stored on the file server and thus subject to the corporate backup solution - you should implement this.
Folder redirection. Folder redirection is also useful when using roamin profiles.
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Run auditpol and then configure the Security settings of the Domain Controllers OU.
Configure RODC for Administrator Role Separation
33. You need to design patch management for satellite offices that meet the following requirements: WSUS updates are approved independently for each satellite office; Internet traffic is minimized. To accomplish
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
Basic Authentication and SSL
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
34. New Password Policy needs to be created for OU different from domain password policy
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Implement Shadow Copies
Domain based DFS namespace and configure a DFS replication group
Certificate Templates
35. Srv1 is a file server that has five internal SCSI hard drives. Your storage strategy needs to meet the following requirements: Physically separates the operating system data from the user data; maximize the disk space available for data storage; uses
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
Create an e-mail account in AD DS for your RMS users.
Modify the GPO to include folder redirection
Enable - ADoptionalFeature cmdlet
36. In AD Sites and Service - which level is Universal Group Membership caching activated / deactivated?
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Improve the performance of File Servers
Dfsrdiag
Site
37. All client computers run Windows 7. You have 8 Window Server 2003 servers that run Terminal Services. There is also an ISA server that runs the firewall. You need to plan on giving remote users access to the Terminal Servers according to these requir
Implement one LUN for the quorum and another LUN for the data
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
The Group Policy Management Console
38. You need to design your WSUS infrastructure so that updates are highly available. To do so
Purchase one additional Enterprise License
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
39. Requirements are: support the installation of SQL Server 2008; Provide redundancy for SQL services if a single server fails. To accomplish this
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Implement Shadow Copies
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Implement File Server Resource Manager (FSRM) quotas on the desired servers
40. A DNS structure should be deployed acording to the following requirements: ensure resources in the root and child domains are accessible by FQDN; provide name resolution services in the event that a single server fails for a prolonged period of time;
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
Then use on install image file that contains a single install image.
Recommend Active Directory delegation
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent
41. To minimize the amount of storage used for virtual machines in a Virtual desktop pool the VHD's should be
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
42. To enable the AD Recycle Bin
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
Enable - ADoptionalFeature cmdlet
Microsoft SharePoint Foundation 2010
An Active Directory subnet object needs to be created.
43. You need a solution that replaces servers that host 2 applications. This solution must use Windows Server 2008 R2 and minimize cost.
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
Subnet object needs to be created
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
Configure event log subscriptions
44. You have a forest with two domains - all servers run 2008 R2 - and all DCs contain DNS. A member server has a primary zone for test.company.com. What should be done so all DCs can resolve names from test.company.com zone?
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Implement Windows System Resource Manager (WSRM) and configure user policies
Domain based DFS namespace and configure a DFS replication group
Enable Windows Remote Management (WinRM) on each server.
45. WSUS infrastructure must meet the following: distributed from a central location - all computers must continue to receive updates in the event that a server fails
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent
Use Netsh tool from administrator's computer.
46. You need to relocate an AD LDS instance from C: Drive to D: Drive
A Distributed File System (DFS) namespace
Active Directory Users and Computers
Recommend Active Directory delegation
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
47. All users store their files in their Documents folder. Some of these are very large. You are going to implement roaming profiles for all your users. You will configure this by using a GPO. To minimize the amount of time it takes for your users to log
Passive file screens
Modify the GPO to include folder redirection
WSUS server in the branch office in replica mode.
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
48. To build a highly secure server cluster with a reduced attack surface area
DISABLE slow link detection in the GPO
Use a GPO to configure device installation restrictions
1) Restart dc in DirectoryServiceRestoreMode - 2) Restory system state data to date before organizational unit was deleted - 3) Use ntdsutil utility to mark organizational unit as authoritative 4) Restart Domain Controller
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
49. In order to replicate SYSVOL shares by using DFS Replicaiton (DFS-R)
Raise the DFL to Windows Server 2008 R2.
AD Rights Management Services
FFL Windows Server 2008 R2
Certificate Templates
50. You are upgrading only a few computers in one department to Windows 7. These computers are running a legacy XP application you should recommend...
Then use on install image file that contains a single install image.
Run adprep /forestprep and adprep /domainprep
New ACCOUNT STORE should be added and configured
Windows XP Mode
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests