SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MSITP
Start Test
Study First
Subjects
:
certifications
,
msitp
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. You are upgrading only a few computers in one department to Windows 7. These computers are running a legacy XP application you should recommend...
CAPublishGP group should have the Manage CA permission.
Use Netsh tool from administrator's computer.
Install Hyper-V role and convert physical machines into virtual machines
Windows XP Mode
2. A DNS structure should be deployed acording to the following requirements: ensure resources in the root and child domains are accessible by FQDN; provide name resolution services in the event that a single server fails for a prolonged period of time;
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
Install and share a printer on a server and then enable printer pooling.
Active Directory snapshots and Tombstone reanimation
Modify zone transfer settings for company.com zone on DCA
3. Capture all replication errors from all your DCs to a central location...
Improve the performance of File Servers
Use a GPO to configure device installation restrictions
Configure event log subscriptions
Add George to the Domain Admins group.
4. RDSRv1 is a Server 2008 R2 Remote Desktop Session Host. RDSrv1 has 8 custome apps installed. Each is configured as a RDP RemoteApp. You notice that when a user runs one of the apps - other users report that the server seems slow and that some apps be
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
DFL needs to be Windows Server 2008
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
Implement Windows System Resource Manager (WSRM)
5. Your data recovery strategy for your Server 2008 R2 file server must meet the followign requirements: All data volumes on the server must be backed up daily; backups must have a minimal impact on performance; if a disk fails - the recovery strategy m
Use Windows Server Backup to perform a daily backup to an external disk. Enable shadow copies for the volumes that contain shared user data. Store the shadow copies on a separate physical disk.
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
Windows Server 2003
WDS
6. To enable the AD Recycle Bin
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
Active Directory snapshots and Tombstone reanimation
Microsoft Desktop Optimization Pack (MDOP) to your company
Enable - ADoptionalFeature cmdlet
7. To delegate authority to users to manage only certain areas in Hyper-V use the
Authorization Manager role assignment
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Assign the application to all client computers by using a GPO.
ntdsutil
8. You need a patch management strategy to deploy updates to the computers on the secure network. To accomplish
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.
AD RMS
9. If the companies support staff is currently using Remote Desktop to connect to the servers in the data center to perform all management tasks - it would be wise to have them instead
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
Install the RSAT tool on their workstation to provide for more efficient network management
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
Install and share a printer on a server and then enable printer pooling.
10. Domain.com's network consists of a single forest and a single domain - all Domain Controllers - Servers and Remote Desktop Services servers are now 2008 R2. All clients are Windows 7. You need to deploy a new CRM Applicaiton to the sales team. You mu
Win2000
Import-csv password.csv | Foreach {New-ADUser -Name $_.Name -Enabled $true_AccountPassword (ConvertTo_SecureString $_.Password -AsPlainText -force)}
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
11. Backup solutions for the files servers that support a robotic-based tape library must support the enterprise; you should recommend
Microsoft System Center Data Protection Manager
Then use Windows Deployment Services (WDS) on DHCP1.
Implement Shadow Copies
Use local roles options within "dsmgmt"
12. DFL is Windows Server 2003 and client computers run Vista. DCRMS is a server that holds AD RMS. What should be done to configure AD RMS so users - including Waldo - can protect their data?
Create an e-mail account in AD DS for your RMS users.
Dynamically expanding VHD's
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.
Folder redirection. Folder redirection is also useful when using roamin profiles.
13. Tool to allow a user to administer an RODC while minimizing the number of permissions assigned to user.
Dsmgmt
Install a Server Core installation of Windows Server 2008 R2 Enterprise. Note: Remember clusters must be either 2008 Enterprise or Datacenter - you cannot build a Microsoft Cluster using Web or Standard Editions
Deploy one new server that runs Windows Server 2008 R2 Enterprise Edition and install the Hyper-V feature on the new server. Then create three child virtual machines.
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
14. Your domain has three OUs - HR - IT - and Sales. You need to redesign the layout of the OUs to support the following: Prevent GPOs that are linked to the domain from applying to computers located in IT OU; minimize number of GPOs; minimize number of
Run the Delegation of Control Wizard on the Staff OU
Configure block inheritance on the IT OU
Implement GPO for all client computers
Discover the run Microsoft Baseline Security Analyzer (MBSA)
15. All servers run 2008 R2 and all client computers run Windows 7. Provide a necessary access solution that meets: only computers that have the most up-to-date service packs can be granted general network access; all noncompliant computers must be redir
Implement Network Access Protection (NAP)
Enable Credential Roaming
From Server A - run Create Basic Task Wizard
dnscmd
16. You need to deploy 15 Server Core installations that are only accessible by HTTP and HTTPS. Administration of these must be able to enable administrators to install and administer server roles remotely and fully manage servers remotely
Enable Windows Remote Management (WinRM) on each server.
Implement folder redirection by using GPO. Then backup the folder redirection target.
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
17. To prevent computers that do not have the Windows Firewall enabled from connecting to the wireless access point or the physical switch - you should implement this.
802.1.x NAP
Create a MEDV workspace
Implement GPO for all client computers
DFL needs to be Windows Server 2008
18. You need to relocate an AD LDS instance from C: Drive to D: Drive
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
Assign the application to all client computers by using a GPO.
Windows Deployment Services (WDS)
Event Viewer
19. To allow connection to a 256 Kbps ISDN...
Event Viewer
net stop ntds
You can apply IE Group Policies only to the OU's that contain clients that must be restricted based on your corporate policies.
DISABLE slow link detection in the GPO
20. You need to modify DNS infrastructure to support dynamic updates to ALL DNS servers; ensure DNS service available even if single server fails; encrypt the synchronization data sent between DNS servers.
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Configure the zone as an Activde Directory-Integrated zone.
Test-AppLockerPolicy
21. To recover objects deleted from Active Directory you should recommend
AD Rights Management Services
Recommend Active Directory delegation
Active Directory snapshots and Tombstone reanimation
Windows BitLocker Drive Encryption (Bit Locker)
22. to ensure that users can ONLY view the list of DFS Targets to which they are assigned permissions
Configure offline files and enable manual caching
dnscmd dcsrv2.company.com /zoneresettype company.com /dsprimary
Then use Windows Deployment Services (WDS) on DHCP1.
Migrate the namespace to Windows SErver 2008 mode and enable access based enumeration (ABE). NOTE: ABE is a new feature in SERVER 2008; this requires that all DFS Server be 2008 or later.
23. If your company has the need to create administrative templates (.admx) files for Active Directory runnin on server 2008 R2 you should recommend...
Subnet object needs to be created
Active Directory snapshots and Tombstone reanimation
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
Authorization Manager
24. If users need access to files locally and must be able to access files at another site if the local copy is not available you should implement this.
Group Policy Preferences
Event Log Subscriptions
CAPublishGP group should have the Manage CA permission.
A Distributed File System (DFS) namespace
25. You don't want users to be able to install removable devices on client computers. However - domain admins and desktop support technicians must be allowed to install removable devices on client computers
Microsoft Desktop Optimization Pack (MDOP)
DSMOD
1) Restart dc in DirectoryServiceRestoreMode - 2) Restory system state data to date before organizational unit was deleted - 3) Use ntdsutil utility to mark organizational unit as authoritative 4) Restart Domain Controller
Implement GPO for all client computers
26. Requirements are: support the installation of SQL Server 2008; Provide redundancy for SQL services if a single server fails. To accomplish this
Raise the DFL to Windows Server 2008 R2.
Share and Storage Management
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Storage manager for SANs
27. To reduce the administration involved when making configuration changes in IIS for several servers that are part of NLB Cluster you should implement this.
Get-ADUser cmdlet
Then use Windows Deployment Services (WDS) on DHCP1.
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
IIS Chared Configuration
28. DNS zone is stored in custom applicaiton directory partition. What tool is used to ensure replicaiton to new installed DC?
dnscmd
Printer driver isolation
Folder redirection. Folder redirection is also useful when using roamin profiles.
AD RMS
29. So a user can install updates on an RODC while preventing them from logging on to any other domain controller...
Use local roles options within "dsmgmt"
Create ADMX and ADML files. Configure the GPO and link it to the domain.
djoin /requesteodj from internal server - djoin /provision from outside server/PC
Site
30. If you need to deploy multiple servers through automation of installation and activation and minimize network traffic
Add the new UPN suffix to the forest.
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Upgrade all the client computers to Windows 7 and implement a Secure Socket Tunneling Protocol (SSTP) VPN solution.
Purchase one additional Enterprise License
31. 2 ways to relocate user and computer accounts to different OUs
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office
Windows Server 2003
DSMOD - ADUC
FILES option within Ntdsutil
32. To be able to manage all the corporate servers from a workstation - you must install the
Configure Audit Special Logon and define Special Groups
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Implement Network Access Protection (NAP)
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
33. George's user account has been deleted in Active Directory. George's user account needs to be restored by usine minimal amount of effort. What should be done?
Perform an authoritative restore
Windows Deployment Services (WDS)
Enable Windows Remote Management (WinRM) on each server.
Recommend Group Policy preferences
34. What shold be done to configure AD RMS so users can protect their data?
Modify the local policy to point to the Internal WSUS server
Share and Storage Management
Assign the application to all client computers by using a GPO.
Create an e-mail account in AD DS for your RMS users
35. Help desk staff must be able to update drivers on the domain controllers at the branch office and assign them the proper
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Win2000 Native
Your machine and remote desktops
Administrative Role Separation
36. An external partner plan requires the following: prevent sensitive documents from being forwarded to untrusted recipients or from being printed; allow users in the external partner organization to access the protected content to which they have been
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
Configure Audit Special Logon and define Special Groups
Establish a Federated Trust between your company and the external partner. Deploy a 2008 R2 server that runs MIcrosoft SharePoint 2010 and that has the Active Directory Rights Management Services (AD MS) role installed.
37. You are about to deploy 1 -000 Windows 7 desktops and your company has a web based application that only runs correctly when using IE 6. You should use
MEDV to deploy virtual desktops
Group Policy Preferences
Configure folder redirection
Offline domain join
38. You need to recommend a solution to ensure that users in the Philadelphia corporate office can access the courseware files in the remote Fernwood office. You should deploy this.
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
Configure Firewall Group Policies and link them at the Domain level
Domain based DFS namespace and configure a DFS replication group
Test-AppLockerPolicy
39. Deployment solutions that will allow both the 64 bit version of Office 2010 and the 32 bit version Office 2003 to run at a same time on a Windows 7 computer - and to do that when the computer is offline - are very limited. You should recommend
Winrm quickconfig
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Microsoft Application Virtualization (AppV)
Zone transfer settings
40. DCDNS1 is a DC and DNS server that host and ADI zone for company.com and is located in the main office. DNS2 is a DNS server that hosts a secondary zone for company.com and is located in the branch office. FSrv1 is a new file server that is located i
AD Rights Management Services
fsconfig on FSSrv2
Refresh the zone on DNS2
Ensure your account - or the group is a member of the local Administrators group for that specific server.
41. Deploying a web server farm can be costly. You need to minimize the amount of disk space used.
1) Run net stop ADLDS command 2) Use ntdsutil tool to move db files 3) Run net start ADLDS cmd
Install Windows Server 2008 R2 Web Edition - it will use the least amount of disk space.
Prestage the computer account in AD
Microsoft System Center Data Protection Manager 2010
42. You need to recommend the minimum number of logical unit numbers (LUNs) that must be provisioned for Cluster. If the cluster has an even number of nodes ...
Create a new Password Settings Object (PSO) for the IT users.
AD Domains and Trusts
Implement one LUN for the quorum and another LUN for the data
Incoming external trust
43. If you need a VPN soluction that stores VPN passwords as encrypted text and supports automatic enrollment of certificates
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
You should: on one domain controller create an Active Directory-Integrated zone for remote domain and create and Active Directory-Integrated stub zone for main domain.
Then configure auto enrollment of certificates and Credential Roaming.
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
44. With Group Polices having over 8 -000 different settings - the possibility of conflicting policies - and security filters you should track multiple versions and offline modifications to GPOs. You should recommend
Disable Site Link Bridging from IP Properties
Microsoft Desktop Optimization Pack (MDOP)
An Active Directory subnet object needs to be created.
Use CISCO IP Helper command to configure.
45. WSSvr1 has Windows SharePoint Services role installed and contains 20 SharePoint sites. You need to optimize performance and ensure that if CPU utilization exceeds 75% - then an equal amount of system resources are allocated to each SharePoint site.
Then use Windows Deployment Services (WDS)
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
Microsoft Desktop Optimization Pack (MDOP)
46. To allow a specifc user or group to manage the address information for the user accounts...
Implement folder redirection by using GPO. Then backup the folder redirection target.
Multipath I/O feature
Recommend Active Directory delegation
Deploy the Root CA certificate to the external computers.
47. You need to deploy a new application according to the following requirements: must be available to remote users when they are offline; must access the application from an icon on the Start menu
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
Assign the application to computers in the PC OU
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
From Server A - run Create Basic Task Wizard
48. To configure Administrator Role Separation for an RODC
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Network Load Balancing (NLB) cluster
Configure the zone as an Activde Directory-Integrated zone.
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
49. You need to recommend a server configuration to support a Web-based application that must meet these requirements: the app must be available to all users if a single server fails; support the installation of .NET applications; Minimize software costs
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
Authorization Manager
Create and deploy a logon script that runs Auditpol.
Modify properties of RODC server computer account.
50. Server1 collects all events that occur on your domain controllers. Using the minimal effort - from Event Viewer - what should be done to ensure you are notified when a specific event has occurred on any of your domain controllers?
From Server1 - run the Create Basic Task Wizard
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
Encrypting File System (EFS). This can be enabled locally or through a GPO.
Implement Windows System Resource Manager (WSRM) and configure user policies
