SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Your office has no Internet connection. Your data provisioning solution must meet these requirements: users that are not connected to the network must be able to access files and folders on the network; unauthorized users must not have access to the
Configure caching on the shared folder and configure offline files to use encryption
DFL needs to be Windows Server 2008
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Implement File Server Resource Manager (FSRM) quotas on the desired servers
2. All users store their files in their Documents folder. Some of these are very large. You are going to implement roaming profiles for all your users. You will configure this by using a GPO. To minimize the amount of time it takes for your users to log
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
Modify the GPO to include folder redirection
Recommend Active Directory delegation
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
3. Several employees say they can't get on domain with "password incorrect" message. What utility tool can be used to identify issue and also ensure users can log into domain?
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Implement Distributed File System Replication (DFSR) on both servers
Configure caching on the shared folder (offline files)
Repadmin
4. hr.domain.com domain has an OU named Sales...You need to give UserA administrative rights so that he can manage Group Policies for the Sales OU while meeting the following requirments: UserA must be able to create and configure Group Polices in hr.do
DFL needs to be Windows Server 2008
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
DSMOD
Modify zone transfer settings for company.com zone on DCA
5. Engineering department has 582 Windows Server 2008 R2 servers. You need to monitor the performance of all 582 with following requirements: Create alerts when average processor usage is higher than 85% for 15 minutes; Automatically adjust the processo
Deploy Microsoft System Center Operations Manager (SCOM)
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
djoin /requesteodj from internal server - djoin /provision from outside server/PC
6. All servers run 2008 R2 and all client computers run Windows 7. Server users have laptops and work from home. You need to plan an infrastructure to secure sensitive files according to these requirements: files must be - stored in an encrypted format;
Attach VHD file created by Windows server backup
Store all sensitive files in EFS encrypted folders and require home users to access the files by using SSTP
Disable Site Link Bridging from IP Properties
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
7. If you need to delegate control of server to remote admins group
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Configure authorization rules for Web developers on each web server
Configure RODC for Administrator Role Separation
8. Jack and Jill go up the hill - both with a buck and a quarter
Raise the DFL to Windows Server 2008 R2.
Jill came down with 2.50.
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Enable - ADoptionalFeature cmdlet
9. What document management solution allows you to keep multiple versions of documents and automatically apply access policies to these documents? You should recommend
Dsmgmt
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
Use a GPO to configure device installation restrictions
10. Can be used to install the Windows RE on existing servers
Dsmgmt
WDS
Configure separate application pools for each application
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
11. Your data recovery strategy for your Server 2008 R2 file server must meet the followign requirements: All data volumes on the server must be backed up daily; backups must have a minimal impact on performance; if a disk fails - the recovery strategy m
Raise the DFL to Windows Server 2008 R2.
802.1.x NAP
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
12. You have a forest with two domains - all servers run 2008 R2 - and all DCs contain DNS. A member server has a primary zone for test.company.com. What should be done so all DCs can resolve names from test.company.com zone?
A relying party trust should be created.
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
13. Certain apps may require that the end user have the ability to make changes to the application - however some applications may allow these changes to be made in the registry. To give you as the administrator the ability to make changes as necessary -
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Group Policy Preferences
MEDV to deploy virtual desktops
Domain based Distributed File System (DFS) namespace and DFS Replication.
14. If subnets are connected by CISCO router that is RFC-1542 compliant
Microsoft Application Virtualization (AppV)
Then use on install image file that contains a single install image.
Use CISCO IP Helper command to configure.
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
15. You have several Windows 2000 Servers that have a custom application installed. However - the apps are incompatible with each other and with Windows Server 2008 R2 - but they consume less than 10% of system resources. There is a policy that states al
Use the Local Roles options with dsmgmt.
PDC emulator with w32tm.exe
Raise the DFL to Windows Server 2008 R2.
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.
16. Your DFS deployment needs to meet these requirements: minimize the bandwidth required to replicate data; ensure users see only folders to which they have access; ensure users can access the data locally.
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
Windows Server 2003
Then use on install image file that contains a single install image.
Implement Distributed File System Replication (DFSR) on both servers
17. BLANK BLANK is a computer Group Policy setting that can be for example; Linked at an OU where public kiosks/remote desktop session host computers reside.
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Install Windows Server Backup and modify the Windows firewall settings
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie
18. You have two identical print devices. You must plan a print services infrastructure where: the print services must be available - even if one print device fails and have the ability to manage the print queue from a central location
Install and share a printer on a server and then enable printer pooling.
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
The WSUS client to retrieve updates from Microsoft Update (Do not Store updates locally)
Your machine and remote desktops
19. When taking files offline there is always a security risk. Corporate files now reside on a laptop that will leave the confines of the corporate office. When taking files offline it is best practice to help protect these files using
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
Add the user to the Domain Admins global group
Encrypting File System (EFS). This can be enabled locally or through a GPO.
Purchase one additional Enterprise License
20. To ensure that a file on a file server do not leave the organization you must implement this.
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
AD RMS
Use Netsh tool from administrator's computer.
Service user account for AD LDS
21. The Computer Management snap-in allows you to create shares both on...
Registry on users computer needs to be modified
The Group Policy Management Console
Windows Deployment Services (WDS)
Your machine and remote desktops
22. To minimize the amount of storage required you should recommend
Use the Local Roles options with dsmgmt.
Modify the local policy to point to the Internal WSUS server
Share and Storage Management
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
23. Deployment of 10 WSUS servers across 10 branch office will take place over a three month period. The bandwidth between the corporate office and the branch offices must be minimized due to budget contraints within the company. Admins in the corporate
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office
MEDV to deploy virtual desktops
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
Role Separation
24. If you need to minimize the bandwidth for installation
Utilize IFM (Install From Media)
Dsmgmt
Role Separation
Microsoft System Center Data Protection Manager 2010
25. to protect file servers and hard disks that may be at risk of being accessed or stolen
Implement Windows BitLocker Drive Encryption (BitLocker)
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
26. The company requires that only users that have a certificate can recover BitLocker keys. To support this requirement you will need to
Winrm quickconfig
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Software Restriction Polices
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
27. You need a solution that meets policy while minimizing hardware and software costs
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
Create a new Password Settings Object (PSO) for the IT users.
Recommend GPT and basic disks
Refresh the zone on DNS2
28. 4 steps to perform offline Defragmentation of AD database...
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
Ldp
29. When implementing a Hyper-V environment the benefits are enormous - however there are certain aspects of virtualization that can create some additional administrative overhead that you can not have in a pure physical environment for example
Converting physical servers to VMs - implementing SANn and SAN management components such as backup and site resiliency will create additional administrative overhead.
Deploy a failover cluster that contains one node in each office.
Then use on install image file that contains a single install image.
Ntdsutil
30. Audit account management policy settings and Audit directory services access settings are enabled for the entire domain. What should be done to ensure that changes made to AD objects can be logged? The logged changes must include the old and new valu
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
Run auditpol and then configure the Security settings of the Domain Controllers OU.
Then use Windows Deployment Services (WDS) on DHCP1.
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
31. Help desk staff must be able to update drivers on the domain controllers at the branch office and assign them the proper
Domain based Distributed File System (DFS) namespace and DFS Replication.
Configure the zone as an Activde Directory-Integrated zone.
Administrative Role Separation
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
32. Recently it was decided to increase the performance of the company's Web Servers by deploying a NLB Web server farm. You need to ensure that the content is easily replicated across all the servers in the farm. You should implement this.
Add the new UPN suffix to the forest.
Distributed File System (DFS) Replication
Dynamically expanding VHD's
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
33. To control access to resources using WSRM and to help prevent memory leaks from monopolizing your web server
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Configure separate application pools for each application
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
34. Need to access some resources in another domain that is part of another forest...What trust is created?
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Incoming external trust
Configure caching on the shared folder (offline files)
35. You need to deploy a sales application that only the sales users must have access to
Deploy a GPO for the Sales OU
Create an e-mail account in AD DS for your RMS users.
Configure Firewall Group Policies and link them at the Domain level
Enable Windows Remote Management (WinRM) on each server.
36. All client computers run Windows 7. You have 8 Window Server 2003 servers that run Terminal Services. There is also an ISA server that runs the firewall. You need to plan on giving remote users access to the Terminal Servers according to these requir
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office
Active Directory Users and Computers
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
37. to ensure that server backups can be performed remotely from your backup server on your company file server you should perform these two actions
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
A relying party trust should be created.
Active Directory Right Management Services (AD RMS)
Install Windows Server Backup and modify the Windows firewall settings
38. RDSrv1 is a Server 2008 R2 server with Remote Desktop Services installed. You are planning to establish a Terminal Server Farm that must meet these requirements: New users automatically connect to the terminal server that has the fewest active sessio
Service user account for AD LDS
Converting physical servers to VMs - implementing SANn and SAN management components such as backup and site resiliency will create additional administrative overhead.
Implement a Remote Desktop Connection Broker (RD Connection Broker)
Multipath I/O feature
39. When service account passwords need to be changed for SQL they should be...
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
Changed manually
Configure RODC for Administrator Role Separation
Implement Windows System Resource Manager (WSRM)
40. Users need to be warned when uploading or copying MP3 files onto a corporate network share. You should implement this.
Implement one LUN for the quorum and another LUN for the data
Passive file screens
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Autonomous mode...This allows the local administrator to approve their own updates.
41. If you need to be able to create shared folders on Server 2008 R2
Ensure your account - or the group is a member of the local Administrators group for that specific server.
WDS
Storage manager for SANs
Domain based DFS namespace and configure a DFS replication group
42. To be able to remotely administer DNS servers that run on the Server Core installation of Server 2008 R2 - via MMC console
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Microsoft Desktop Optimization Pack (MDOP)
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
43. To enable the AD Recycle Bin
Enable - ADoptionalFeature cmdlet
Active Directory Users and Computers utility
ntdsutil
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
44. You have 159 server 2008 R2 servers that must meet the following: notification by e-mail to the administrator if error occurs on any server with minimum effort...
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Add the new UPN Suffix to the forest
Recommend GPT and basic disks
Create an e-mail account in AD DS for your RMS users.
45. Your company recently created a corporate web site using their own internal developers. Recently your CIO has decided that it would be best that some of the work be done by an outside contractor - and to allow that contractor to only the specific sec
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
802.1.x NAP
Add the user to the Domain Admins global group
IIS Manager user account
46. What role to keep same time as an external server?
Install the RSAT tool on their workstation to provide for more efficient network management
PDC emulator with w32tm.exe
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Upgrading DFS to Windows Server 2008 R2
47. To ensure that the SQL Servers can fail over autoatically and support 2 TB drives
Recommend GPT and basic disks
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office
Group Policy Preferences
48. You need a strategy for backing up your 2008 R2 file servers according to these: allows for individual file restore; allows for complete server recovery; supports scheduled backups; provides decentralized control over backups and recovery; minimizes
Back up to an external USB drive by using Windows Server Backup
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.
Ensure your account - or the group is a member of the local Administrators group for that specific server.
49. If your company has the need to create administrative templates (.admx) files for Active Directory runnin on server 2008 R2 you should recommend...
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Implement the Windows Search Service.
Use CISCO IP Helper command to configure.
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
50. What should be used to montior the replication of group policy template files when your DFL is set at Windows Server 2008 R2?
Dfsrdiag
Create a MEDV workspace
djoin /requesteodj from internal server - djoin /provision from outside server/PC
Upgrading DFS to Windows Server 2008 R2