SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. You need to recommend management solution that will allow users to manage only certain parts of Hyper-V
Configure block inheritance on the IT OU
Authorization Manager
Use local roles options within "dsmgmt"
Implement File Server Resource Manager (FSRM) quotas on the desired servers
2. to minimize the attack surface area of the servers and reduce licensing cost you should recommend
Configure Audit Special Logon and define Special Groups
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
3. when deploying Virtual Machines in a Remote Desktop pool you can minimize the amount of disk space used by the VM and reduced the admin effort by deploying this.
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
4. File that contains the last logon time and custom attributes values for each user in your forest.
Add-ADFineGrainedPasswordPolicySubject cmdlet
Back up to an external USB drive by using Windows Server Backup
Implement folder redirection by using GPO. Then backup the folder redirection target.
Get-ADUser cmdlet
5. To allow a specifc user or group to manage the address information for the user accounts...
Raise the DFL to Windows Server 2008 R2.
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Implement Windows BitLocker Drive Encryption (BitLocker)
Recommend Active Directory delegation
6. What document management solution allows you to keep multiple versions of documents and automatically apply access policies to these documents? You should recommend
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
MEDV to deploy virtual desktops
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
Microsoft Application Virtualization (AppV)
7. If you need to implement a Cert Services solution that automates distribution of certificates - ensures security and gives external users acess to resources that use cert-based authentication
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
Creating a data collector set that kick off a scritp that either move or delete files.
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
8. Domain.com recently deployed several Windows Server 2008 R2 file servers. You recently have had a problem with the file server in the sales department. On a regular basis the hard drive on the file server reaches capcity. You have to routinely perfor
Then configure auto enrollment of certificates and Credential Roaming.
FILES option within Ntdsutil
DISABLE slow link detection in the GPO
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
9. You have a main office and a branch office. Your Active Director domain runs at functional level Windows Server 2008. You are planning to implement file servers in each office. Your file sharing implementation must meet the following requirements: us
Implement a domain-based DFS namespace that uses replication
Add George to the Domain Admins group.
A relying party trust should be created.
Upgrading DFS to Windows Server 2008 R2
10. When deploying group polices we want to configure them so that they are applied as quickly as possible. One way this can be done is if the policy only consists of computer settings. If this is the case we can do this.
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent
Domain based DFS namespace and configure a DFS replication group
Create an e-mail account in AD DS for your RMS users
Passive file screens
11. If the companies support staff is currently using Remote Desktop to connect to the servers in the data center to perform all management tasks - it would be wise to have them instead
Prestage the computer account in AD
Assign the application to computers in the PC OU
Install the RSAT tool on their workstation to provide for more efficient network management
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
12. You have 9 2008 R2 servers that host Web apps. You need a remote mgmt strategy to manage the Web servers according to these requirements: Web developers need to be able to configure features on the Web sites; Web developers should not have full admin
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Restore-ADObject cmdlet
Modify properties of RODC server computer account.
Configure authorization rules for Web developers on each web server
13. To ensure that the branch office with its own high speed internet connection receives the exact same updates as the corporate office you should recommend this.
Encrypting File System (EFS). This can be enabled locally or through a GPO.
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)
14. AD CS is configured on Server1 as a standalone CA. What two actions should you do to audit changes to the CA configuration settings and the CA security settings?
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.
Encrypting File System (EFS). This can be enabled locally or through a GPO.
15. New password settings object (PSO) created and needs to be applied to user
FFL Windows Server 2008 R2
Properties of PSO need modified
Install Hyper-V role and convert physical machines into virtual machines
Configure an audit policy by editing the default domain policy and configure Event Forwarding
16. To minimize the amount of storage used for virtual machines in a Virtual desktop pool the VHD's should be
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
17. To modify several user accounts to a new UPN suffix
Active Directory Users and Computers utility
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
Modify zone transfer settings for company.com zone on DCA
Add the new UPN suffix to the forest.
18. To backup GPO's in domain and minimize bakcup...
Recommend Offline Files
File Server Resource Manager (FSRM) quotas and file screens
NOT be able to store that data on an iSCSI SAN
The Group Policy Management Console
19. You have 5 windows Server 2008 R2 servers that are configured with the File Server role. you need to monitor the file servers with the following requirements in mind: administrators must be able to create reports that display folder usage by differen
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
20. The ability to set quotas at the volume level has been around for many years - however if you have have servers that need quotas - but instead of placing the quota at the volume level you need to place the quota on an individual folder -
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent
Configure block inheritance on the IT OU
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Implement File Server Resource Manager (FSRM) quotas on the desired servers
21. There's an AD domain named company.com. There are 3 DC's that also hold the DNS server role which host an ADI zone named company.com. This zone is configured to update settings to Secure only Dynamic Updates. The CIO has issued a new security policy
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
Configure an audit policy by editing the default domain policy and configure Event Forwarding
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
22. Srv1 - Srv2 - Srv 3 are Network Policy Servers (NPS) that function as RADIUS Servers. Srv1 is also Microsoft SQL Server 2008 server. The network has 20 wireless access points that are configured as RADIUS clients. You need an audit strategy with the
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.
Authorization Manager role assignment
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
dnscmd
23. You need to devise a security solution so that after 15 days the documents distributed to the members of the School Board can only be opened by the creator owners in the high school year book department. You should recommend...
Active Directory Right Management Services (AD RMS)
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
Create and deploy a logon script that runs Auditpol.
24. If you want to implement BitLocker and store recovery informaiton in a central location
Test-AppLockerPolicy
Microsoft Desktop Optimization Pack (MDOP) to your company
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
Group Policy Preferences
25. You need to allow a user to add a single computer to a domain - without any additional rights...
Create an e-mail account in AD DS for your RMS users
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
Microsoft System Center Data Protection Manager 2010
Prestage the computer account in AD
26. You need to design patch management for satellite offices that meet the following requirements: WSUS updates are approved independently for each satellite office; Internet traffic is minimized. To accomplish
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Then install new Server 2008 R2 Enterprise subordinate CA.
Dsmgmt
Certificate Templates
27. Policy states that domain controllers cannot contain optical drives. You need a backup and recovery plan that restores the domain controllers in the event of a catastrophic server failure. To accomplish this
Autonomous mode...This allows the local administrator to approve their own updates.
Install the RSAT tool on their workstation to provide for more efficient network management
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
28. You need to recommend a solution for users in the branch office to access files in the main office. To minimize the amount of time it takes for users in the Branch office to access files stored on servers in the main office - and minimize the number
Create a Central Store
Import-Module
dnscmd tool
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
29. To backup to tape/robotic tape and to backup VMs you must use...
Active Directory Domains and Trusts
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
Microsoft System Center Data Protection Manager 2010
Domain based Distributed File System (DFS) namespace and DFS Replication.
30. Two different solutions are available to help assign IP addresses to remote clients that need to VPN or Dial-in to the branch office.
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
31. 4 steps to perform offline Defragmentation of AD database...
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
PowerShell 2.0
Implement Distributed File System Replication (DFSR) on both servers
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
32. to ensure that users can ONLY view the list of DFS Targets to which they are assigned permissions
Create and deploy a logon script that runs Auditpol.
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Install the RSAT tool on their workstation to provide for more efficient network management
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
33. Your data recovery strategy for your Server 2008 R2 file server must meet the followign requirements: All data volumes on the server must be backed up daily; backups must have a minimal impact on performance; if a disk fails - the recovery strategy m
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Implement Windows BitLocker Drive Encryption (BitLocker)
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
34. To ensure that when certain users log on to any client computers in the branch office - they automatically receive the local administrator rights to the computer - and when they log off - they must lose the administrator rights
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
Share and Storage Management
Refresh the zone on DNS2
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
35. You need a tool that will help you manage LUN's for both iSCSI and Fibre Channel to support the provision of Virtual disks. You should recommend this.
Raise the DFL to Windows Server 2008 R2.
DSMOD - ADUC
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
Storage manager for SANs
36. to make shares at a remote location available to users you should implement this.
PDC emulator with w32tm.exe
Install the RSAT tool on their workstation to provide for more efficient network management
Domain based Distributed File System (DFS) namespace and DFS Replication.
Encrypting File System (EFS). This can be enabled locally or through a GPO.
37. George needs to administer a read-only domain controller named Server1 - but to do this with minimal permissions assigned to him. What tool should be used for this daunting task?
Win2000 Native
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
Configure offline files and enable manual caching
Dsmgmt
38. WSUS infrastructure must meet the following: distributed from a central location - all computers must continue to receive updates in the event that a server fails
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
NOT be able to store that data on an iSCSI SAN
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
39. You have a failover cluster that has an application installed. Service level agreement requires 55 percent of processor and memory utilization to be reserved for the app. A solution to guarantee service level agreement would be
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
Add George to the Domain Admins group.
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
Deploy the Root CA certificate to the external computers.
40. To allow all users in the forest to be able to resolve the names in the Forest Root Partition
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
Certificate Templates
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition
41. GPO setting to prevent all users from running an application
Windows XP Mode
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Administrative Role Separation
Software Restriction Polices
42. If you need to implement Encrypting File System (EFS) and minimize amount of data transferred across and access EFS certs on any client computer
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
Dfsrdiag
The Group Policy Management console
Enable Credential Roaming
43. To restore previous version of script without taking up too much of time...
Deploy it by using Group Policy Software Installation method
PowerShell 2.0
Microsoft System Center Data Protection Manager
Attach VHD file created by Windows server backup
44. Engineering department has 582 Windows Server 2008 R2 servers. You need to monitor the performance of all 582 with following requirements: Create alerts when average processor usage is higher than 85% for 15 minutes; Automatically adjust the processo
Deploy Microsoft System Center Operations Manager (SCOM)
Create an Active Directory-Integrated zone.
Create a Central Store
Active Directory Right Management Services (AD RMS)
45. If you need secure method to verify validity of individual certificates and minimize network bandwidth
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.
Assign the application to computers in the PC OU
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
Jill came down with 2.50.
46. 3 Servers are Network Policy Servers (NPS) that function as RADIUS servers. The network has 20 wireless access points that are configured as RADIUS clients. You need to plan an audit strategy with the following requirements: stores audit data in a ce
Attach VHD file created by Windows server backup
Create and deploy a logon script that runs Auditpol.
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
Configure the zone as an Activde Directory-Integrated zone.
47. What role to keep same time as an external server?
Add the Windows Server Backup feature and Windows System Image recovery.
Implement folder redirection by using GPO. Then backup the folder redirection target.
Win2000
PDC emulator with w32tm.exe
48. To deploy templates across the organization
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
Implement a domain-based DFS namespace that uses replication
Dfsrdiag
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary
49. To protect all computers on the network from unwanted access and to ensure a consistent configuration
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Dfsrdiag
Configure separate application pools for each application
Configure Firewall Group Policies and link them at the Domain level
50. The two role services must be deployed to prevent machines from connecting to the network if their security center settings (Firewall - Windows Updates - Defender) are NOT up to date are
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Implement Shadow Copies
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
Sorry!:) No result found.
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests