SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. You need to create a DNS infrastructure that must allow client computers in each office to register DNA names within their respective offices and client computuers must be able to resolve names for hosts in all offices
DSMOD - ADUC
Storage manager for SANs
Create an Active Directory-Integrated zone.
Modify properties of RODC server computer account.
2. To back up your Hyper-VMs and the Hyper-V host; for each VM -
Software Restriction Polices
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Configure RODC for Administrator Role Separation
3. What shold be done to configure AD RMS so users can protect their data?
NOT be able to store that data on an iSCSI SAN
Create an e-mail account in AD DS for your RMS users
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Microsoft System Center Data Protection Manager
4. What Function Level (FL) needs to be in place to enable AD Recycle Bin?
Enable Windows Remote Management (WinRM) on the servers.
FFL Windows Server 2008 R2
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
New ACCOUNT STORE should be added and configured
5. Recently it was decided to increase the performance of the company's Web Servers by deploying a NLB Web server farm. You need to ensure that the content is easily replicated across all the servers in the farm. You should implement this.
Implement Windows BitLocker Drive Encryption (BitLocker)
Distributed File System (DFS) Replication
Run adprep /forestprep and adprep /domainprep
Incoming external trust
6. Your DFS deployment needs to meet these requirements: minimize the bandwidth required to replicate data; ensure users see only folders to which they have access; ensure users can access the data locally.
Printer driver isolation
Software Restriction Polices
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
Run adprep /forestprep and adprep /domainprep
7. IE can be a security concern - however you can take advantage of Group policies to lock down IE as much as possible
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
8. The strongest form of NAP is
Then configure GlobalNames zones on each domain controller.
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
Configure block inheritance on the IT OU
9. You need to come up with a solution for managing user accounts that: allows Help Desk department to manage the user objects in all domains and minimize the administrative effort required to manage the frequent changes to the Help Desk department
fsconfig on FSSrv2
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.
Implement File Server Resource Manager (FSRM) quotas on the desired servers
Administrative Role Separation
10. GPO's can be difficult to manage; you need a solution that will include version tracking and offline modifications. You should recommend
Create an e-mail account in AD DS for your RMS users
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Microsoft Desktop Optimization Pack (MDOP) to your company
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
11. To identify users who bypass the new corporate security policy -
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Import-Module
Configure Audit Special Logon and define Special Groups
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
12. To ensure that recovery is possible if a file on a file server is deleted accidentally
From Server1 - run the Create Basic Task Wizard
Implement a domain-based DFS namespace that uses replication
Implement Shadow Copies
Modify the schema of LDSInst1
13. The solution requires that teachers that have been issued district based laptops - work remotely - and teach only on-line classes - must connect to the school network using split-tunnel VPN. Need to be sure that: minimize traffic over the VPN wheneve
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
14. All users store their files in their Documents folder. Some of these are very large. You are going to implement roaming profiles for all your users. You will configure this by using a GPO. To minimize the amount of time it takes for your users to log
Multipath I/O feature
Network Load Balancing (NLB)
Modify the GPO to include folder redirection
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
15. To make deploying the custom Word dictionary easy
Recommend Group Policy preferences
Event Subscriptions
Use CISCO IP Helper command to configure.
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent
16. Server1 collects all events that occur on your domain controllers. Using the minimal effort - from Event Viewer - what should be done to ensure you are notified when a specific event has occurred on any of your domain controllers?
Set-ADServiceAccount cmdlet
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Network Load Balancing (NLB) cluster
From Server1 - run the Create Basic Task Wizard
17. You need to ensure that your Windows 2008 R2 file servers meet the following: supports volumes larger than 2 terabytes - if a single disk fails - maintain data redundancy - if a single server fails - maintain access to all data - maximize disk throug
Use local roles options within "dsmgmt"
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Perform an authoritative restore
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
18. You need a solution for your Web servers that meet these requirements: ensures that the Web site is accessible even if a single server fails; supports the addition of more Web servers without interrupting client connections.
Configure Audit Special Logon and define Special Groups
Create a Network Load Balancing cluster.
File Server Resource Manager (FSRM) quotas and file screens
Dfsrdiag
19. If you need to implement Encrypting File System (EFS) and minimize amount of data transferred across and access EFS certs on any client computer
Enable Credential Roaming
Configure block inheritance on the IT OU
Create ADMX and ADML files. Configure the GPO and link it to the domain.
WDS
20. Certain apps may require that the end user have the ability to make changes to the application - however some applications may allow these changes to be made in the registry. To give you as the administrator the ability to make changes as necessary -
Group Policy Preferences
An Active Directory subnet object needs to be created.
MEDV to deploy virtual desktops
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
21. If you need to implement a Cert Services solution that automates distribution of certificates - ensures security and gives external users acess to resources that use cert-based authentication
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
View properties of %systemroot%ntdsntds.dit
Add the Windows Server Backup feature and Windows System Image recovery.
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
22. To compact AD database...
Event Subscriptions
Create an e-mail account in AD DS for your RMS users.
FILES option within Ntdsutil
Domain based DFS namespace and configure a DFS replication group
23. What should be done to ensure changes made to AD objects can be logged?
Run the Delegation of Control Wizard on the Staff OU
Microsoft SharePoint Foundation 2010
Install and share a printer on a server and then enable printer pooling.
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
24. Can be used to install the Windows RE on existing servers
Domain based DFS namespace and configure a DFS replication group
Modify the GPO to include folder redirection
WDS
Import-Module
25. You have a forest with two domains - all servers run 2008 R2 - and all DCs contain DNS. A member server has a primary zone for test.company.com. What should be done so all DCs can resolve names from test.company.com zone?
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
Create TWO new starter GPO's one with user administrative templates configure - and one with computer admin template configured - and export them to .cab files - and make the .cab files available in both forests...Then when creating new group policie
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Test-AppLockerPolicy
26. To replicate SYSVOL using Distributed File System Replication (DFSR)...
Restore-ADObject cmdlet
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
DFL needs to be Windows Server 2008
Data Recovery Agent
27. If you need to allow an external partner's computer to access internal network resources by using SSTP
Modify zone transfer settings for company.com zone on DCA
Deploy the Root CA certificate to the external computers.
djoin /requesteodj from internal server - djoin /provision from outside server/PC
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
28. What should be done first to defragment the AD database?
Store all sensitive files in EFS encrypted folders and require home users to access the files by using SSTP
Modify properties of RODC server computer account.
Then configure GlobalNames zones on each domain controller.
Run net stop ntds
29. DFL is...
Win2000 Native
Implement a GPO for each domain
Event Subscriptions
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
30. You have a main office and a branch office. Your Active Director domain runs at functional level Windows Server 2008. You are planning to implement file servers in each office. Your file sharing implementation must meet the following requirements: us
Implement a domain-based DFS namespace that uses replication
Configure authorization rules for Web developers on each web server
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
31. You have 2 Server Core servers that are part of a Network Load Balance that host a web site. To be able to allow administrators - on their Windows 7 computers - remotely manage the NLB with automation
Win2000 Native
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
Enable Windows Remote Management (WinRM) on the servers.
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
32. When taking files offline there is always a security risk. Corporate files now reside on a laptop that will leave the confines of the corporate office. When taking files offline it is best practice to help protect these files using
Configure authorization rules for Web developers on each web server
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
Encrypting File System (EFS). This can be enabled locally or through a GPO.
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
33. What should be done so the application does not fail after 30 days while still keeping the password policy in mind?
Storage manager for SANs
Deploy a failover cluster that uses Node and File Share Disk Majority
Printer driver isolation
Execute the Set-ADServiceAccount cmdlet
34. You need to deploy a distributed database application that meets the following: allocates storage to servers as required; isolates storage traffic from the exisiting network; ensures that data is available if a single disk fails; ensures that data is
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
Printer driver isolation
35. If you need a VPN soluction that stores VPN passwords as encrypted text and supports automatic enrollment of certificates
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Raise the DFL to Windows Server 2008 R2.
36. To ensure that the SQL Servers can fail over autoatically and support 2 TB drives
Recommend GPT and basic disks
Configure Firewall Group Policies and link them at the Domain level
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
Include a server that runs Microsoft Office SharePoint Server 2010
37. You have three domain controllers that perform a full back up every day. You need a recovery strategy for AD objects that meets these requirements: allows objects in a backup to be compared to objects in the live AD database; minimizes admin effort.
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
Changed manually
Add the Windows Server Backup feature and Windows System Image recovery.
38. Need a solution that will ensure that the initial settings when creating new policies for both forests will become more consistent. You should...
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
39. Audit account management policy settings and Audit directory services access settings are enabled for the entire domain. What should be done to ensure that changes made to AD objects can be logged? The logged changes must include the old and new valu
Deploy a failover cluster that uses Node and File Share Disk Majority
View properties of %systemroot%ntdsntds.dit
Run auditpol and then configure the Security settings of the Domain Controllers OU.
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
40. To monitor replication of group policy template files when DFL set at Windows 2008 R2...
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Event Subscriptions
Dfsrdiag
41. Help desk staff must be able to update drivers on the domain controllers at the branch office and assign them the proper
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie
Backup operator's domain local group
Administrative Role Separation
Then configure GlobalNames zones on each domain controller.
42. Engineering department has 582 Windows Server 2008 R2 servers. You need to monitor the performance of all 582 with following requirements: Create alerts when average processor usage is higher than 85% for 15 minutes; Automatically adjust the processo
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
Dfsrdiag
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
Deploy Microsoft System Center Operations Manager (SCOM)
43. If you need to be able to create shared folders on Server 2008 R2
Recommend Group Policy preferences
Ntdsutil
CAPublishGP group should have the Manage CA permission.
Ensure your account - or the group is a member of the local Administrators group for that specific server.
44. To add a new UPN for all user accounts...
Implement Network Access Protection (NAP) that uses 802.1x enforcement
Microsoft SharePoint Foundation 2010
AD Domains and Trusts
1) Seize operations master roles from sever1 to server2 2) Rebuild Server as a replica domain controller 3) Transfer operations master roles from Server2 to Server1
45. to make shares at a remote location available to users you should implement this.
Domain based Distributed File System (DFS) namespace and DFS Replication.
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Run auditpol and then configure the Security settings of the Domain Controllers OU.
46. Jack and Jill go up the hill - both with a buck and a quarter
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
Execute the Set-ADServiceAccount cmdlet
Jill came down with 2.50.
47. Domain.com recently deployed several Windows Server 2008 R2 file servers. You recently have had a problem with the file server in the sales department. On a regular basis the hard drive on the file server reaches capcity. You have to routinely perfor
From Server1 - run the Create Basic Task Wizard
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
48. The company requires that only users that have a certificate can recover BitLocker keys. To support this requirement you will need to
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
Modify properties of RODC server computer account.
Use Netsh tool from administrator's computer.
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
49. If your company has the need to create administrative templates (.admx) files for Active Directory runnin on server 2008 R2 you should recommend...
Then install new Server 2008 R2 Enterprise subordinate CA.
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition
50. You need a solution that allows your users to collaborate with each other and that must meet these: enables - full text indexing of all user content - remote access to files by using a Web browser - secure access to files by assigning permisions; sup
CAPublishGP group should have the Manage CA permission.
Dsmgmt
Include a server that runs Microsoft Office SharePoint Server 2010
Use CISCO IP Helper command to configure.
Sorry!:) No result found.
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests
