SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. George needs to administer a read-only domain controller named Server1 - but to do this with minimal permissions assigned to him. What tool should be used for this daunting task?
DSMOD
Enable - ADoptionalFeature cmdlet
Dsmgmt
Attach VHD file created by Windows server backup
2. FFL is...
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
Active Directory Domains and Trusts
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
Win2000
3. To allow for an application on a Remote Desktop Server to be available through document invocation - you must
Ensure your account - or the group is a member of the local Administrators group for that specific server.
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
Administrative Role Separation
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
4. You have 5 windows Server 2008 R2 servers that are configured with the File Server role. you need to monitor the file servers with the following requirements in mind: administrators must be able to create reports that display folder usage by differen
New ACCOUNT STORE should be added and configured
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
ntdsutil
5. To control access to resources using WSRM and to help prevent memory leaks from monopolizing your web server
Configure separate application pools for each application
Incoming external trust
Implement Windows BitLocker Drive Encryption (BitLocker)
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
6. Your data recovery strategy for your Server 2008 R2 file server must meet the followign requirements: All data volumes on the server must be backed up daily; backups must have a minimal impact on performance; if a disk fails - the recovery strategy m
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
DISABLE slow link detection in the GPO
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
7. The Computer Management snap-in allows you to create shares both on...
Test-AppLockerPolicy
Your machine and remote desktops
DSMOD
Site
8. When one needs to audit files - folders - printers and the registry enable
Printer driver isolation
Implement Windows System Resource Manager (WSRM)
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Install the RSAT tool on their workstation to provide for more efficient network management
9. Your file server contains 2 volumes; one that contains the operating system and the other volume contains all data files. Your recovery strategy must meet these requirements: allows the operating system to be restored; allows the data files to be res
Add-ADFineGrainedPasswordPolicySubject cmdlet
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Add the Windows Server Backup feature and Windows System Image recovery.
Data Recovery Agent
10. hr.domain.com domain has an OU named Sales...You need to give UserA administrative rights so that he can manage Group Policies for the Sales OU while meeting the following requirments: UserA must be able to create and configure Group Polices in hr.do
Deploy a failover cluster that uses Node and File Share Disk Majority
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.
Then use on install image file that contains a single install image.
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
11. DCDNS1 is a DC and DNS server that host and ADI zone for company.com and is located in the main office. DNS2 is a DNS server that hosts a secondary zone for company.com and is located in the branch office. FSrv1 is a new file server that is located i
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
Refresh the zone on DNS2
Ntdsutil
12. You need to create a DNS infrastructure that must allow client computers in each office to register DNA names within their respective offices and client computuers must be able to resolve names for hosts in all offices
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
Software Restriction Polices
Create an Active Directory-Integrated zone.
Back up to an external USB drive by using Windows Server Backup
13. You need to allow a user to add a single computer to a domain - without any additional rights...
Prestage the computer account in AD
Modify the GPO to include folder redirection
Changed manually
Windows XP Mode
14. Srv1 - Srv2 - Srv 3 are Network Policy Servers (NPS) that function as RADIUS Servers. Srv1 is also Microsoft SQL Server 2008 server. The network has 20 wireless access points that are configured as RADIUS clients. You need an audit strategy with the
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
Changed manually
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
15. If you need to implement Encrypting File System (EFS) and minimize amount of data transferred across and access EFS certs on any client computer
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
Create a standard secondary of domain and create standard secondary of other domain.
Enable Credential Roaming
16. You need to recommend the minimum number of logical unit numbers (LUNs) that must be provisioned for Cluster. If the cluster has an even number of nodes ...
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Implement one LUN for the quorum and another LUN for the data
Software Restriction Polices
Create a MEDV workspace
17. Recently you have installed a special application on your web sites that requires using a managed service account on the Web Servers. This application runs on a web server in each of 10 separate Active Directory domains.
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
18. Deployment solutions that will allow both the 64 bit version of Office 2010 and the 32 bit version Office 2003 to run at a same time on a Windows 7 computer - and to do that when the computer is offline - are very limited. You should recommend
AD RMS
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Microsoft Application Virtualization (AppV)
19. IF you need to automate deployment of 32 and 64 bit 2008 R2 servers
FFL Windows Server 2008 R2
DSMOD - ADUC
Then use Windows Deployment Services (WDS) on DHCP1.
Deploy the Root CA certificate to the external computers.
20. If you need to implement a Cert Services solution that automates distribution of certificates - ensures security and gives external users acess to resources that use cert-based authentication
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
dnscmd tool
Modify properties of RODC server computer account.
Additional DFS Targets
21. You need to deploy a sales application that only the sales users must have access to
Implement Distributed File System Replication (DFSR) on both servers
Deploy a GPO for the Sales OU
Converting physical servers to VMs - implementing SANn and SAN management components such as backup and site resiliency will create additional administrative overhead.
Disable Site Link Bridging from the IP properties
22. You need to ensure that your Windows 2008 R2 file servers meet the following: supports volumes larger than 2 terabytes - if a single disk fails - maintain data redundancy - if a single server fails - maintain access to all data - maximize disk throug
AD RMS
Share and Storage Management
Active Directory Users and Computers
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
23. You need to recommend management solution that will allow users to manage only certain parts of Hyper-V
Authorization Manager
Create a MEDV workspace
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
Raise the DFL to Windows Server 2008 R2.
24. To create AD Domain Services snapshot
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Ntdsutil
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
Implement Network Access Protection (NAP)
25. Striped volumes
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
Improve the performance of File Servers
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
26. You need to devise a security solution so that after 15 days the documents distributed to the members of the School Board can only be opened by the creator owners in the high school year book department. You should recommend...
Place the operating system files on one of the RAID 1 array - place the SQL transaction logs on the other RAID 1 array - and place the SQL database files on the RAID 5 array
dnscmd
Active Directory Domains and Trusts
Active Directory Right Management Services (AD RMS)
27. Engineering department has 582 Windows Server 2008 R2 servers. You need to monitor the performance of all 582 with following requirements: Create alerts when average processor usage is higher than 85% for 15 minutes; Automatically adjust the processo
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Deploy Microsoft System Center Operations Manager (SCOM)
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
Group Policy Preferences
28. To allow a specifc user or group to manage the address information for the user accounts...
Recommend Active Directory delegation
Event Subscriptions
Disable Site Link Bridging from the IP properties
Registry on users computer needs to be modified
29. Domain.com's network consists of a single forest and a single domain - all Domain Controllers - Servers and Remote Desktop Services servers are now 2008 R2. All clients are Windows 7. You need to deploy a new CRM Applicaiton to the sales team. You mu
Raise the DFL to Windows Server 2008 R2.
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
Raise the DFL to Windows Server 2008 R2.
Modify the schema of LDSInst1
30. All 2008 R2 servers and Windows 7 clients are connected to managed switches. The following are requirements for network access: only client computers that have up-to-date service packs installed can access the network; have up-to-date anti-malware so
Ntdsutil
Set-ADServiceAccount cmdlet
Implement Network Access Protection (NAP) that uses 802.1x enforcement
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
31. You have a main office and a branch office. Your Active Director domain runs at functional level Windows Server 2008. You are planning to implement file servers in each office. Your file sharing implementation must meet the following requirements: us
Implement a domain-based DFS namespace that uses replication
Attach VHD file created by Windows server backup
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
32. In Active Directory Sites and Services - what should be configured to ensure domain controllers only replicate between domain controllers in adjacent sites?
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
Use local roles options within "dsmgmt"
Disable Site Link Bridging from the IP properties
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
33. You have a couple support technicians located in branch office on Server 2008 R2 machines with the following requirements: Install server roles; stop and start services; minimize the security privileges granted to the support technicians
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
Create a MEDV workspace
Multipath I/O feature
FFL Windows Server 2008 R2
34. What utility is used to see what accounts cached on RODC?
Configure Audit Special Logon and define Special Groups
Active Directory Users and Computers
Implement File Server Resource Manager (FSRM) quotas on the desired servers
The WSUS client to retrieve updates from Microsoft Update (Do not Store updates locally)
35. What tool would you use to add a new User Principal Name (UPN) for all user accounts?
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Network Load Balancing (NLB)
A Distributed File System (DFS) namespace
Active Directory Domains and Trusts
36. All servers run 2008 R2 and all client computers run XP SP1. You need to deploy Distributed File System (DFS) to meet these: minimize cost; provide redundancy in the event a single server fails; ensure client computers reconnect to their preferred se
Active Directory Users and Computers utility
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.
37. What should be done so the application does not fail after 30 days while still keeping the password policy in mind?
Then use Windows Deployment Services (WDS)
Execute the Set-ADServiceAccount cmdlet
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
Utilize IFM (Install From Media)
38. To prevent computers that do not have the Windows Firewall enabled from connecting to the wireless access point or the physical switch - you should implement this.
Configure an audit policy by editing the default domain policy and configure Event Forwarding
Back up to an external USB drive by using Windows Server Backup
802.1.x NAP
Then configure auto enrollment of certificates and Credential Roaming.
39. To ensure that a file on a file server do not leave the organization you must implement this.
AD RMS
Include a server that runs Microsoft Office SharePoint Server 2010
New ACCOUNT STORE should be added and configured
Distributed File System (DFS) Replication
40. Help desk staff must be able to update drivers on the domain controllers at the branch office and assign them the proper
The Group Policy Management Console
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
Administrative Role Separation
1) Restart dc in DirectoryServiceRestoreMode - 2) Restory system state data to date before organizational unit was deleted - 3) Use ntdsutil utility to mark organizational unit as authoritative 4) Restart Domain Controller
41. A script fails to create user accounts. Which cmdlet should be added to the script to create user accounts?
Basic Authentication and SSL
Certificate Templates
Ensure your account - or the group is a member of the local Administrators group for that specific server.
Import-Module
42. To backup Virtual Machines
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
DISABLE slow link detection in the GPO
Winrm quickconfig
43. Your forest containts only Windows Server 2008 domain controllers. What should be done to prepare the AD domain to install Windows Server 2008 R2 DCs?
Modify the local policy to point to the Internal WSUS server
Run adprep /forestprep and adprep /domainprep
Install Hyper-V role and convert physical machines into virtual machines
Attach VHD file created by Windows server backup
44. To allow a user to administer Active Directory
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.
Use local roles options within "dsmgmt"
Add the user to the Domain Admins global group
PDC emulator with w32tm.exe
45. Tool to change Directory Services Restore Mode password on Domain Controller...
ntdsutil
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
Use CISCO IP Helper command to configure.
46. What should be done to ensure changes made to AD objects can be logged?
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
dnscmd tool
47. Domain.com recently deployed several Windows Server 2008 R2 file servers. You recently have had a problem with the file server in the sales department. On a regular basis the hard drive on the file server reaches capcity. You have to routinely perfor
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
Properties of PSO need modified
48. All users store their files in their Documents folder. Some of these are very large. You are going to implement roaming profiles for all your users. You will configure this by using a GPO. To minimize the amount of time it takes for your users to log
Modify the GPO to include folder redirection
Disable Site Link Bridging from IP Properties
Restore-ADObject cmdlet
PDC emulator with w32tm.exe
49. You have two identical print devices. You must plan a print services infrastructure where: the print services must be available - even if one print device fails and have the ability to manage the print queue from a central location
IIS Chared Configuration
Install and share a printer on a server and then enable printer pooling.
Event Log Subscriptions
AD RMS
50. Company users IPV4 and IPV6. A PC uses IPV6 and can no longer authenticate off the DC. What can be done to ensure IPV6 computers authenticate to DCs in same site...
Subnet object needs to be created
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
Group Policy Preferences
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
