SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. You plan to upgrade your networks desktops to Windows 7 however - after testing you discover an application that will only run on Windows XP. You need to make this application available to a large number of desktops.
Ntfrsutil
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
Create a MEDV workspace
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
2. You need to recommend a solution to minimize the amount of time it takes for the sales department users to locate files in teh course bookings share.
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
net stop ntds
Data Recovery Agent
Implement the Windows Search Service.
3. Engineering department has 582 Windows Server 2008 R2 servers. You need to monitor the performance of all 582 with following requirements: Create alerts when average processor usage is higher than 85% for 15 minutes; Automatically adjust the processo
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.
Deploy Microsoft System Center Operations Manager (SCOM)
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
4. You need to recommend a BitLocker recovery method you should recommend this.
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
Data Recovery Agent
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
5. To allow a user to administer Active Directory
DFL needs to be Windows Server 2008
dsa.msc - dsamain.exe - ntdsutil.exe
Recommend GPT and basic disks
Add the user to the Domain Admins global group
6. George needs to administer a read-only domain controller named Server1 - but to do this with minimal permissions assigned to him. What tool should be used for this daunting task?
Group Policy Preferences
Dsmgmt
Attach VHD file created by Windows server backup
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
7. To configure AD FS so tokens contain information from Active Directory domain...
View properties of %systemroot%ntdsntds.dit
AD Rights Management Services
New ACCOUNT STORE should be added and configured
WDS
8. If you need to minimize amount of time and impact of 50 simultaneous Win7 installations
Deploy a failover cluster that uses Node and File Share Disk Majority
Jill came down with 2.50.
Windows System Resource Manager (WSRM)
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
9. Files servers need to stay connected to the SAN if a NIC fails. You should recommend
Multipath I/O feature
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office
Use local roles options within "dsmgmt"
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).
10. If you need a VPN soluction that stores VPN passwords as encrypted text and supports automatic enrollment of certificates
Event Subscriptions
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
Domain based Distributed File System (DFS) will reduce network traffic
11. If a user needs to access a new cert template when logging on to any client computer in domain and you need to automatically install on each client computer a cert
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
Create an e-mail account in AD DS for your RMS users
An Active Directory subnet object needs to be created.
Then configure auto enrollment of certificates and Credential Roaming.
12. If the branch office has its own high speed WAN link and you need to minimize traffice between the corporate office and the Branch office - configure this.
The WSUS client to retrieve updates from Microsoft Update (Do not Store updates locally)
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.
WSUS server in the branch office in replica mode.
13. You need to relocate an AD LDS instance from C: Drive to D: Drive
Deploying a WSUS server in replica mode at the Branch office. You can also configure the WSUS in replica mode/split - this will allos the WSUS server to download list of updates from the parent but download the actual updates directly from Windows up
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
PowerShell 2.0
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
14. You need to create a DNS infrastructure that must allow client computers in each office to register DNA names within their respective offices and client computuers must be able to resolve names for hosts in all offices
Create an Active Directory-Integrated zone.
PowerShell 2.0
Implement File Server Resource Manager (FSRM) quotas on the desired servers
Deploy the Root CA certificate to the external computers.
15. CAPublishGP needs to be able to publish new certificate revocation lists - but not be able to revoke certificates. How is this accomplished?
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
Use Netsh tool from administrator's computer.
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
CAPublishGP group should have the Manage CA permission.
16. If you need to allow an external partner's computer to access internal network resources by using SSTP
Configure Audit Special Logon and define Special Groups
Deploy the Root CA certificate to the external computers.
Implement Network Access Protection (NAP) that uses 802.1x enforcement
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
17. Internet access is provided through the main office to the satellite offices. You need to design a patch management for the satellite offices that meet the following requirements: WSUS updates are approved from a central location; internet traffic is
Then install new Server 2008 R2 Enterprise subordinate CA.
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
18. If you want to allow the administrator in each office to manage DHCP scope for their own office - and prevent the administror of one office from managing DHCP scopes on the DHCP server in another office with mimimal admin effort
Deploy a GPO for the Sales OU
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
AD Rights Management Services
Add the Windows Server Backup feature and Windows System Image recovery.
19. To protect all computers on the network from unwanted access and to ensure a consistent configuration
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Configure Firewall Group Policies and link them at the Domain level
20. You have a main office and a branch office. Your Active Director domain runs at functional level Windows Server 2008. You are planning to implement file servers in each office. Your file sharing implementation must meet the following requirements: us
Implement a domain-based DFS namespace that uses replication
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
Configure folder redirection
21. Your domain has three OUs - HR - IT - and Sales. You need to redesign the layout of the OUs to support the following: Prevent GPOs that are linked to the domain from applying to computers located in IT OU; minimize number of GPOs; minimize number of
Microsoft Desktop Optimization Pack (MDOP) to your company
Install Windows Server Backup and modify the Windows firewall settings
Configure block inheritance on the IT OU
Use the Local Roles options with dsmgmt.
22. Tools to view contents of an OU in an AD snapshot...
dsa.msc - dsamain.exe - ntdsutil.exe
dnscmd tool
A relying party trust should be created.
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
23. To be able to manage all the corporate servers from a workstation - you must install the
Active Directory snapshots and Tombstone reanimation
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Network Load Balancing (NLB)
24. Tool to allow a user to administer an RODC while minimizing the number of permissions assigned to user.
DISABLE slow link detection in the GPO
Dsmgmt
Use the Local Roles options with dsmgmt.
Install Windows Server Backup and modify the Windows firewall settings
25. You need a solution that replaces servers that host 2 applications. This solution must use Windows Server 2008 R2 and minimize cost.
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
Group Policy Preferences
Configure offline files and enable manual caching
Install a new server that runs a 64-bit version of Windows Server 2008 R2 Enterprise Edition. Install the Hyper-V role. Install the App1 and App2 in separate child virtual machines.
26. Domain.com's network consists of a Single AD domain. All servers and domain controllers run Windows Server 2008 R2. You need to ensure that you can: track all changes made to AD objects by the recently hired IT consulting firm; Ensure that the audits
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
FILES option within Ntdsutil
IIS Manager user account
Configure an audit policy by editing the default domain policy and configure Event Forwarding
27. From Win7 PC - to view all account logon successes that occur on domain and consolidate to one list...
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Winrm quickconfig
Recommend Active Directory delegation
28. You need a solution for your Web servers that meet these requirements: ensures that the Web site is accessible even if a single server fails; supports the addition of more Web servers without interrupting client connections.
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Create a Network Load Balancing cluster.
Create and deploy a logon script that runs Auditpol.
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
29. You need to plan the deployment of an application that must meet these requirements: users must have - access to the app when they are connected to the network; access the application from an icon on their desktops.
Assign the application to all client computers by using a GPO.
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
Run net stop ntds
30. To create and additional AD LDS applicaiton directory partition in existing instance...
Recommend Active Directory delegation
Ldp
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
Passive file screens
31. Deployment solutions that will allow both the 64 bit version of Office 2010 and the 32 bit version Office 2003 to run at a same time on a Windows 7 computer - and to do that when the computer is offline - are very limited. You should recommend
Then configure auto enrollment of certificates and Credential Roaming.
Install From Media IFM
Microsoft Application Virtualization (AppV)
Raise the DFL to Windows Server 2008 R2.
32. Your AD environment has an Enterprise Root CA. What 2 actions should you take to ensure that only administrators can sign code?
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Authorization Manager
Enable Windows Remote Management (WinRM) on the servers.
33. If you need to deploy multiple servers through automation of installation and activation and minimize network traffic
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
Additional DFS Targets
34. Srv1 - Srv2 - Srv 3 are Network Policy Servers (NPS) that function as RADIUS Servers. Srv1 is also Microsoft SQL Server 2008 server. The network has 20 wireless access points that are configured as RADIUS clients. You need an audit strategy with the
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
35. Recently you have installed a special application on your web sites that requires using a managed service account on the Web Servers. This application runs on a web server in each of 10 separate Active Directory domains.
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
36. Enables you to receive emails when domain users locked out of accounts...
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Event Viewer
Implement Windows BitLocker Drive Encryption (BitLocker)
37. What Function Level (FL) needs to be in place to enable AD Recycle Bin?
Network Load Balancing (NLB)
Set-ADServiceAccount cmdlet
Implement folder redirection by using GPO. Then backup the folder redirection target.
FFL Windows Server 2008 R2
38. You have two offices that are connected via a WAN link. Each office has a 2008 R2 file server. Users store their data on their local file server - but they can also acces data from the other office. You must implement a data solution according to the
File Server Resource Manager (FSRM) quotas and file screens
Implement Distributed File System Replication (DFSR) on both servers
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Configure the zone as an Activde Directory-Integrated zone.
39. With AppLocker settings - which Windows PowerShell cmdlet would be used to identify whether a specific application file is allowed to run on a computer?
Test-AppLockerPolicy
Configure authorization rules for Web developers on each web server
A relying party trust should be created.
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
40. All client computers run Windows 7. You have 8 Window Server 2003 servers that run Terminal Services. There is also an ISA server that runs the firewall. You need to plan on giving remote users access to the Terminal Servers according to these requir
Store all sensitive files in EFS encrypted folders and require home users to access the files by using SSTP
AD Domains and Trusts
Event Subscriptions
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
41. UPN Suffix xxxx.com needs to be available for user accounts...
Add the new UPN Suffix to the forest
Ldp
Modify the local policy to point to the Internal WSUS server
Either implement a DHCP server at the branch office - or configure a "Static Pool" on the RRAS server itself. If deploying a DHCP server at the branch office isn't an option - then once the Remote Access Server role has been deployed you can configur
42. Can be used to install the Windows RE on existing servers
In each office - install a WSUS server and configure the WSUS servers as a replica of the main office.
WDS
Role Separation
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
43. You have two identical print devices. You must plan a print services infrastructure where: the print services must be available - even if one print device fails and have the ability to manage the print queue from a central location
Install and share a printer on a server and then enable printer pooling.
Implement Windows System Resource Manager (WSRM)
Authorization Manager role assignment
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.
44. Your company IP scheme uses both IPv4 and IPv6. You have a main and branch office. In the branch office you are using PC1. PC1 is now only using IPv6. You noticed that PC1 no longer authenticates off the DC that is in the branch office. What should b
Implement Windows System Resource Manager (WSRM) and configure user policies
An Active Directory subnet object needs to be created.
Add the user to the Domain Admins global group
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
45. Company users IPV4 and IPV6. A PC uses IPV6 and can no longer authenticate off the DC. What can be done to ensure IPV6 computers authenticate to DCs in same site...
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
Implement Distributed File System Replication (DFSR) on both servers
Create a new global group named HelpDesk and then add the Help Desk department user accounts to the Helpdesk group. Add the HelpDesk group to the Account Operators group that is in all three domains. A-G-U-L-P.
Subnet object needs to be created
46. When deploying software across a large distributed enterprise you can reduce the need for clients to obtain the necessary .msi file needed for installation from over the network. Placing applications .msi file in a shared folder that is replicated us
Domain based Distributed File System (DFS) will reduce network traffic
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Converting physical servers to VMs - implementing SANn and SAN management components such as backup and site resiliency will create additional administrative overhead.
1) Restart dc in DirectoryServiceRestoreMode - 2) Restory system state data to date before organizational unit was deleted - 3) Use ntdsutil utility to mark organizational unit as authoritative 4) Restart Domain Controller
47. To minimize the amount of storage required you should recommend
CAPublishGP group should have the Manage CA permission.
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Storage manager for SANs
Share and Storage Management
48. You need a patch management strategy to deploy updates to the computers on the secure network. To accomplish
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
Microsoft Desktop Optimization Pack (MDOP) to your company
The Group Policy Management console
Perform an authoritative restore
49. To ensure that recovery is possible if a file on a file server is deleted accidentally
Implement Shadow Copies
Domain based Distributed File System (DFS) namespace and DFS Replication.
Configure separate application pools for each application
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.
50. WSUS infrastructure must meet the following: distributed from a central location - all computers must continue to receive updates in the event that a server fails
Refresh the zone on DNS2
Configure Microsoft SQL Server 2008 failover cluster. Configure two WSUS servers in a Network Load Balancing cluster. Configure WSUS to use the remote SQL Server 2008 database instance.
Network Load Balancing (NLB) cluster
New ACCOUNT STORE should be added and configured
