SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Requirements are: support the installation of SQL Server 2008; Provide redundancy for SQL services if a single server fails. To accomplish this
Microsoft Desktop Optimization Pack (MDOP) to your company
Active Directory Users and Computers
Add George to the Domain Admins group.
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
2. What should be done to ensure changes made to AD objects can be logged?
From Server1 - run the Create Basic Task Wizard
Create ADMX and ADML files. Configure the GPO and link it to the domain.
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
Autonomous mode...This allows the local administrator to approve their own updates.
3. When deploying servers one would have to include some kind of process that would ultimately join the servers to the domain - this typically would require a script and a reboot. to help eliminate some of the steps involved and automate the deployment
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Get-ADUser cmdlet
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
Offline domain join
4. GPO's can be difficult to manage; you need a solution that will include version tracking and offline modifications. You should recommend
Install the RSAT tool on their workstation to provide for more efficient network management
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Microsoft Desktop Optimization Pack (MDOP) to your company
5. To determine size of AD database file...
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
View properties of %systemroot%ntdsntds.dit
6. You need to rebuild a server and reinstall the operating system - and rollback all operations master roles to original state...
1) Seize operations master roles from sever1 to server2 2) Rebuild Server as a replica domain controller 3) Transfer operations master roles from Server2 to Server1
Configure Firewall Group Policies and link them at the Domain level
ntdsutil
Converting physical servers to VMs - implementing SANn and SAN management components such as backup and site resiliency will create additional administrative overhead.
7. You have two identical print devices. You must plan a print services infrastructure where: the print services must be available - even if one print device fails and have the ability to manage the print queue from a central location
Data Recovery Agent
Modify the local policy to point to the Internal WSUS server
Install and share a printer on a server and then enable printer pooling.
net stop ntds
8. When service account passwords need to be changed for SQL they should be...
Changed manually
Deploy a GPO for the Sales OU
dnscmd tool
Configure block inheritance on the IT OU
9. To ensure that a file on a file server do not leave the organization you must implement this.
AD RMS
Add the Windows Server Backup feature and Windows System Image recovery.
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Autonomous mode...This allows the local administrator to approve their own updates.
10. Your AD environment has an Enterprise Root CA. What 2 actions should you take to ensure that only administrators can sign code?
Install Windows Server Backup and modify the Windows firewall settings
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
Modify zone transfer settings for company.com zone on DCA
11. To configure AD FS so tokens contain information from Active Directory domain...
New ACCOUNT STORE should be added and configured
Configure authorization rules for Web developers on each web server
Active Directory Users and Computers
Passive file screens
12. SrvA has Remote Desktop Services role installed. You notice that users are consuming more than 40% of CPU resources. You want to prevent them from consuming more than 10% - however - administrators should not be limited.
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.
Implement Windows System Resource Manager (WSRM) and configure user policies
Share and Storage Management
Recommend Offline Files
13. What should be modified so you can use the nslookup utility to list all SRV records for your domain?
Zone transfer settings
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
Install Windows Server Backup and modify the Windows firewall settings
Role Separation
14. The ability to set quotas at the volume level has been around for many years - however if you have have servers that need quotas - but instead of placing the quota at the volume level you need to place the quota on an individual folder -
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Implement File Server Resource Manager (FSRM) quotas on the desired servers
Configure event log subscriptions
The Group Policy Management Console
15. If a user needs to access a new cert template when logging on to any client computer in domain and you need to automatically install on each client computer a cert
Restore-ADObject cmdlet
Incoming external trust
Then configure auto enrollment of certificates and Credential Roaming.
Add the user to the Domain Admins global group
16. When taking files offline there is always a security risk. Corporate files now reside on a laptop that will leave the confines of the corporate office. When taking files offline it is best practice to help protect these files using
A Distributed File System (DFS) namespace
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Encrypting File System (EFS). This can be enabled locally or through a GPO.
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
17. FFL is...
Increase the tombstone lifetime for the forest.
Either implement a DHCP server at the branch office - or configure a "Static Pool" on the RRAS server itself. If deploying a DHCP server at the branch office isn't an option - then once the Remote Access Server role has been deployed you can configur
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
Win2000
18. You plan to deploy 12 file servers. All computers and servers connect to Ethernet switches. Your data storage solution must meet these: maximizes performance and fault tolerance; allocates storage to the servers as needed; utilizes the existing netwo
Dsmgmt
Recommend Group Policy preferences
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
Configure Firewall Group Policies and link them at the Domain level
19. So a user can install updates on an RODC while preventing them from logging on to any other domain controller...
Offline domain join
Discover the run Microsoft Baseline Security Analyzer (MBSA)
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Use local roles options within "dsmgmt"
20. What Function Level (FL) needs to be in place to enable AD Recycle Bin?
Assign the application to all client computers by using a GPO.
dnscmd
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.
FFL Windows Server 2008 R2
21. What should be configured to ensure domain controllers only replicate between doain controllers in adjacent sites?
Role Separation
Enable - ADoptionalFeature cmdlet
Disable Site Link Bridging from IP Properties
Create a MEDV workspace
22. You need to generate a report on the status of software updates for your Windows 7 client computers with the following requirements: display all of the operating system updates and Microsoft application updates that installed successfully and failed;
DFL needs to be Windows Server 2008
Configure the zone as an Activde Directory-Integrated zone.
Recommend Offline Files
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
23. To allow all users in the forest to be able to resolve the names in the Forest Root Partition
Ntdsutil
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Microsoft SharePoint Foundation 2010
24. If you need to encrypt all data on all disks
Autonomous mode...This allows the local administrator to approve their own updates.
Implement Network Access Protection (NAP) that uses 802.1x enforcement
Then use Windows BitLocker Drive Encryption
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
25. You are about to deploy a distributed database appliation that will run on multiple 2008 R2 servers. This deployment needs to follow these requirements: uses the existing network infrastructure; uses standard Windows management tools; allocates stora
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Purchase one additional Enterprise License
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
26. You need to recommend management solution that will allow users to manage only certain parts of Hyper-V
Share and Storage Management
Authorization Manager
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.
Implement Windows System Resource Manager (WSRM) and configure user policies
27. You need a strategy for backing up your 2008 R2 file servers according to these: allows for individual file restore; allows for complete server recovery; supports scheduled backups; provides decentralized control over backups and recovery; minimizes
Back up to an external USB drive by using Windows Server Backup
ntdsutil
Remote Desktop Virtualization host - you wouldn't want all the users on the same Remote Desktop Session host to be local administrators.
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
28. To ensure that the SQL Servers can fail over autoatically and support 2 TB drives
Recommend GPT and basic disks
Implement Windows BitLocker Drive Encryption (BitLocker)
Deploy a failover cluster that contains one node in each office.
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
29. All 2008 R2 servers and Windows 7 clients are connected to managed switches. The following are requirements for network access: only client computers that have up-to-date service packs installed can access the network; have up-to-date anti-malware so
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
Run auditpol and then configure the Security settings of the Domain Controllers OU.
Implement Network Access Protection (NAP) that uses 802.1x enforcement
CAPublishGP group should have the Manage CA permission.
30. If you need to minimize amount of time and impact of 50 simultaneous Win7 installations
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
1) Restart dc in DirectoryServiceRestoreMode - 2) Restory system state data to date before organizational unit was deleted - 3) Use ntdsutil utility to mark organizational unit as authoritative 4) Restart Domain Controller
Win2000
31. Capture all replication errors from all your DCs to a central location...
Site
Configure event log subscriptions
Network Load Balancing (NLB)
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
32. All computers are running either Windows SP2 or Windows 7. You want to audit users that are accessing the administrative shares on all the computers...
Microsoft Application Virtualization (AppV)
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
Create and deploy a logon script that runs Auditpol.
Configure authorization rules for Web developers on each web server
33. To backup GPO's in domain and minimize bakcup...
Add the Windows Server Backup feature and Windows System Image recovery.
Ntfrsutil
The Group Policy Management Console
Deploy it by using Group Policy Software Installation method
34. You have 159 server 2008 R2 servers that must meet the following: notification by e-mail to the administrator if error occurs on any server with minimum effort...
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
Discover the run Microsoft Baseline Security Analyzer (MBSA)
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
35. To ensure that administrators are allowed to install USB drives on their Windows 7 computers - but NOT allow non-administrators
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
Implement Distributed File System Replication (DFSR) on both servers
Use a GPO to configure device installation restrictions
36. If you need to minimize the bandwidth for installation
Create a new Password Settings Object (PSO) for the IT users.
Utilize IFM (Install From Media)
Configure caching on the shared folder and configure offline files to use encryption
Implement one LUN for the quorum and another LUN for the data
37. You have administrative templates that another company wants to use on their domain. How would you configure the other company's domain to use these administrative templates?
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
38. If subnets are connected by CISCO router that is RFC-1542 compliant
Raise the DFL to Windows Server 2008 R2.
Group Policy Preferences
Use CISCO IP Helper command to configure.
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
39. To allow administrators to create and store .ADMX templates in a way that allows them to have access to the template no matter what administrative computer they logon to you must
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
Autonomous mode...This allows the local administrator to approve their own updates.
Create a Central Store
Active Directory Domains and Trusts
40. IF you need to automate deployment of 32 and 64 bit 2008 R2 servers
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Then use Windows Deployment Services (WDS) on DHCP1.
41. Within your company you have a server that will be running 8 VMs but only 6 concurrently. Your company has already purchased an Enterprise license for the server.
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
Network Load Balancing (NLB)
Group Policy Preferences
Purchase one additional Enterprise License
42. With Group Polices having over 8 -000 different settings - the possibility of conflicting policies - and security filters you should track multiple versions and offline modifications to GPOs. You should recommend
Backup operator's domain local group
Microsoft Desktop Optimization Pack (MDOP)
Share and Storage Management
Software Restriction Polices
43. With AppLocker settings - which Windows PowerShell cmdlet would be used to identify whether a specific application file is allowed to run on a computer?
Modify properties of RODC server computer account.
Test-AppLockerPolicy
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
Network Load Balancing (NLB)
44. If you need to allow an external partner's computer to access internal network resources by using SSTP
Implement Windows System Resource Manager (WSRM) and configure user policies
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
Deploy the Root CA certificate to the external computers.
Basic Authentication and SSL
45. Recently it was decided to increase the performance of the company's Web Servers by deploying a NLB Web server farm. You need to ensure that the content is easily replicated across all the servers in the farm. You should implement this.
Distributed File System (DFS) Replication
Test-AppLockerPolicy
Ntfrsutil
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
46. DCA is DC and DNS server that holds ADI zone for company.com DNSB is member server that has DNS server role installed. What should be done so DNSB can get zone updates from DCA?
Ldp
Execute the Set-ADServiceAccount cmdlet
Modify zone transfer settings for company.com zone on DCA
Group Policy Preferences
47. In AD Sites and Service - which level is Universal Group Membership caching activated / deactivated?
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Windows System Resource Manager (WSRM)
Then use Windows Deployment Services (WDS)
Site
48. SiteA is an existing AD site. You just created a new site in AD named SiteB. AD replication needs to be configured betwen the two sites so you install a new DC and you careatd a site link between the two sites. What should be done next?
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
Event Log Subscriptions
Then use Windows Deployment Services (WDS)
Configure RODC for Administrator Role Separation
49. There is a file server in each office that contains a shared folder named Data. You need to plan the data availability for the Data folder according to these requirements: if WAN link fails - the files in the Data folder must be available in all of t
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Site
50. To ensure that when certain users log on to any client computers in the branch office - they automatically receive the local administrator rights to the computer - and when they log off - they must lose the administrator rights
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Data Recovery Agent
A relying party trust should be created.
Offline domain join
Sorry!:) No result found.
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests