Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. What should be done to identify which LDAP computers are using the largest amount of available CPU resources on a DC?
Execute the Set-ADServiceAccount cmdlet
Test-AppLockerPolicy
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).

2. To allow a specifc user or group to manage the address information for the user accounts...
Recommend Active Directory delegation
Additional DFS Targets
The WSUS client to retrieve updates from Microsoft Update (Do not Store updates locally)
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.

3. You have a main office and a branch office. Your Active Director domain runs at functional level Windows Server 2008. You are planning to implement file servers in each office. Your file sharing implementation must meet the following requirements: us
Implement a domain-based DFS namespace that uses replication
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
Group Policy Preferences
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates

4. Company.com is working on a set of corporate documents. These documents are stored in a shared folder on your corporate file server. You need to protect documents as they get created.
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Additional DFS Targets

5. Auditing the deletion of Registry keys on all Domain Controllers
Assign the application to computers in the PC OU
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)

6. You are evaluating whether to use express installation files as an update distribution mechanism. The technical requirement that
Dsmgmt
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Administrators is the minimum group membership required to complete this procedure.

7. So a user can install updates on an RODC while preventing them from logging on to any other domain controller...
dnscmd
Configure RODC for Administrator Role Separation
From Server1 - run the Create Basic Task Wizard
Use local roles options within "dsmgmt"

8. Requirements are: support the installation of SQL Server 2008; Provide redundancy for SQL services if a single server fails. To accomplish this
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Deploy the Root CA certificate to the external computers.

9. When deploying software across a large distributed enterprise you can reduce the need for clients to obtain the necessary .msi file needed for installation from over the network. Placing applications .msi file in a shared folder that is replicated us
Domain based Distributed File System (DFS) will reduce network traffic
Then configure auto enrollment of certificates and Credential Roaming.
Implement one LUN for the quorum and another LUN for the data
Role Separation

10. Two different solutions are available to help assign IP addresses to remote clients that need to VPN or Dial-in to the branch office.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

11. If you need secure method to verify validity of individual certificates and minimize network bandwidth
Remote Desktop Virtualization host - you wouldn't want all the users on the same Remote Desktop Session host to be local administrators.
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.
Folder redirection. Folder redirection is also useful when using roamin profiles.
FFL Windows Server 2008 R2

12. To allow a user to administer Active Directory
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
The Group Policy Management console
Add the user to the Domain Admins global group
Windows BitLocker Drive Encryption (Bit Locker)

13. There's an AD domain named company.com. There are 3 DC's that also hold the DNS server role which host an ADI zone named company.com. This zone is configured to update settings to Secure only Dynamic Updates. The CIO has issued a new security policy
Test-AppLockerPolicy
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
Modify zone transfer settings for company.com zone on DCA
Either implement a DHCP server at the branch office - or configure a "Static Pool" on the RRAS server itself. If deploying a DHCP server at the branch office isn't an option - then once the Remote Access Server role has been deployed you can configur

14. When one needs to audit files - folders - printers and the registry enable
Additional DFS Targets
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Improve the performance of File Servers
Configure the zone as an Activde Directory-Integrated zone.

15. File that contains the last logon time and custom attributes values for each user in your forest.
Disable Site Link Bridging from the IP properties
Set-ADServiceAccount cmdlet
Get-ADUser cmdlet
Ensure your account - or the group is a member of the local Administrators group for that specific server.

16. You have a main office that contains two domain controllers and a branch office that has an RODC. What should be done so that a user named George can install updates on the RODC while preventing George from logging on to any other domain controller?
dnscmd
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.
Use the Local Roles options with dsmgmt.
From Server1 - run the Create Basic Task Wizard

17. Tool to change Directory Services Restore Mode password on Domain Controller...
The Group Policy Management Console
Active Directory Right Management Services (AD RMS)
Implement Windows System Resource Manager (WSRM) and configure user policies
ntdsutil

18. To ensure that administrators are allowed to install USB drives on their Windows 7 computers - but NOT allow non-administrators
Configure the zone as an Activde Directory-Integrated zone.
Create a Network Load Balancing cluster.
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
Use a GPO to configure device installation restrictions

19. If you need to delegate control of server to remote admins group
djoin /requesteodj from internal server - djoin /provision from outside server/PC
Printer driver isolation
Implement File Server Resource Manager (FSRM) quotas on the desired servers
Configure RODC for Administrator Role Separation

20. ServerA collects all events that occur on domain controllers with minimum effort from Event Viewer - what should be done to ensure notified when specific event occurs on any domain controllers...
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Certificate Templates
From Server A - run Create Basic Task Wizard
Configure caching on the shared folder (offline files)

21. To ensure that recovery is possible if a file on a file server is deleted accidentally
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
Implement Shadow Copies
Windows BitLocker Drive Encryption (Bit Locker)

22. The Authorization Manager console is a Microsoft Management Console (MMC) snap-in. You can run the Authorization Manager console as a stand-alone console - or add it to any MMC console.
Implement Shadow Copies
Administrators is the minimum group membership required to complete this procedure.
Implement Distributed File System Replication (DFSR) on both servers
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication

23. Srv1 - Srv2 - Srv 3 are Network Policy Servers (NPS) that function as RADIUS Servers. Srv1 is also Microsoft SQL Server 2008 server. The network has 20 wireless access points that are configured as RADIUS clients. You need an audit strategy with the
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
Install Hyper-V role and convert physical machines into virtual machines
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary

24. To limit each user's storage space and to prevent users from storing audio and video files on the servers you should recommend
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
File Server Resource Manager (FSRM) quotas and file screens
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
Windows BitLocker Drive Encryption (Bit Locker)

25. To back up your Hyper-VMs and the Hyper-V host; for each VM -
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
1) Seize operations master roles from sever1 to server2 2) Rebuild Server as a replica domain controller 3) Transfer operations master roles from Server2 to Server1
Backup operator's domain local group
Reinstall AD DS on DCC.company.com as a WRITABLE DC.

26. All users store their files in their Documents folder. Some of these are very large. You are going to implement roaming profiles for all your users. You will configure this by using a GPO. To minimize the amount of time it takes for your users to log
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
Modify the GPO to include folder redirection

27. You need to design your WSUS infrastructure so that updates are highly available. To do so
Enable Windows Remote Management (WinRM) on each server.
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
WDS
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.

28. The company requires that only users that have a certificate can recover BitLocker keys. To support this requirement you will need to
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
The Group Policy Management console
802.1.x NAP

29. Internet access is provided through the main office to the satellite offices. You need to design a patch management for the satellite offices that meet the following requirements: WSUS updates are approved from a central location; internet traffic is
Create a standard secondary of domain and create standard secondary of other domain.
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
Win2000 Native

30. If you need to minimize the number of install images and support Win Server 2008 R2 deployment
Then use on install image file that contains a single install image.
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
Share and Storage Management
Configure event log subscriptions

31. To build a highly secure server cluster with a reduced attack surface area
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
Then configure GlobalNames zones on each domain controller.
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).

32. To restore previous version of script without taking up too much of time...
Attach VHD file created by Windows server backup
Discover the run Microsoft Baseline Security Analyzer (MBSA)
dnscmd tool
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.

33. You need a strategy for backing up your 2008 R2 file servers according to these: allows for individual file restore; allows for complete server recovery; supports scheduled backups; provides decentralized control over backups and recovery; minimizes
Implement one LUN for the quorum and another LUN for the data
Domain based DFS namespace and configure a DFS replication group
Back up to an external USB drive by using Windows Server Backup
Discover the run Microsoft Baseline Security Analyzer (MBSA)

34. SrvA has the AD LDS role and an instance named LDSInst1. You connect to this instance by using the ADSI Edit utility. When you execute the Create Object wizard there is no User object class. What should be done so you can create user objects in LDSIn
Implement the Windows Search Service.
Ldp
Modify the schema of LDSInst1
Active Directory Domains and Trusts

35. From Win7 PC - to view all account logon successes that occur on domain and consolidate to one list...
Create an e-mail account in AD DS for your RMS users.
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
Winrm quickconfig
Modify properties of RODC server computer account.

36. You need to recommend a solution for users in the branch office to access files in the main office. To minimize the amount of time it takes for users in the Branch office to access files stored on servers in the main office - and minimize the number
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Network Load Balancing (NLB) cluster

37. You need to allow a user to add a single computer to a domain - without any additional rights...
Prestage the computer account in AD
Microsoft Desktop Optimization Pack (MDOP) to your company
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
The Group Policy Management Console

38. All servers use internal storage only. Srv1 is a Server 2008 R2 file server. you need to deploy a client/server application so that it is available if a single server fails. To achieve this while minimizing cost
Modify zone transfer settings for company.com zone on DCA
Deploy a failover cluster that uses Node and File Share Disk Majority
Create ADMX and ADML files. Configure the GPO and link it to the domain.
Printer driver isolation

39. Deployment solutions that will allow both the 64 bit version of Office 2010 and the 32 bit version Office 2003 to run at a same time on a Windows 7 computer - and to do that when the computer is offline - are very limited. You should recommend
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Microsoft Application Virtualization (AppV)
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.

40. Striped volumes
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
Microsoft System Center Data Protection Manager 2010
Disable Site Link Bridging from IP Properties
Improve the performance of File Servers

41. You have few Server 2003 servers that have Terminal services installed. You also have a firewall that runs ISA Server 2006. Your remote access strategy for the terminal servers needs to meeet the following: restricts accsss to specific Remote Desktop
Then use on install image file that contains a single install image.
Configure authorization rules for Web developers on each web server
Discover the run Microsoft Baseline Security Analyzer (MBSA)
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).

42. You need a solution that allows your users to collaborate with each other and that must meet these: enables - full text indexing of all user content - remote access to files by using a Web browser - secure access to files by assigning permisions; sup
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
Include a server that runs Microsoft Office SharePoint Server 2010
Use local roles options within "dsmgmt"

43. To ensure that a group in not giving too many permissions when delegating be sure to delagate permissions at the lower level OUs vs. at the domain level for example
PowerShell 2.0
Dsmgmt
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.
Assign permissions for the Groups OU and Branch OU to the help desk technicians.

44. To minimize the amount of storage required you should recommend
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Share and Storage Management

45. To determine size of AD database file...
Restore-ADObject cmdlet
View properties of %systemroot%ntdsntds.dit
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
NOT be able to store that data on an iSCSI SAN

46. All computers are running either Windows SP2 or Windows 7. You want to audit users that are accessing the administrative shares on all the computers...
Active Directory snapshots and Tombstone reanimation
Create and deploy a logon script that runs Auditpol.
Run the Delegation of Control Wizard on the Staff OU
Domain based DFS namespace and configure a DFS replication group

47. There is a file server in each office that contains a shared folder named Data. You need to plan the data availability for the Data folder according to these requirements: if WAN link fails - the files in the Data folder must be available in all of t
Active Directory Users and Computers utility
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
Subnet object needs to be created

48. To ensure IT Help Desk Users can create GPOs in the domain and give them a GPO that contains preconfigured settings that will be used to create new GPOs -
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Place the operating system files on one of the RAID 1 array - place the SQL transaction logs on the other RAID 1 array - and place the SQL database files on the RAID 5 array
Run the Delegation of Control Wizard on the Staff OU
Deploy a GPO to the WebSrvOU

49. In order to reduce the administrative overhead typically involved with viewing event logs across multiple servers you should implement this.
Event Log Subscriptions
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations

50. If you need to encrypt all data on all disks
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Then use Windows BitLocker Drive Encryption
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Major Subjects
Tests & Exams AP CLEP DSST GRE SAT GMAT	Certifications CISSP go to https://www.isc2.org/ PMP ITIL RHCE MCTS More...	IT Skills Android Programming Data Modeling Objective C Programming Basic Python Programming Adobe Illustrator More...	Business Skills Advertising Techniques Business Accounting Basics Business Strategy Human Resource Management Marketing Basics More...
Soft Skills Body Language People Skills Public Speaking Persuasion Job Hunting And Resumes More...	Vocabulary GRE Vocab SAT Vocab TOEFL Essential Vocab Basic English Words For All Global Words You Should Know Business English More...	Languages AP German Vocab AP Latin Vocab SAT Subject Test: French Italian Survival Norwegian Survival More...	Engineering Audio Engineering Computer Science Engineering Aerospace Engineering Chemical Engineering Structural Engineering More...
Health Sciences Basic Nursing Skills Health Science Language Fundamentals Veterinary Technology Medical Language Cardiology Clinical Surgery More...	English Grammar Fundamentals Literary And Rhetorical Vocab Elements Of Style Vocab Introduction To English Major Complete Advanced Sentences Literature Homonyms More...	Math Algebra Formulas Basic Arithmetic: Measurements Metric Conversions Geometric Properties Important Math Facts Number Sense Vocab Business Math More...	Other Major Subjects Science Economics History Law Performing-arts Cooking Logic & Reasoning Trivia

Test your basic knowledge |

MSITP

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests

Major Subjects

Tests & Exams

Certifications

IT Skills

Business Skills

Soft Skills

Vocabulary

Languages

Engineering

Health Sciences

English

Math

Other Major Subjects

Browse all subjects

Browse all tests

Most popular tests