Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. To recover objects deleted from Active Directory you should recommend
Windows BitLocker Drive Encryption (Bit Locker)
Install From Media IFM
Active Directory snapshots and Tombstone reanimation
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.

2. To minimize the amount of storage required you should recommend
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Configure RODC for Administrator Role Separation
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
Share and Storage Management

3. When you need to distribute a large number of incoming connections to stateless applications such as Web servers or VPN servers you should implement this.
The Group Policy Management console
Network Load Balancing (NLB)
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.

4. To control access to resources using WSRM and to help prevent memory leaks from monopolizing your web server
Event Viewer
Domain based DFS namespace and configure a DFS replication group
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Configure separate application pools for each application

5. Domain.com's network consists of a Single AD domain. All servers and domain controllers run Windows Server 2008 R2. You need to ensure that you can: track all changes made to AD objects by the recently hired IT consulting firm; Ensure that the audits
Configure an audit policy by editing the default domain policy and configure Event Forwarding
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
Enable Windows Remote Management (WinRM) on each server.
Assign permissions for the Groups OU and Branch OU to the help desk technicians.

6. DFL is...
Win2000 Native
Active Directory Users and Computers utility
Use Netsh tool from administrator's computer.
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.

7. 3 servers are configured as DNS servers and are ADI for the company.com zone. DNS only allows for secure updates - but you need to enable dynamic DNS updates on DCC.company.com...What do you do?
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
Deploy it by using Group Policy Software Installation method
Raise the DFL to Windows Server 2008 R2.
Win2000

8. Srv1 is a Server 2008 R2 file server. If you want users to be able to access shared files when they are disconnected from the network -
Configure caching on the shared folder (offline files)
Distributed File System (DFS) Replication
Implement Windows BitLocker Drive Encryption (BitLocker)
Windows BitLocker Drive Encryption (Bit Locker)

9. To modify several user accounts to a new UPN suffix
Active Directory Users and Computers utility
Create ADMX and ADML files. Configure the GPO and link it to the domain.
FILES option within Ntdsutil
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.

10. Your DFS deployment needs to meet these requirements: minimize the bandwidth required to replicate data; ensure users see only folders to which they have access; ensure users can access the data locally.
Install and share a printer on a server and then enable printer pooling.
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
Configure offline files and enable manual caching
Then use on install image file that contains a single install image.

11. You have few Server 2003 servers that have Terminal services installed. You also have a firewall that runs ISA Server 2006. Your remote access strategy for the terminal servers needs to meeet the following: restricts accsss to specific Remote Desktop
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.

12. When deploying servers one would have to include some kind of process that would ultimately join the servers to the domain - this typically would require a script and a reboot. to help eliminate some of the steps involved and automate the deployment
Offline domain join
Enable Windows Remote Management (WinRM) on each server.
Then configure auto enrollment of certificates and Credential Roaming.
Active Directory Users and Computers

13. To reduce the administration involved when making configuration changes in IIS for several servers that are part of NLB Cluster you should implement this.
Winrm quickconfig
IIS Chared Configuration
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.
Add George to the Domain Admins group.

14. Tool to change Directory Services Restore Mode password on Domain Controller...
Data Recovery Agent
Deploy Microsoft System Center Operations Manager (SCOM)
ntdsutil
Deploy the Root CA certificate to the external computers.

15. New Password Policy needs to be created for OU different from domain password policy
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Perform an authoritative restore
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events

16. Backup solutions for the files servers that support a robotic-based tape library must support the enterprise; you should recommend
Configure separate application pools for each application
Microsoft System Center Data Protection Manager
dsa.msc - dsamain.exe - ntdsutil.exe
Implement the Windows Search Service.

17. You have a root domain and four child domains. Policy requirements state that all local guest accounts must be renamed and disabled - and all local administrator accounts must be renamed
Implement a GPO for each domain
Ldp
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
Application to the computer if you need to ensure that the application is installed on the computer before the user logs in.

18. To update ADRMS password...
DSMOD
AD Rights Management Services
Improve the performance of File Servers
Enable - ADoptionalFeature cmdlet

19. You need to design your WSUS infrastructure so that updates are highly available. To do so
Store the WSUS updates on a Distributed File System (DFS) link that uses multiple replicating targets.
Certificate Templates
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.

20. To compact AD database...
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
FILES option within Ntdsutil
Recommend one AD based service account for each web site in each domain - that would mean 10 total. NOTE: Because you're using AD accounts that there is one web site in each domain the number of service accounts will match the number of domains.
Create ADMX and ADML files. Configure the GPO and link it to the domain.

21. If you need a VPN soluction that stores VPN passwords as encrypted text and supports automatic enrollment of certificates
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
PowerShell 2.0
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
Install Microsoft Secure Socket Tunneling Protocol (SSTP)

22. DCA is DC and DNS server that holds ADI zone for company.com DNSB is member server that has DNS server role installed. What should be done so DNSB can get zone updates from DCA?
Recommend Active Directory delegation
Modify zone transfer settings for company.com zone on DCA
Implement a domain-based DFS namespace that uses replication
Microsoft Desktop Optimization Pack (MDOP)

23. If you need secure method to verify validity of individual certificates and minimize network bandwidth
Printer driver isolation
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.
Domain based Distributed File System (DFS) namespace and DFS Replication.
Configure caching on the shared folder and configure offline files to use encryption

24. Certain groups of users must be able to approve certificate requrests and revoke certificates but not be able to modify the properties of the CA. You should recommend
DSMOD
Role Separation
The Group Policy Management console
Ntdsutil

25. If you need to be able to create shared folders on Server 2008 R2
Add the new UPN suffix to the forest.
Install Hyper-V role and convert physical machines into virtual machines
Ensure your account - or the group is a member of the local Administrators group for that specific server.
Modify zone transfer settings for company.com zone on DCA

26. Client computers run Windows 7 and all applications on the computers are configured to save documetns to the local Documents folder. You need a backup strategy that meets these: Back up the Documents folder for all users; minimize admin effort. To ac
Disable Site Link Bridging from the IP properties
Implement Windows BitLocker Drive Encryption (BitLocker)
Implement folder redirection by using GPO. Then backup the folder redirection target.
Domain based Distributed File System (DFS) namespace and DFS Replication.

27. The strongest form of NAP is
Assign permissions for the Groups OU and Branch OU to the help desk technicians.
1) Publish the code signing template. 2) Modify the security settings on the template to allow only the administrators to request code signing certificates.
Ldp
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.

28. To ensure that when certain users log on to any client computers in the branch office - they automatically receive the local administrator rights to the computer - and when they log off - they must lose the administrator rights
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.
Store all sensitive files in EFS encrypted folders and require home users to access the files by using SSTP
Use the Local Roles options with dsmgmt.
Congifure the new Local User and Groups by using Group Policy Preferences option and link the policy to the Branch office site.

29. The servers in each office run Server 2008 R2 Enterprise Edition. You need to plan a failover cluster solution to service users in both offices that meet these: maintain the availability of services if a single server fails; minimize the number of se
Deploy a failover cluster that contains one node in each office.
Incoming external trust
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
Modify zone transfer settings for company.com zone on DCA

30. If CA PKI needs to support Suite B hashing and encryption algorithms and store keys in AD
Then install new Server 2008 R2 Enterprise subordinate CA.
AD Domains and Trusts
Install the full installation of Windows Server 2008 R2 Web Edition on two servers - and configure them in a Network Load Balancing cluster
Raise the DFL to Windows Server 2008 R2.

31. If users need access to files locally and must be able to access files at another site if the local copy is not available you should implement this.
Microsoft Desktop Optimization Pack (MDOP) to your company
FFL Windows Server 2008 R2
djoin /requesteodj from internal server - djoin /provision from outside server/PC
A Distributed File System (DFS) namespace

32. Auditing the deletion of Registry keys on all Domain Controllers
Use local roles options within "dsmgmt"
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Run the Delegation of Control Wizard on the Staff OU
Use Netsh tool from administrator's computer.

33. RDSRv1 is a Server 2008 R2 Remote Desktop Session Host. RDSrv1 has 8 custome apps installed. Each is configured as a RDP RemoteApp. You notice that when a user runs one of the apps - other users report that the server seems slow and that some apps be
Then Install IIS on perimeter network and redirect request to Online Responder on internal network.
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Implement Windows System Resource Manager (WSRM)

34. Engineering department has 582 Windows Server 2008 R2 servers. You need to monitor the performance of all 582 with following requirements: Create alerts when average processor usage is higher than 85% for 15 minutes; Automatically adjust the processo
Ldp
Deploy Microsoft System Center Operations Manager (SCOM)
Create a Network Load Balancing cluster.
Prestage the computer account in AD

35. To prevent account password from being cached on RODC server...
Modify properties of RODC server computer account.
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
In each satellite office - install a WSUS server and configure the WSUS servers to use the main office WSUS server as an upstream server.

36. You need to design a data storage solution that meets the following: users must be able to choose the documents that will be available when they are away from the network; minimize the number of documents that are stored on users' portable computers;
Upgrading DFS to Windows Server 2008 R2
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
Configure offline files and enable manual caching
Windows XP Mode

37. File that contains the last logon time and custom attributes values for each user in your forest.
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
802.1.x NAP
Get-ADUser cmdlet
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO

38. To ensure IT Help Desk Users can create GPOs in the domain and give them a GPO that contains preconfigured settings that will be used to create new GPOs -
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Prestage the computer account in AD
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.

39. To monitor replication of group policy template files when DFL set at Windows 2008 R2...
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
Add George to the Domain Admins group.
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Dfsrdiag

40. To decrease the amount of time it takes for the certain users to generate reports. You should recommend
Install Microsoft Secure Socket Tunneling Protocol (SSTP)
Then configure GlobalNames zones on each domain controller.
Active Directory Right Management Services (AD RMS)
Windows System Resource Manager (WSRM)

41. If a new application needs to be deployed on the network and it comes as a .msi package and then do this.
Deploy it by using Group Policy Software Installation method
Incoming external trust
Properties of PSO need modified
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise

42. You need to modify DNS infrastructure to support dynamic updates to ALL DNS servers; ensure DNS service available even if single server fails; encrypt the synchronization data sent between DNS servers.
Configure the zone as an Activde Directory-Integrated zone.
Dsmgmt
Use Windows Server Backup to back up each domain controller to a remote network share. Use Windows Deployment Services (WDS) to deploy the Windows Recovery Environment (Windows RE)
Then configure GlobalNames zones on each domain controller.

43. AD CS is configured on Server1 as a standalone CA. What two actions should you do to audit changes to the CA configuration settings and the CA security settings?
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
Additional DFS Targets
Then install new Server 2008 R2 Enterprise subordinate CA.
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.

44. When one needs to audit files - folders - printers and the registry enable
Run auditpol and then configure the Security settings of the Domain Controllers OU.
Create a new Password Settings Object (PSO) for the IT users.
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Subnet object needs to be created

45. To allow administrators to create and store .ADMX templates in a way that allows them to have access to the template no matter what administrative computer they logon to you must
Active Directory Users and Computers
Run adprep /forestprep and adprep /domainprep
Create a Central Store
Create a GPO and link the GPO to the domain then configure the GPO to be enforced

46. to make shares at a remote location available to users you should implement this.
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
Domain based Distributed File System (DFS) namespace and DFS Replication.
Modify the DNS zone replication properties of the root domain - and change it to the ForestDNSZones application directory partition
Software Restriction Polices

47. DCDNS1 is a DC and DNS server that host and ADI zone for company.com and is located in the main office. DNS2 is a DNS server that hosts a secondary zone for company.com and is located in the branch office. FSrv1 is a new file server that is located i
Either implement a DHCP server at the branch office - or configure a "Static Pool" on the RRAS server itself. If deploying a DHCP server at the branch office isn't an option - then once the Remote Access Server role has been deployed you can configur
File Server Resource Manager (FSRM) quotas and file screens
Passive file screens
Refresh the zone on DNS2

48. To speed up the deployment of the RODC in the new branch offices you should take advantage of this.
Get-ADUser cmdlet
Incoming external trust
Enable - ADoptionalFeature cmdlet
Install From Media IFM

49. to increase the reliability of the print server - configure...
Configure the zone as an Activde Directory-Integrated zone.
New ACCOUNT STORE should be added and configured
Upgrade one of the Server 2003 servers to Server 2008 R2. On this server - implement the Remote Desktop Services Gateway (RD Gateway) role and configure a Remote Desktop Services Resource authorization policy (RD RAP).
Printer driver isolation

50. To create AD Domain Services snapshot
Ntdsutil
Administrators is the minimum group membership required to complete this procedure.
Logged changes must include old and new values of any attributes. - Run auditpol and then configure Security settings of Domain Controllers OU
Encrypting File System (EFS). This can be enabled locally or through a GPO.

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Major Subjects
Tests & Exams AP CLEP DSST GRE SAT GMAT	Certifications CISSP go to https://www.isc2.org/ PMP ITIL RHCE MCTS More...	IT Skills Android Programming Data Modeling Objective C Programming Basic Python Programming Adobe Illustrator More...	Business Skills Advertising Techniques Business Accounting Basics Business Strategy Human Resource Management Marketing Basics More...
Soft Skills Body Language People Skills Public Speaking Persuasion Job Hunting And Resumes More...	Vocabulary GRE Vocab SAT Vocab TOEFL Essential Vocab Basic English Words For All Global Words You Should Know Business English More...	Languages AP German Vocab AP Latin Vocab SAT Subject Test: French Italian Survival Norwegian Survival More...	Engineering Audio Engineering Computer Science Engineering Aerospace Engineering Chemical Engineering Structural Engineering More...
Health Sciences Basic Nursing Skills Health Science Language Fundamentals Veterinary Technology Medical Language Cardiology Clinical Surgery More...	English Grammar Fundamentals Literary And Rhetorical Vocab Elements Of Style Vocab Introduction To English Major Complete Advanced Sentences Literature Homonyms More...	Math Algebra Formulas Basic Arithmetic: Measurements Metric Conversions Geometric Properties Important Math Facts Number Sense Vocab Business Math More...	Other Major Subjects Science Economics History Law Performing-arts Cooking Logic & Reasoning Trivia

Test your basic knowledge |

MSITP

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests

Major Subjects

Tests & Exams

Certifications

IT Skills

Business Skills

Soft Skills

Vocabulary

Languages

Engineering

Health Sciences

English

Math

Other Major Subjects

Browse all subjects

Browse all tests

Most popular tests