SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. To ensure that when certain users log on to any client computers in the branch office - they automatically receive the local administrator rights to the computer - and when they log off - they must lose the administrator rights
Folder redirection. Folder redirection is also useful when using roamin profiles.
Deploy Microsoft System Center Operations Manager (SCOM)
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Configure event log subscriptions
2. You need to modify DNS infrastructure to support dynamic updates to ALL DNS servers; ensure DNS service available even if single server fails; encrypt the synchronization data sent between DNS servers.
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
Configure the zone as an Activde Directory-Integrated zone.
Run auditpol and then configure the Security settings of the Domain Controllers OU.
3. To create and additional AD LDS applicaiton directory partition in existing instance...
Passive file screens
Ldp
Basic Authentication and SSL
Active Directory Users and Computers
4. When recommending the server configurations for the new failover cluster that will live in a virtual environment from Hyper-V Manager on each node - configure ...
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
Configure Firewall Group Policies and link them at the Domain level
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
5. When implementing WSUS servers at branch offices or remote campuses you can configure the WSUS server a the remote location to be in
Then use Windows BitLocker Drive Encryption
IIS Manager user account
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
Autonomous mode...This allows the local administrator to approve their own updates.
6. To create AD Domain Services snapshot
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
Ntdsutil
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Add the Windows Server Backup feature and Windows System Image recovery.
7. When deploying software across a large distributed enterprise you can reduce the need for clients to obtain the necessary .msi file needed for installation from over the network. Placing applications .msi file in a shared folder that is replicated us
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Passive file screens
Domain based Distributed File System (DFS) will reduce network traffic
8. So a user can install updates on an RODC while preventing them from logging on to any other domain controller...
Dfsrdiag
Use local roles options within "dsmgmt"
Execute the Set-ADServiceAccount cmdlet
Repadmin
9. Client computers run Windows 7 and all applications on the computers are configured to save documetns to the local Documents folder. You need a backup strategy that meets these: Back up the Documents folder for all users; minimize admin effort. To ac
Configure event log subscriptions
Implement folder redirection by using GPO. Then backup the folder redirection target.
Install the RSAT tool on their workstation to provide for more efficient network management
DISABLE slow link detection in the GPO
10. To configure Administrator Role Separation for an RODC
AD RMS
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Implement Windows System Resource Manager (WSRM)
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
11. You have a single AD domain named ad.company.com. The FFL is windows 2000 and the DFL is Windows 2000 Native. The UPN suffix company.com needs to be available for user accounts. What should be done first?
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
Add the new UPN suffix to the forest.
Deploy a GPO for the Sales OU
12. If you need to deploy a DHCP server that supports computers that start from a PXE network adapater and support Win7
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
Then use Windows Deployment Services (WDS)
Deploy it by using Group Policy Software Installation method
Create a MEDV workspace
13. To allow a specifc user or group to manage the address information for the user accounts...
File Server Resource Manager (FSRM) quotas and file screens
Recommend Active Directory delegation
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Implement Network Access Protection (NAP) that uses 802.1x enforcement
14. AD structure includes a forest with one root domain and one child domain. Child domain lists entries that start with "S-1-5-21" but no account name listed. What should be done so account names are listed?
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
DFL needs to be Windows Server 2008
15. All computers are running either Windows SP2 or Windows 7. You want to audit users that are accessing the administrative shares on all the computers...
Use the Local Roles options with dsmgmt.
Create and deploy a logon script that runs Auditpol.
1) Restart dc in DirectoryServiceRestoreMode - 2) Restory system state data to date before organizational unit was deleted - 3) Use ntdsutil utility to mark organizational unit as authoritative 4) Restart Domain Controller
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
16. Srv1 is a Server 2008 R2 file server. If you want users to be able to access shared files when they are disconnected from the network -
Configure caching on the shared folder (offline files)
Implement the Windows Search Service.
Recommend Group Policy preferences
Install the RSAT tool on their workstation to provide for more efficient network management
17. All client computers run Windows 7. You have 8 Window Server 2003 servers that run Terminal Services. There is also an ISA server that runs the firewall. You need to plan on giving remote users access to the Terminal Servers according to these requir
Active Directory Users and Computers utility
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Use a GPO to configure device installation restrictions
18. The servers in each office run Server 2008 R2 Enterprise Edition. You need to plan a failover cluster solution to service users in both offices that meet these: maintain the availability of services if a single server fails; minimize the number of se
Configure Audit Special Logon and define Special Groups
Deploy a failover cluster that contains one node in each office.
Event Viewer
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
19. To allow administrators to create and store .ADMX templates in a way that allows them to have access to the template no matter what administrative computer they logon to you must
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.
Purchase one additional Enterprise License
AD Rights Management Services
Create a Central Store
20. You have 9 2008 R2 servers that host Web apps. You need a remote mgmt strategy to manage the Web servers according to these requirements: Web developers need to be able to configure features on the Web sites; Web developers should not have full admin
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Implement the Windows Search Service.
Configure authorization rules for Web developers on each web server
Upgrading DFS to Windows Server 2008 R2
21. To minimize the amount of storage required you should recommend
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
Share and Storage Management
Prestage the computer account in AD
22. You need to consolidate 120 physical servers into 35 physical servers that run Windows Server 2008 R2 while meeting the following: maximize resource utilization; use existing hardware and software; support 64-bit child virtual machines; maintain sepa
Implement Windows BitLocker Drive Encryption (BitLocker)
Install Hyper-V role and convert physical machines into virtual machines
Administrators is the minimum group membership required to complete this procedure.
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
23. Your AD domain has an OU named Sales OU that contains the user accounts of the Sales department. A new password polity needs to be created for the Sales department that is different from the domain password policy. How is this accomplished?
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Active Directory snapshots and Tombstone reanimation
Folder redirection. Folder redirection is also useful when using roamin profiles.
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
24. To update ADRMS password...
Import-csv password.csv | Foreach {New-ADUser -Name $_.Name -Enabled $true_AccountPassword (ConvertTo_SecureString $_.Password -AsPlainText -force)}
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
AD Rights Management Services
Create an e-mail account in AD DS for your RMS users
25. Backup solutions for the files servers that support a robotic-based tape library must support the enterprise; you should recommend
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
IIS Chared Configuration
Microsoft System Center Data Protection Manager
Implement Windows System Resource Manager (WSRM)
26. Tool to montior replicaiton of group policy template files when DFL set at Windows SVR 2003
ntdsutil
Ntfrsutil
Create a Central Store
Install Hyper-V role and convert physical machines into virtual machines
27. What should be configured to ensure domain controllers only replicate between doain controllers in adjacent sites?
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Disable Site Link Bridging from IP Properties
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
ntdsutil
28. You need a solution that allows a global group to perform the following: stop and start services; change registry settings; change network settings
Create an Active Directory-Integrated zone.
Disable Site Link Bridging from IP Properties
Add the new UPN Suffix to the forest
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.
29. There's an AD domain named company.com. There are 3 DC's that also hold the DNS server role which host an ADI zone named company.com. This zone is configured to update settings to Secure only Dynamic Updates. The CIO has issued a new security policy
Deploy a GPO to the WebSrvOU
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
30. You need a strategy for backing up your 2008 R2 file servers according to these: allows for individual file restore; allows for complete server recovery; supports scheduled backups; provides decentralized control over backups and recovery; minimizes
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
Windows System Resource Manager (WSRM)
Back up to an external USB drive by using Windows Server Backup
31. IF you need to automate deployment of 32 and 64 bit 2008 R2 servers
Then use Windows Deployment Services (WDS) on DHCP1.
Place the operating system files on one of the RAID 1 array - place the SQL transaction logs on the other RAID 1 array - and place the SQL database files on the RAID 5 array
Active Directory snapshots and Tombstone reanimation
Remote Desktop Virtualization host - you wouldn't want all the users on the same Remote Desktop Session host to be local administrators.
32. All DCs have been upgraded from Windows Server 2003 to Windows Server 2008 R2. What should be done to ensure the Sysvol share replicates by using DFS Replicaiton (DFS-R)?
Raise the DFL to Windows Server 2008 R2.
File Server Resource Manager (FSRM) quotas and file screens
View properties of %systemroot%ntdsntds.dit
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.
33. You need to implement read only copies of files at several locations. You currently have DFS for 2008 deployed. You should recommend this.
Properties of PSO need modified
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
Upgrading DFS to Windows Server 2008 R2
Assign the application to all client computers by using a GPO.
34. You have been tasked with backing up all the GPOs in the domain. The IT manager also wants you to minimize the size of the backup. You decide to use...
Properties of PSO need modified
Use a GPO to configure device installation restrictions
Create a new Password Settings Object (PSO) for the IT users.
The Group Policy Management console
35. hr.domain.com domain has an OU named Sales...You need to give UserA administrative rights so that he can manage Group Policies for the Sales OU while meeting the following requirments: UserA must be able to create and configure Group Polices in hr.do
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
CAPublishGP group should have the Manage CA permission.
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
Winrm quickconfig
36. you have fewer Server 2003 servers that have Terminal Services installed. you also have a firewall that runs ISA Server 2006. Your remote access strategy for the terminal servers needs to meet the following: encrypts all remote connections to the ter
Windows System Resource Manager (WSRM)
Recommend Group Policy preferences
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
37. You are about to deploy 1 -000 Windows 7 desktops and your company has a web based application that only runs correctly when using IE 6. You should use
CAPublishGP group should have the Manage CA permission.
MEDV to deploy virtual desktops
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
38. You need an Active Directory strategy that supports the recovery of deleted objects for up to one year after the date of deletion. to accomplish this
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Increase the tombstone lifetime for the forest.
Dsmgmt
Create a new Password Settings Object (PSO) for the IT users.
39. You need to ensure that the guest account on all servers is disabled to
Configure offline files and enable manual caching
Modify the schema of LDSInst1
Discover the run Microsoft Baseline Security Analyzer (MBSA)
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
40. WSUS infrastructure must meet the following: distributed from a central location - all computers must continue to receive updates in the event that a server fails
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
A Distributed File System (DFS) namespace
41. Minimal FFL needed to deploy an RODC that runs Windows Server 2008 R2...
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
Windows Server 2003
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
42. You need to recommend a solution for users in the branch office to access files in the main office. To minimize the amount of time it takes for users in the Branch office to access files stored on servers in the main office - and minimize the number
Run the Delegation of Control Wizard on the Staff OU
Test-AppLockerPolicy
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
43. New Password Policy needs to be created for OU different from domain password policy
Disable Site Link Bridging from IP Properties
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.
Domain based DFS namespace and configure a DFS replication group
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
44. IE can be a security concern - however you can take advantage of Group policies to lock down IE as much as possible
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
45. If CA PKI needs to support Suite B hashing and encryption algorithms and store keys in AD
Add-ADFineGrainedPasswordPolicySubject cmdlet
Set-ADServiceAccount cmdlet
Then install new Server 2008 R2 Enterprise subordinate CA.
Assign the application to all client computers by using a GPO.
46. To minimize the amount of storage used for virtual machines in a Virtual desktop pool the VHD's should be
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
47. Domain.com's network has a single forest and single domain. Users currently share files using the corporate FTP server and DropBox. You need a better solution for managing document and allowing access. The solution must meet the following: allow for
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
Deploy Microsoft System Center Operations Manager (SCOM)
Set-ADServiceAccount cmdlet
Microsoft SharePoint Foundation 2010
48. If subnets are connected by CISCO router that is RFC-1542 compliant
Windows BitLocker Drive Encryption (Bit Locker)
Use CISCO IP Helper command to configure.
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)
Test-AppLockerPolicy
49. You have two identical print devices. You must plan a print services infrastructure where: the print services must be available - even if one print device fails and have the ability to manage the print queue from a central location
Software Restriction Polices
Install and share a printer on a server and then enable printer pooling.
Restore-ADObject cmdlet
Winrm quickconfig
50. To delegate authority to users to manage only certain areas in Hyper-V use the
A Distributed File System (DFS) namespace
Prestage the computer account in AD
Authorization Manager role assignment
Configure caching on the shared folder and configure offline files to use encryption
Sorry!:) No result found.
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests