SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. You have 5 windows Server 2008 R2 servers that are configured with the File Server role. you need to monitor the file servers with the following requirements in mind: administrators must be able to create reports that display folder usage by differen
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
The Group Policy Management console
Add the user to the Domain Admins global group
Software Restriction Polices
2. You have been tasked with backing up all the GPOs in the domain. The IT manager also wants you to minimize the size of the backup. You decide to use...
dnscmd tool
Domain based DFS namespace and configure a DFS replication group
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
The Group Policy Management console
3. If the companies support staff is currently using Remote Desktop to connect to the servers in the data center to perform all management tasks - it would be wise to have them instead
Recommend GPT and basic disks
Install the RSAT tool on their workstation to provide for more efficient network management
Add George to the Domain Admins group.
Share and Storage Management
4. To enable the AD Recycle Bin
Domain based Distributed File System (DFS) namespace and DFS Replication.
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie
Enable - ADoptionalFeature cmdlet
Changed manually
5. If you need to minimize amount of time and impact of 50 simultaneous Win7 installations
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Create a Central Store
6. All servers are 2008 R2. All client computers are Vista and have Outlook 2007 installed. Following resources are being accessed: exchange 2010 by using Outlook 2007 - database server on TCP port 38968 - 2008 R2 file servers. You need to provide users
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
Store all sensitive files in EFS encrypted folders and require home users to access the files by using SSTP
7. You have several Windows 2000 Servers that have a custom application installed. However - the apps are incompatible with each other and with Windows Server 2008 R2 - but they consume less than 10% of system resources. There is a policy that states al
Authorization Manager role assignment
Group Policy Preferences
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
8. New password settings object (PSO) created and needs to be applied to user
Properties of PSO need modified
Microsoft Desktop Optimization Pack (MDOP)
Raise the DFL to Windows Server 2008 R2.
Basic Authentication and SSL
9. to ensure that users can ONLY view the list of DFS Targets to which they are assigned permissions
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
Add the new UPN suffix to the forest.
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
10. to increase the reliability of the print server - configure...
Improve the performance of File Servers
Printer driver isolation
Create a new Password Settings Object (PSO) for the IT users.
Create and deploy a logon script that runs Auditpol.
11. What should be done first to defragment the AD database?
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
Run net stop ntds
Test-AppLockerPolicy
12. IE can be a security concern - however you can take advantage of Group policies to lock down IE as much as possible
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
13. All DCs run Windows Server 2008 R2 and have the DNS Server role installed. The domain controllers for each location are stored locally. Each has its own standard primary zone to support its local domain.You need a plan that meets the following: WAN l
Install Windows Server Backup and modify the Windows firewall settings
Implement Network Access Protection (NAP)
Create a standard secondary of domain and create standard secondary of other domain.
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
14. Currently you already have in place AD - DNS and DHCP. You need an automated deployment solution for the new servers that will boot using native VHD's. You should recommend
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary
DSMOD - ADUC
Windows Deployment Services (WDS)
WSUS server in the branch office in replica mode.
15. Domain.com's network consists of a single forest and a single domain - all Domain Controllers - Servers and Remote Desktop Services servers are now 2008 R2. All clients are Windows 7. You need to deploy a new CRM Applicaiton to the sales team. You mu
IIS Chared Configuration
Run the Delegation of Control Wizard on the Staff OU
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
16. When one needs to audit files - folders - printers and the registry enable
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
Software Restriction Polices
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
17. If a user needs to access a new cert template when logging on to any client computer in domain and you need to automatically install on each client computer a cert
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
PDC emulator with w32tm.exe
Then configure auto enrollment of certificates and Credential Roaming.
Deploy it by using Group Policy Software Installation method
18. You just dconfigured so that Server1 zone is stored in AD and accept secure dynamic updates. What command should be executed so that Server2 can accept secure dynamic updates?
net stop ntds
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary
Recommend GPT and basic disks
Share and Storage Management
19. You need to recommend a solution to ensure that users in the Philadelphia corporate office can access the courseware files in the remote Fernwood office. You should deploy this.
Domain based DFS namespace and configure a DFS replication group
Implement folder redirection by using GPO. Then backup the folder redirection target.
Share and Storage Management
Win2000
20. to protect file servers and hard disks that may be at risk of being accessed or stolen
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Deploy an additional WSUS server for the remote teachers. Configure the remote teacher's laptops to use the additional WSUS server. Configure the addtional WSUS server to leave the updates on the Microsoft Update Web Site.
Deploy the Root CA certificate to the external computers.
Implement Windows BitLocker Drive Encryption (BitLocker)
21. If your company has the need to create administrative templates (.admx) files for Active Directory runnin on server 2008 R2 you should recommend...
Enable - ADoptionalFeature cmdlet
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
Share and Storage Management
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
22. You plan to upgrade your networks desktops to Windows 7 however - after testing you discover an application that will only run on Windows XP. You need to make this application available to a large number of desktops.
Create a MEDV workspace
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.
Network Load Balancing (NLB) cluster
Zone transfer settings
23. to make shares at a remote location available to users you should implement this.
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
Domain based Distributed File System (DFS) namespace and DFS Replication.
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Modify zone transfer settings for company.com zone on DCA
24. From Win7 PC - to view all account logon successes that occur on domain and consolidate to one list...
Microsoft Desktop Optimization Pack (MDOP) to your company
Winrm quickconfig
Create a Network Load Balancing cluster.
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
25. To allow for an application on a Remote Desktop Server to be available through document invocation - you must
Improve the performance of File Servers
Configure Audit Special Logon and define Special Groups
Add George to the Domain Admins group.
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
26. Can be used to install the Windows RE on existing servers
Install the File Server Resource Manager (FSRM) role service on the sales department file server. Configure hard quotas and file screening.
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.
WDS
Import-csv password.csv | Foreach {New-ADUser -Name $_.Name -Enabled $true_AccountPassword (ConvertTo_SecureString $_.Password -AsPlainText -force)}
27. to minimize the attack surface area of the servers and reduce licensing cost you should recommend
Incoming external trust
Add the user to the Domain Admins global group
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
28. To replicate SYSVOL using Distributed File System Replication (DFSR)...
DFL needs to be Windows Server 2008
Incoming external trust
Execute the Set-ADServiceAccount cmdlet
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
29. when deploying Virtual Machines in a Remote Desktop pool you can minimize the amount of disk space used by the VM and reduced the admin effort by deploying this.
Domain based Distributed File System (DFS) will reduce network traffic
AD Rights Management Services
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
Active Directory snapshots and Tombstone reanimation
30. When using Remote Desktop and Remote Desktop Session hosts - to be able to control both who can gain access - and to what - on the network configure;
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
Offline domain join
Implement Windows System Resource Manager (WSRM)
Disable Site Link Bridging from IP Properties
31. Web server administrator's accountsd are in an OU called WebAdminOU and are member of a global group called WebAdmins. To allow the web server administrators to perform administrative tasks on the web servers - but not allow them to perform administr
CAPublishGP group should have the Manage CA permission.
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
File Server Resource Manager (FSRM) quotas and file screens
Deploy a GPO to the WebSrvOU
32. If you need to allow an external partner's computer to access internal network resources by using SSTP
Remote Desktop Virtualization host - you wouldn't want all the users on the same Remote Desktop Session host to be local administrators.
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
Deploy the Root CA certificate to the external computers.
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
33. To defragment and AD database...
Recommend GPT and basic disks
net stop ntds
Active Directory snapshots and Tombstone reanimation
Import-csv password.csv | Foreach {New-ADUser -Name $_.Name -Enabled $true_AccountPassword (ConvertTo_SecureString $_.Password -AsPlainText -force)}
34. All computers are running either Windows SP2 or Windows 7. You want to audit users that are accessing the administrative shares on all the computers...
fsconfig on FSSrv2
Create and deploy a logon script that runs Auditpol.
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Active Directory Users and Computers
35. You need to design patch management for satellite offices that meet the following requirements: WSUS updates are approved independently for each satellite office; Internet traffic is minimized. To accomplish
Implement a Remote Desktop Connection Broker (RD Connection Broker)
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Add-ADFineGrainedPasswordPolicySubject cmdlet
36. To delegate authority to users to manage only certain areas in Hyper-V use the
Configure event log subscriptions
Implement folder redirection by using GPO. Then backup the folder redirection target.
Software Restriction Polices
Authorization Manager role assignment
37. SrvA has Remote Desktop Services role installed. You notice that users are consuming more than 40% of CPU resources. You want to prevent them from consuming more than 10% - however - administrators should not be limited.
Implement Distributed File System Replication (DFSR) on both servers
Use Netsh tool from administrator's computer.
Implement Windows System Resource Manager (WSRM) and configure user policies
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent
38. To protect all computers on the network from unwanted access and to ensure a consistent configuration
Site
Configure Firewall Group Policies and link them at the Domain level
Add the user to the Domain Admins global group
Use Netsh tool from administrator's computer.
39. AD CS is configured on Server1 as a standalone CA. What two actions should you do to audit changes to the CA configuration settings and the CA security settings?
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
New ACCOUNT STORE should be added and configured
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.
40. Capture all replication errors from all your DCs to a central location...
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
Implement GPO for all client computers
Configure event log subscriptions
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
41. To backup Virtual Machines
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
Then configure GlobalNames zones on each domain controller.
Then use Windows Deployment Services (WDS) on DHCP1.
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
42. Ensure password length for a group set to 12 characters long while others keep password policy
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
Configure Firewall Group Policies and link them at the Domain level
Add-ADFineGrainedPasswordPolicySubject cmdlet
Copy the ADMX files from your company's PDC emulator to the PolicyDefinitions folder on other company's PDC emulator.
43. Need to ensure users receive updated template within five days...
Event Subscriptions
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
Registry on users computer needs to be modified
Implement the Windows Search Service.
44. To allow connection to a 256 Kbps ISDN...
Import-csv password.csv | Foreach {New-ADUser -Name $_.Name -Enabled $true_AccountPassword (ConvertTo_SecureString $_.Password -AsPlainText -force)}
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
DISABLE slow link detection in the GPO
45. You are about to deploy 1 -000 Windows 7 desktops and your company has a web based application that only runs correctly when using IE 6. You should use
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Network Load Balancing (NLB) Cluser for the front end WSUS servers. This will allow users to have the continued access in the event that WSUS servers become unavailable.
MEDV to deploy virtual desktops
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
46. To add a server with AD FS 2.0 role to an existing AD FS farm...
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
fsconfig on FSSrv2
Test-AppLockerPolicy
Use the Local Roles options with dsmgmt.
47. Certain apps may require that the end user have the ability to make changes to the application - however some applications may allow these changes to be made in the registry. To give you as the administrator the ability to make changes as necessary -
Dynamically expanding VHD's
Group Policy Preferences
Deploy the Root CA certificate to the external computers.
Create an e-mail account in AD DS for your RMS users.
48. WSSvr1 has Windows SharePoint Services role installed and contains 20 SharePoint sites. You need to optimize performance and ensure that if CPU utilization exceeds 75% - then an equal amount of system resources are allocated to each SharePoint site.
PowerShell 2.0
File Server Resource Manager (FSRM) quotas and file screens
Raise the DFL to Windows Server 2008 R2.
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
49. To enforce corporate policy on ALL computers in the domain to show a legal notice when a user logs on to the domain
Add the Windows Server Backup feature and Windows System Image recovery.
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services connection authorization policy (RD CAP).
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
50. You have three domain controllers that perform a full back up every day. You need a recovery strategy for AD objects that meets these requirements: allows objects in a backup to be compared to objects in the live AD database; minimizes admin effort.
Additional DFS Targets
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests