SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. You have a 2008 R2 server configured as Remote Desktop Session host. You need to deploy a line-of-business app; however - the app requires desktop themes to be enabled. Your deployment strategy must meet these requirements: only authorized users must
Microsoft System Center Data Protection Manager
Deploy the Root CA certificate to the external computers.
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
2. To minimize the amount of storage required you should recommend
Service user account for AD LDS
Implement folder redirection by using GPO. Then backup the folder redirection target.
Passive file screens
Share and Storage Management
3. To back up your Hyper-VMs and the Hyper-V host; for each VM -
Share and Storage Management
Add the new UPN Suffix to the forest
Role Separation
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
4. All DCs run Windows Server 2008 R2 and have the DNS Server role installed. The domain controllers for each location are stored locally. Each has its own standard primary zone to support its local domain.You need a plan that meets the following: WAN l
Create a standard secondary of domain and create standard secondary of other domain.
Increase the tombstone lifetime for the forest.
Configure separate application pools for each application
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
5. To monitor replication of group policy template files when DFL set at Windows 2008 R2...
Active Directory Users and Computers utility
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
Dfsrdiag
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
6. With Group Polices having over 8 -000 different settings - the possibility of conflicting policies - and security filters you should track multiple versions and offline modifications to GPOs. You should recommend
Implement Distributed File System Replication (DFSR) on both servers
Microsoft Desktop Optimization Pack (MDOP)
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Windows XP Mode
7. You need a solution for your Web servers that meet these requirements: ensures that the Web site is accessible even if a single server fails; supports the addition of more Web servers without interrupting client connections.
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
Create a standard secondary of domain and create standard secondary of other domain.
Create a Network Load Balancing cluster.
Perform an authoritative restore
8. To compact AD database...
Configure caching on the shared folder and configure offline files to use encryption
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
Microsoft SharePoint Foundation 2010
FILES option within Ntdsutil
9. If a file server reaches 15% free disk space - you could free up some disk space by
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Purchase one additional Enterprise License
Creating a data collector set that kick off a scritp that either move or delete files.
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
10. You need a solution that allows a global group to perform the following: stop and start services; change registry settings; change network settings
Authorization Manager role assignment
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.
11. In order to manage websites without having to logon you can use
PowerShell 2.0
The Group Policy Management Console
Dfsrdiag
Subnet object needs to be created
12. Domain.com's network has a single forest and single domain. Users currently share files using the corporate FTP server and DropBox. You need a better solution for managing document and allowing access. The solution must meet the following: allow for
A relying party trust should be created.
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
Microsoft SharePoint Foundation 2010
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
13. To update ADRMS password...
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
DISABLE slow link detection in the GPO
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
AD Rights Management Services
14. RDSrv1 is a Server 2008 R2 server with Remote Desktop Services installed. You are planning to establish a Terminal Server Farm that must meet these requirements: New users automatically connect to the terminal server that has the fewest active sessio
Implement a Remote Desktop Connection Broker (RD Connection Broker)
Microsoft System Center Data Protection Manager
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
15. When deploying an application using the Group Policy distribution method assign the...
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
Configure block inheritance on the IT OU
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.
Increase the tombstone lifetime for the forest.
16. Deploying a web server farm can be costly. You need to minimize the amount of disk space used.
Configure offline files and enable manual caching
Then install new Server 2008 R2 Enterprise subordinate CA.
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
Deploy a GPO to the WebSrvOU
17. You plan to upgrade your networks desktops to Windows 7 however - after testing you discover an application that will only run on Windows XP. You need to make this application available to a large number of desktops.
Configure event log subscriptions
Create a MEDV workspace
IIS Manager user account
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
18. If subnets are connected by CISCO router that is RFC-1542 compliant
Implement a domain-based DFS namespace that uses replication
MEDV to deploy virtual desktops
Software Restriction Polices
Use CISCO IP Helper command to configure.
19. You need to come up with a solution for managing user accounts that: allows Help Desk department to manage the user objects in all domains and minimize the administrative effort required to manage the frequent changes to the Help Desk department
Domain based Distributed File System (DFS) will reduce network traffic
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.
Install Hyper-V role and convert physical machines into virtual machines
20. Policy states that users are to log into AD by usine a new User Principal Name (UPN). What tool should be used to modify the UPN suffix for all user accounts?
DSMOD
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Use CISCO IP Helper command to configure.
Configure event log subscriptions
21. You have 5 windows Server 2008 R2 servers that are configured with the File Server role. you need to monitor the file servers with the following requirements in mind: administrators must be able to create reports that display folder usage by differen
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
PowerShell 2.0
22. Tool to change Directory Services Restore Mode password on Domain Controller...
Active Directory snapshots and Tombstone reanimation
ntdsutil
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
Deploy Microsoft System Center Operations Manager (SCOM)
23. The company requires that only users that have a certificate can recover BitLocker keys. To support this requirement you will need to
Upgrading DFS to Windows Server 2008 R2
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
Implement folder redirection by using GPO. Then backup the folder redirection target.
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
24. AD CS is configured on Server1 as a standalone CA. What two actions should you do to audit changes to the CA configuration settings and the CA security settings?
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.
Discover the run Microsoft Baseline Security Analyzer (MBSA)
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
25. What GPO setting should be configured to prevent all users from running an application?
Software Restriction Polices
Configure caching on the shared folder (offline files)
Role Separation
Administrators is the minimum group membership required to complete this procedure.
26. If you need to minimize the bandwidth for installation
Utilize IFM (Install From Media)
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
Deploy the Root CA certificate to the external computers.
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
27. To reduce the administration involved when making configuration changes in IIS for several servers that are part of NLB Cluster you should implement this.
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
IIS Chared Configuration
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Include a server that runs Microsoft Office SharePoint Server 2010
28. With AppLocker settings - which Windows PowerShell cmdlet would be used to identify whether a specific application file is allowed to run on a computer?
Service user account for AD LDS
Test-AppLockerPolicy
Your machine and remote desktops
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
29. All servers run 2008 R2 and all client computers run Windows 7. Server users have laptops and work from home. You need to plan an infrastructure to secure sensitive files according to these requirements: files must be - stored in an encrypted format;
Repadmin
Role Separation
Store all sensitive files in EFS encrypted folders and require home users to access the files by using SSTP
Create TWO new starter GPO's one with user administrative templates configure - and one with computer admin template configured - and export them to .cab files - and make the .cab files available in both forests...Then when creating new group policie
30. USB storage deviced on the client computers can be very convenient; however they create a huge security risk. To help reduce the risk of USB deviced you can implement...
Enable Credential Roaming
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
Registry on users computer needs to be modified
31. To protect all computers on the network from unwanted access and to ensure a consistent configuration
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Configure Firewall Group Policies and link them at the Domain level
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Incoming external trust
32. Your AD environment has an Enterprise Root CA. What 2 actions should you take to ensure that only administrators can sign code?
Jill came down with 2.50.
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
33. Ensure password length for a group set to 12 characters long while others keep password policy
Add-ADFineGrainedPasswordPolicySubject cmdlet
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
FFL Windows Server 2008 R2
34. To delegate authority to users to manage only certain areas in Hyper-V use the
Disable Site Link Bridging from IP Properties
Authorization Manager role assignment
PowerShell 2.0
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
35. You have a single AD domain named ad.company.com. The FFL is windows 2000 and the DFL is Windows 2000 Native. The UPN suffix company.com needs to be available for user accounts. What should be done first?
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
FFL Windows Server 2008 R2
Add the new UPN suffix to the forest.
PowerShell 2.0
36. To add a new UPN for all user accounts...
Active Directory Domains and Trusts
Execute the Set-ADServiceAccount cmdlet
The Group Policy Management console
AD Domains and Trusts
37. If CA PKI needs to support Suite B hashing and encryption algorithms and store keys in AD
Use Netsh tool from administrator's computer.
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.
Then install new Server 2008 R2 Enterprise subordinate CA.
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
38. CAPublishGP needs to be able to publish new certificate revocation lists - but not be able to revoke certificates. How is this accomplished?
Ntfrsutil
djoin /requesteodj from internal server - djoin /provision from outside server/PC
Microsoft SharePoint Foundation 2010
CAPublishGP group should have the Manage CA permission.
39. You have administrative templates that another company wants to use on their domain. How would you configure the other company's domain to use these administrative templates?
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
40. When deploying servers one would have to include some kind of process that would ultimately join the servers to the domain - this typically would require a script and a reboot. to help eliminate some of the steps involved and automate the deployment
Share and Storage Management
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
Offline domain join
Refresh the zone on DNS2
41. What role to keep same time as an external server?
Domain based Distributed File System (DFS) will reduce network traffic
Configure caching on the shared folder (offline files)
PDC emulator with w32tm.exe
Place the operating system files on one of the RAID 1 array - place the SQL transaction logs on the other RAID 1 array - and place the SQL database files on the RAID 5 array
42. GPO's can be difficult to manage; you need a solution that will include version tracking and offline modifications. You should recommend
Implement GPO for all client computers
Install Hyper-V role and convert physical machines into virtual machines
Create and deploy a logon script that runs Auditpol.
Microsoft Desktop Optimization Pack (MDOP) to your company
43. Your company recently created a corporate web site using their own internal developers. Recently your CIO has decided that it would be best that some of the work be done by an outside contractor - and to allow that contractor to only the specific sec
IIS Manager user account
Domain based DFS namespace and configure a DFS replication group
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
44. In order for admins at a branch office to be able to change their passwords and logon if a single DC fails even if the WAN Link to the corporate office fails you shoud
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
45. To backup GPO's in domain and minimize bakcup...
Configure offline files and enable manual caching
The Group Policy Management Console
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Configure the zone as an Activde Directory-Integrated zone.
46. What should be modified so you can use the nslookup utility to list all SRV records for your domain?
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Deploy a failover cluster that uses Node and File Share Disk Majority
Enable Windows Remote Management (WinRM) on the servers.
Zone transfer settings
47. When deploying group polices we want to configure them so that they are applied as quickly as possible. One way this can be done is if the policy only consists of computer settings. If this is the case we can do this.
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
Create and deploy a logon script that runs Auditpol.
Share and Storage Management
Disable the user half of the policy. For flow reasons we can stop policies from affecting certain computers and users by placing blocks at the OU level. This will prevent the policy from parent OUs from flowing into the child OU as long as the parent
48. Your data provisioning solution must meet the following requirements: users must have access to their Documents folder regardless of the client computer that they use; user documents should not be stored on the local client computer; minimize the tim
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
Configure folder redirection
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
DFL needs to be Windows Server 2008
49. All DCs have been upgraded from Windows Server 2003 to Windows Server 2008 R2. What should be done to ensure the Sysvol share replicates by using DFS Replicaiton (DFS-R)?
Microsoft Desktop Optimization Pack (MDOP) to your company
Raise the DFL to Windows Server 2008 R2.
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Create a Central Store
50. to protect file servers and hard disks that may be at risk of being accessed or stolen
Create ADMX and ADML files. Configure the GPO and link it to the domain.
Implement Windows BitLocker Drive Encryption (BitLocker)
Dsmgmt
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Sorry!:) No result found.
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests