Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. When deploying servers one would have to include some kind of process that would ultimately join the servers to the domain - this typically would require a script and a reboot. to help eliminate some of the steps involved and automate the deployment
Utilize IFM (Install From Media)
Service user account for AD LDS
Offline domain join
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.

2. When deploying software across a large distributed enterprise you can reduce the need for clients to obtain the necessary .msi file needed for installation from over the network. Placing applications .msi file in a shared folder that is replicated us
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
Domain based Distributed File System (DFS) will reduce network traffic
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
Create a MEDV workspace

3. 4 steps to perform offline Defragmentation of AD database...
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
Subnet object needs to be created
Perform an authoritative restore
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.

4. If you need to delegate control of server to remote admins group
DSMOD
Configure RODC for Administrator Role Separation
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)

5. To configure AD FS so tokens contain information from Active Directory domain...
New ACCOUNT STORE should be added and configured
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary
Offline domain join

6. To improve performance and provide redundancy if a single server fails - the intranet web site should be in this.
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Network Load Balancing (NLB) cluster
Active Directory Users and Computers
Implement Windows System Resource Manager (WSRM) and configure user policies

7. to ensure that users can ONLY view the list of DFS Targets to which they are assigned permissions
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.
Add the user to the Domain Admins global group

8. To backup to tape/robotic tape and to backup VMs you must use...
Install Windows Server Backup and modify the Windows firewall settings
View properties of %systemroot%ntdsntds.dit
Microsoft System Center Data Protection Manager 2010
Active Directory Users and Computers

9. To minimize the amount of storage required you should recommend
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Share and Storage Management
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.

10. To allow a specifc user or group to manage the address information for the user accounts...
Recommend Active Directory delegation
Back up to an external USB drive by using Windows Server Backup
WDS
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.

11. If a new application needs to be deployed on the network and it comes as a .msi package and then do this.
Deploy it by using Group Policy Software Installation method
net stop ntds
Raise the DFL to Windows Server 2008 R2.
Install the RSAT tool on their workstation to provide for more efficient network management

12. The Authorization Manager console is a Microsoft Management Console (MMC) snap-in. You can run the Authorization Manager console as a stand-alone console - or add it to any MMC console.
Administrators is the minimum group membership required to complete this procedure.
Windows System Resource Manager (WSRM)
Windows BitLocker Drive Encryption (Bit Locker)
Install Windows Server Backup and modify the Windows firewall settings

13. In Active Directory Sites and Services - what should be configured to ensure domain controllers only replicate between domain controllers in adjacent sites?
Encrypting File System (EFS). This can be enabled locally or through a GPO.
Disable Site Link Bridging from the IP properties
Configure event log subscriptions
Service user account for AD LDS

14. Your data recovery strategy for your Server 2008 R2 file server must meet the followign requirements: All data volumes on the server must be backed up daily; backups must have a minimal impact on performance; if a disk fails - the recovery strategy m
Install From Media IFM
Assign the application to all client computers by using a GPO.
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Recommend Active Directory delegation

15. You need to design your WSUS infrastructure so that updates are highly available. To do so
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.

16. All servers run 2008 R2 and all client computers run Windows 7. Provide a necessary access solution that meets: only computers that have the most up-to-date service packs can be granted general network access; all noncompliant computers must be redir
Configure separate application pools for each application
Create ADMX and ADML files. Configure the GPO and link it to the domain.
Implement Network Access Protection (NAP)
Configure authorization rules for Web developers on each web server

17. You need to ensure that your Windows 2008 R2 file servers meet the following: supports volumes larger than 2 terabytes - if a single disk fails - maintain data redundancy - if a single server fails - maintain access to all data - maximize disk throug
Windows Server 2003
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Implement Windows BitLocker Drive Encryption (BitLocker)

18. Enables you to receive emails when domain users locked out of accounts...
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
Use local roles options within "dsmgmt"
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
Event Viewer

19. You plan to upgrade your networks desktops to Windows 7 however - after testing you discover an application that will only run on Windows XP. You need to make this application available to a large number of desktops.
Test-AppLockerPolicy
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
Create a MEDV workspace

20. Your company recently created a corporate web site using their own internal developers. Recently your CIO has decided that it would be best that some of the work be done by an outside contractor - and to allow that contractor to only the specific sec
IIS Manager user account
Ntdsutil
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
Service user account for AD LDS

21. An external partner plan requires the following: prevent sensitive documents from being forwarded to untrusted recipients or from being printed; allow users in the external partner organization to access the protected content to which they have been
Restore-ADObject cmdlet
From Server A - run Create Basic Task Wizard
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Incoming external trust

22. In order to ensure highly available Windows Update servers you should create this.
Data Recovery Agent
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie
Add the Windows Server Backup feature and Windows System Image recovery.

23. 3 servers are configured as DNS servers and are ADI for the company.com zone. DNS only allows for secure updates - but you need to enable dynamic DNS updates on DCC.company.com...What do you do?
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.
Folder redirection. Folder redirection is also useful when using roamin profiles.
Back up to an external USB drive by using Windows Server Backup

24. If users complain that it is hard to find the shared folders on the network implement
Configure the zone as an Activde Directory-Integrated zone.
Service user account for AD LDS
Jill came down with 2.50.
Additional DFS Targets

25. To limit each user's storage space and to prevent users from storing audio and video files on the servers you should recommend
File Server Resource Manager (FSRM) quotas and file screens
Import-csv password.csv | Foreach {New-ADUser -Name $_.Name -Enabled $true_AccountPassword (ConvertTo_SecureString $_.Password -AsPlainText -force)}
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.
DFL needs to be Windows Server 2008

26. You have a failover cluster that has an application installed. Service level agreement requires 55 percent of processor and memory utilization to be reserved for the app. A solution to guarantee service level agreement would be
View properties of %systemroot%ntdsntds.dit
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
Modify the GPO to include folder redirection

27. You need to recommend management solution that will allow users to manage only certain parts of Hyper-V
Add the user to the Domain Admins global group
Authorization Manager
Configure caching on the shared folder (offline files)
View properties of %systemroot%ntdsntds.dit

28. If you need to minimize amount of time and impact of 50 simultaneous Win7 installations
net stop ntds
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Create a new Password Settings Object (PSO) for the IT users.
Winrm quickconfig

29. All servers are 2008 R2. All client computers are Vista and have Outlook 2007 installed. Following resources are being accessed: exchange 2010 by using Outlook 2007 - database server on TCP port 38968 - 2008 R2 file servers. You need to provide users
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
Administrative Role Separation
Then configure GlobalNames zones on each domain controller.
PDC emulator with w32tm.exe

30. You have a main office and a branch office. Your Active Director domain runs at functional level Windows Server 2008. You are planning to implement file servers in each office. Your file sharing implementation must meet the following requirements: us
Domain based DFS namespace and configure a DFS replication group
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
Deploy a GPO to the WebSrvOU
Implement a domain-based DFS namespace that uses replication

31. You have a single AD domain named ad.company.com. The FFL is windows 2000 and the DFL is Windows 2000 Native. The UPN suffix company.com needs to be available for user accounts. What should be done first?
Ntfrsutil
Create an e-mail account in AD DS for your RMS users.
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
Add the new UPN suffix to the forest.

32. If you need to deploy a DHCP server that supports computers that start from a PXE network adapater and support Win7
Back up to an external USB drive by using Windows Server Backup
Repadmin
Incoming external trust
Then use Windows Deployment Services (WDS)

33. If you need to allow an external partner's computer to access internal network resources by using SSTP
Winrm quickconfig
Deploy the Root CA certificate to the external computers.
Registry on users computer needs to be modified
View properties of %systemroot%ntdsntds.dit

34. To modify several user accounts to a new UPN suffix
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
Active Directory Users and Computers utility
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
Add the user to the Domain Admins global group

35. Certain apps may require that the end user have the ability to make changes to the application - however some applications may allow these changes to be made in the registry. To give you as the administrator the ability to make changes as necessary -
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Group Policy Preferences
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library

36. What should be modified so you can use the nslookup utility to list all SRV records for your domain?
Zone transfer settings
Run adprep /forestprep and adprep /domainprep
Add the user to the Domain Admins global group
Microsoft Desktop Optimization Pack (MDOP)

37. When using Remote Desktop and Remote Desktop Session hosts - to be able to control both who can gain access - and to what - on the network configure;
Configure Firewall Group Policies and link them at the Domain level
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
dsa.msc - dsamain.exe - ntdsutil.exe
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)

38. To restore previous version of script without taking up too much of time...
Attach VHD file created by Windows server backup
Configure authorization rules for Web developers on each web server
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
Recommend Offline Files

39. When deploying an application using the Group Policy distribution method assign the...
Test-AppLockerPolicy
Autonomous mode...This allows the local administrator to approve their own updates.
Configure the zone as an Activde Directory-Integrated zone.
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.

40. Need to access some resources in another domain that is part of another forest...What trust is created?
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Incoming external trust
Distributed File System (DFS) Replication
Authorization Manager role assignment

41. DCA is DC and DNS server that holds ADI zone for company.com DNSB is member server that has DNS server role installed. What should be done so DNSB can get zone updates from DCA?
Modify zone transfer settings for company.com zone on DCA
Use the Local Roles options with dsmgmt.
Increase the tombstone lifetime for the forest.
Then configure auto enrollment of certificates and Credential Roaming.

42. To be able to user an application from one AD FS with authentication server to another...
Multipath I/O feature
A relying party trust should be created.
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library

43. All servers use internal storage only. Srv1 is a Server 2008 R2 file server. you need to deploy a client/server application so that it is available if a single server fails. To achieve this while minimizing cost
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
Deploy a failover cluster that uses Node and File Share Disk Majority
Windows Deployment Services (WDS)
Implement GPO for all client computers

44. What should be done to ensure changes made to AD objects can be logged?
Configure Firewall Group Policies and link them at the Domain level
Raise the DFL to Windows Server 2008 R2.
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
AD RMS

45. What tool would you use to add a new User Principal Name (UPN) for all user accounts?
Active Directory Domains and Trusts
Implement Network Access Protection (NAP) that uses 802.1x enforcement
Implement Windows System Resource Manager (WSRM) and configure user policies
Dfsrdiag

46. 4 steps to perform authoritative restore of a deleted OU...
1) Restart dc in DirectoryServiceRestoreMode - 2) Restory system state data to date before organizational unit was deleted - 3) Use ntdsutil utility to mark organizational unit as authoritative 4) Restart Domain Controller
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.
Windows BitLocker Drive Encryption (Bit Locker)
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.

47. If you need to implement a Cert Services solution that automates distribution of certificates - ensures security and gives external users acess to resources that use cert-based authentication
djoin /requesteodj from internal server - djoin /provision from outside server/PC
Creating a data collector set that kick off a scritp that either move or delete files.
Either implement a DHCP server at the branch office - or configure a "Static Pool" on the RRAS server itself. If deploying a DHCP server at the branch office isn't an option - then once the Remote Access Server role has been deployed you can configur
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.

48. What utility is used to see what accounts cached on RODC?
Enable Credential Roaming
Active Directory Users and Computers
Back up to an external USB drive by using Windows Server Backup
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.

49. Your AD environment has an Enterprise Root CA. What 2 actions should you take to ensure that only administrators can sign code?
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
Event Subscriptions
Passive file screens
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service

50. You need to recommend a Windows update strategy for the new branch office. The branch office has a 512 Kbps connection the corporate office and a 2 MB connection to the Internet. You should recommend this.
Add the new UPN Suffix to the forest
IIS Chared Configuration
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Major Subjects
Tests & Exams AP CLEP DSST GRE SAT GMAT	Certifications CISSP go to https://www.isc2.org/ PMP ITIL RHCE MCTS More...	IT Skills Android Programming Data Modeling Objective C Programming Basic Python Programming Adobe Illustrator More...	Business Skills Advertising Techniques Business Accounting Basics Business Strategy Human Resource Management Marketing Basics More...
Soft Skills Body Language People Skills Public Speaking Persuasion Job Hunting And Resumes More...	Vocabulary GRE Vocab SAT Vocab TOEFL Essential Vocab Basic English Words For All Global Words You Should Know Business English More...	Languages AP German Vocab AP Latin Vocab SAT Subject Test: French Italian Survival Norwegian Survival More...	Engineering Audio Engineering Computer Science Engineering Aerospace Engineering Chemical Engineering Structural Engineering More...
Health Sciences Basic Nursing Skills Health Science Language Fundamentals Veterinary Technology Medical Language Cardiology Clinical Surgery More...	English Grammar Fundamentals Literary And Rhetorical Vocab Elements Of Style Vocab Introduction To English Major Complete Advanced Sentences Literature Homonyms More...	Math Algebra Formulas Basic Arithmetic: Measurements Metric Conversions Geometric Properties Important Math Facts Number Sense Vocab Business Math More...	Other Major Subjects Science Economics History Law Performing-arts Cooking Logic & Reasoning Trivia

Test your basic knowledge |

MSITP

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests

Major Subjects

Tests & Exams

Certifications

IT Skills

Business Skills

Soft Skills

Vocabulary

Languages

Engineering

Health Sciences

English

Math

Other Major Subjects

Browse all subjects

Browse all tests

Most popular tests