SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. You have a single AD domain named ad.company.com. The FFL is windows 2000 and the DFL is Windows 2000 Native. The UPN suffix company.com needs to be available for user accounts. What should be done first?
Then use Windows Deployment Services (WDS)
Implement a domain-based DFS namespace that uses replication
Add the new UPN suffix to the forest.
From Server A - run Create Basic Task Wizard
2. To configure Administrator Role Separation for an RODC
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Then configure GlobalNames zones on each domain controller.
Get-ADUser cmdlet
Create TWO new starter GPO's one with user administrative templates configure - and one with computer admin template configured - and export them to .cab files - and make the .cab files available in both forests...Then when creating new group policie
3. You need to allow a user to add a single computer to a domain - without any additional rights...
PowerShell 2.0
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Prestage the computer account in AD
Implement a GPO for each domain
4. You have administrative templates that another company wants to use on their domain. How would you configure the other company's domain to use these administrative templates?
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
5. you have fewer Server 2003 servers that have Terminal Services installed. you also have a firewall that runs ISA Server 2006. Your remote access strategy for the terminal servers needs to meet the following: encrypts all remote connections to the ter
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
Dsmgmt
6. SrvA has Remote Desktop Services role installed. You notice that users are consuming more than 40% of CPU resources. You want to prevent them from consuming more than 10% - however - administrators should not be limited.
Install the RSAT tool on their workstation to provide for more efficient network management
Implement Windows System Resource Manager (WSRM) and configure user policies
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Printer driver isolation
7. To back up your Hyper-VMs and the Hyper-V host; for each VM -
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
CAPublishGP group should have the Manage CA permission.
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
Recommend GPT and basic disks
8. What document management solution allows you to keep multiple versions of documents and automatically apply access policies to these documents? You should recommend
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
Dynamically expanding VHD's
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
9. When deploying an application using the Group Policy distribution method assign the...
Ensure your account - or the group is a member of the local Administrators group for that specific server.
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.
10. UPN Suffix xxxx.com needs to be available for user accounts...
Zone transfer settings
NOT be able to store that data on an iSCSI SAN
Passive file screens
Add the new UPN Suffix to the forest
11. To know if a new applicaiton is going to run on your network computers via AppLocker in GPO
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.
Test-AppLockerPolicy
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
12. Auditing the deletion of Registry keys on all Domain Controllers
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
View properties of %systemroot%ntdsntds.dit
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
13. Two different solutions are available to help assign IP addresses to remote clients that need to VPN or Dial-in to the branch office.
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
14. You need to ensure that users that access your web site can use any browser; however - they must be authenticated on a membership page. In order for this authentication to be done securely in IIS implement
Use CISCO IP Helper command to configure.
Basic Authentication and SSL
Add-ADFineGrainedPasswordPolicySubject cmdlet
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
15. With Group Polices having over 8 -000 different settings - the possibility of conflicting policies - and security filters you should track multiple versions and offline modifications to GPOs. You should recommend
Disable Site Link Bridging from IP Properties
Microsoft Desktop Optimization Pack (MDOP)
Raise the DFL to Windows Server 2008 R2.
Set-ADServiceAccount cmdlet
16. To control access to resources using WSRM and to help prevent memory leaks from monopolizing your web server
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Configure separate application pools for each application
17. If you need to encrypt all data on all disks
Implement Distributed File System Replication (DFSR) on both servers
Create a new Password Settings Object (PSO) for the IT users.
Then use Windows BitLocker Drive Encryption
DISABLE slow link detection in the GPO
18. You need to create a DNS infrastructure that must allow client computers in each office to register DNA names within their respective offices and client computuers must be able to resolve names for hosts in all offices
Role Separation
Create an Active Directory-Integrated zone.
Active Directory Domains and Trusts
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
19. All servers run 2008 R2 and all client computers run XP SP1. You need to deploy Distributed File System (DFS) to meet these: minimize cost; provide redundancy in the event a single server fails; ensure client computers reconnect to their preferred se
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.
Active Directory Users and Computers
Windows BitLocker Drive Encryption (Bit Locker)
Add the user to the Domain Admins global group
20. When you need to distribute a large number of incoming connections to stateless applications such as Web servers or VPN servers you should implement this.
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
Network Load Balancing (NLB)
Configure the zone as an Activde Directory-Integrated zone.
Network Load Balancing (NLB) cluster
21. Tool to montior replicaiton of group policy template files when DFL set at Windows SVR 2003
Ntfrsutil
Configure caching on the shared folder and configure offline files to use encryption
Storage manager for SANs
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
22. You need to recommend management solution that will allow users to manage only certain parts of Hyper-V
Authorization Manager
Converting physical servers to VMs - implementing SANn and SAN management components such as backup and site resiliency will create additional administrative overhead.
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
FFL Windows Server 2008 R2
23. In order to ensure highly available Windows Update servers you should create this.
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
FFL Windows Server 2008 R2
Increase the tombstone lifetime for the forest.
24. To protect all computers on the network from unwanted access and to ensure a consistent configuration
Configure Firewall Group Policies and link them at the Domain level
PowerShell 2.0
Implement folder redirection by using GPO. Then backup the folder redirection target.
Run the Delegation of Control Wizard on the Staff OU
25. To ensure that the SQL Servers can fail over autoatically and support 2 TB drives
Recommend GPT and basic disks
Add the new UPN Suffix to the forest
Incoming external trust
Subnet object needs to be created
26. Domain.com's network consists of a Single AD domain. All servers and domain controllers run Windows Server 2008 R2. You need to ensure that you can: track all changes made to AD objects by the recently hired IT consulting firm; Ensure that the audits
Recommend Group Policy preferences
Configure an audit policy by editing the default domain policy and configure Event Forwarding
Administrators is the minimum group membership required to complete this procedure.
Attach VHD file created by Windows server backup
27. File that contains the last logon time and custom attributes values for each user in your forest.
Get-ADUser cmdlet
A Distributed File System (DFS) namespace
Configure Firewall Group Policies and link them at the Domain level
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
28. BLANK BLANK is a computer Group Policy setting that can be for example; Linked at an OU where public kiosks/remote desktop session host computers reside.
Dsmgmt
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Modify the local policy to point to the Internal WSUS server
29. What tool would you use to add a new User Principal Name (UPN) for all user accounts?
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
Active Directory Domains and Trusts
Winrm quickconfig
Configure authorization rules for Web developers on each web server
30. You have a main office that contains two domain controllers and a branch office that has an RODC. What should be done so that a user named George can install updates on the RODC while preventing George from logging on to any other domain controller?
Dsmgmt
Configure authorization rules for Web developers on each web server
Use the Local Roles options with dsmgmt.
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
31. to ensure that users can ONLY view the list of DFS Targets to which they are assigned permissions
Modify the GPO to include folder redirection
An Active Directory subnet object needs to be created.
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
Configure separate application pools for each application
32. What should be modified so you can use the nslookup utility to list all SRV records for your domain?
Event Viewer
Zone transfer settings
Converting physical servers to VMs - implementing SANn and SAN management components such as backup and site resiliency will create additional administrative overhead.
NOT be able to store that data on an iSCSI SAN
33. DFL is...
Refresh the zone on DNS2
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie
Win2000 Native
Event Subscriptions
34. In order to replicate SYSVOL shares by using DFS Replicaiton (DFS-R)
Raise the DFL to Windows Server 2008 R2.
fsconfig on FSSrv2
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
35. What should be configured to ensure domain controllers only replicate between doain controllers in adjacent sites?
Active Directory Users and Computers
Implement File Server Resource Manager (FSRM) quotas on the desired servers
Create an e-mail account in AD DS for your RMS users.
Disable Site Link Bridging from IP Properties
36. To ensure that admins in the corporate office can manage and control all Windows Updates and manage WSUS computer groups - deploy this.
Disable Site Link Bridging from the IP properties
Microsoft Application Virtualization (AppV)
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
WSUS server in the branch office in replica mode.
37. Tools to view contents of an OU in an AD snapshot...
Install Hyper-V role and convert physical machines into virtual machines
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
dsa.msc - dsamain.exe - ntdsutil.exe
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
38. If a new application needs to be deployed on the network and it comes as a .msi package and then do this.
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Deploy it by using Group Policy Software Installation method
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
Changed manually
39. IF you need to automate deployment of 32 and 64 bit 2008 R2 servers
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
Then use Windows Deployment Services (WDS) on DHCP1.
Group Policy Preferences
Enable Credential Roaming
40. To be able to user an application from one AD FS with authentication server to another...
fsconfig on FSSrv2
1) Restart dc in DirectoryServiceRestoreMode - 2) Restory system state data to date before organizational unit was deleted - 3) Use ntdsutil utility to mark organizational unit as authoritative 4) Restart Domain Controller
A relying party trust should be created.
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.
41. For complete fault tolerance the backend SQL Server should be protected as well - by placing it in a MSCS Failover Cluster) - To allow computers that are members of the domain to receive updates from a local WSUS you can easily create a group policy
Modify the local policy to point to the Internal WSUS server
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)
Recommend Offline Files
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
42. to protect file servers and hard disks that may be at risk of being accessed or stolen
Authorization Manager
The Group Policy Management console
Then install new Server 2008 R2 Enterprise subordinate CA.
Implement Windows BitLocker Drive Encryption (BitLocker)
43. If you need to implement a Cert Services solution that automates distribution of certificates - ensures security and gives external users acess to resources that use cert-based authentication
Configure separate application pools for each application
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
Configure block inheritance on the IT OU
44. In order to reduce the administrative overhead typically involved with viewing event logs across multiple servers you should implement this.
Event Log Subscriptions
Implement Distributed File System Replication (DFSR) on both servers
Then use Windows Deployment Services (WDS) on DHCP1.
Active Directory Domains and Trusts
45. The solution requires that teachers that have been issued district based laptops - work remotely - and teach only on-line classes - must connect to the school network using split-tunnel VPN. Need to be sure that: minimize traffic over the VPN wheneve
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
46. Deploying a web server farm can be costly. You need to minimize the amount of disk space used.
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
Ldp
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
47. You have a root domain and four child domains. Policy requirements state that all local guest accounts must be renamed and disabled - and all local administrator accounts must be renamed
Implement a Remote Desktop Connection Broker (RD Connection Broker)
Subnet object needs to be created
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
Implement a GPO for each domain
48. You have three domain controllers that perform a full back up every day. You need a recovery strategy for AD objects that meets these requirements: allows objects in a backup to be compared to objects in the live AD database; minimizes admin effort.
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Use local roles options within "dsmgmt"
Winrm quickconfig
WDS
49. Your file server contains 2 volumes; one that contains the operating system and the other volume contains all data files. Your recovery strategy must meet these requirements: allows the operating system to be restored; allows the data files to be res
Add the Windows Server Backup feature and Windows System Image recovery.
Implement Windows System Resource Manager (WSRM) and configure user policies
From Server A - run Create Basic Task Wizard
Multipath I/O feature
50. When one needs to audit files - folders - printers and the registry enable
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
A Distributed File System (DFS) namespace
DISABLE slow link detection in the GPO
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests