Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. To improve performance and provide redundancy if a single server fails - the intranet web site should be in this.
Place the operating system files on one of the RAID 1 array - place the SQL transaction logs on the other RAID 1 array - and place the SQL database files on the RAID 5 array
Active Directory Rights Management Services (AD RMS) and Microsoft SharePoint Foundation 2010
Network Load Balancing (NLB) cluster
Group Policy Preferences

2. Your domain has three OUs - HR - IT - and Sales. You need to redesign the layout of the OUs to support the following: Prevent GPOs that are linked to the domain from applying to computers located in IT OU; minimize number of GPOs; minimize number of
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
Configure block inheritance on the IT OU
Restore-ADObject cmdlet
PDC emulator with w32tm.exe

3. When taking files offline there is always a security risk. Corporate files now reside on a laptop that will leave the confines of the corporate office. When taking files offline it is best practice to help protect these files using
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
Encrypting File System (EFS). This can be enabled locally or through a GPO.
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)

4. DFL is...
Storage manager for SANs
Win2000 Native
Certificate Templates
Purchase one additional Enterprise License

5. Certain apps may require that the end user have the ability to make changes to the application - however some applications may allow these changes to be made in the registry. To give you as the administrator the ability to make changes as necessary -
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Then install new Server 2008 R2 Enterprise subordinate CA.
Group Policy Preferences
Configure separate application pools for each application

6. To speed up the deployment of the RODC in the new branch offices you should take advantage of this.
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office
Your machine and remote desktops
Then configure GlobalNames zones on each domain controller.
Install From Media IFM

7. What shold be done to configure AD RMS so users can protect their data?
Create an e-mail account in AD DS for your RMS users
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
Offline domain join

8. You have a 2008 R2 server configured as Remote Desktop Session host. You need to deploy a line-of-business app; however - the app requires desktop themes to be enabled. Your deployment strategy must meet these requirements: only authorized users must
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Deploy it by using Group Policy Software Installation method
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.

9. To make deploying the custom Word dictionary easy
Your machine and remote desktops
Recommend Group Policy preferences
Install From Media IFM
Implement Distributed File System Replication (DFSR) on both servers

10. You need to modify DNS infrastructure to support dynamic updates to ALL DNS servers; ensure DNS service available even if single server fails; encrypt the synchronization data sent between DNS servers.
Add the user to the Domain Admins global group
1) Remove the Auth Users account from the Secutiy tab of the company.com DNS zone properties. 2) Assign the server computer accounts to the Allow on Create All Child Objects permission on the Security tab of the company.com DNS zone properties.
Create an Active Directory-Integrated zone.
Configure the zone as an Activde Directory-Integrated zone.

11. 4 steps to perform offline Defragmentation of AD database...
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
Then install new Server 2008 R2 Enterprise subordinate CA.
CAPublishGP group should have the Manage CA permission.
Deploy two writable domain controllers in ad.company.com and recommend to configure both domain controllers as GC's.

12. Tool to change Directory Services Restore Mode password on Domain Controller...
ntdsutil
Dsmgmt
WSUS server running in replica mode that is configured to download updates from Microsoft Update (a.k.a. replica split)
Active Directory Users and Computers

13. GPO's can be difficult to manage; you need a solution that will include version tracking and offline modifications. You should recommend
Implement folder redirection by using GPO. Then backup the folder redirection target.
Microsoft Desktop Optimization Pack (MDOP) to your company
Group Policy Preferences
Install Hyper-V role and convert physical machines into virtual machines

14. If you need to deploy multiple servers through automation of installation and activation and minimize network traffic
Use Netsh tool from administrator's computer.
The Group Policy Management console
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library

15. Within your company you have a server that will be running 8 VMs but only 6 concurrently. Your company has already purchased an Enterprise license for the server.
Win2000
Active Directory Right Management Services (AD RMS)
File Server Resource Manager (FSRM) quotas and file screens
Purchase one additional Enterprise License

16. To reduce the administration involved when making configuration changes in IIS for several servers that are part of NLB Cluster you should implement this.
newly implemented technologies must have a minimal effect on LAN traffic - is met by using express installation files
IIS Chared Configuration
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Login to one DC and create and configure a conditional forwarder to replicate to all DNS servers in the forest.

17. 3 servers are configured as DNS servers and are ADI for the company.com zone. DNS only allows for secure updates - but you need to enable dynamic DNS updates on DCC.company.com...What do you do?
Implement File Server Resource Manager (FSRM) quotas on the desired servers
DISABLE slow link detection in the GPO
Purchase one additional Enterprise License
Reinstall AD DS on DCC.company.com as a WRITABLE DC.

18. If you want to allow the administrator in each office to manage DHCP scope for their own office - and prevent the administror of one office from managing DHCP scopes on the DHCP server in another office with mimimal admin effort
Administrators is the minimum group membership required to complete this procedure.
Then Migrate DHCP server role from the domain controllers to the files servers. On file servers - add admin for office to DHCP admin local group.
Basic Authentication and SSL
Create a standard secondary of domain and create standard secondary of other domain.

19. Requirements are: support the installation of SQL Server 2008; Provide redundancy for SQL services if a single server fails. To accomplish this
Software Restriction Polices
Install Windows Server Backup and modify the Windows firewall settings
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.

20. to protect file servers and hard disks that may be at risk of being accessed or stolen
Install File Server Resource Manager (FSRM) role service - and then configure Quota Managment and Storage Reports Management
Upgrade one of the TS to Windows Server 2008 R2 and configure it as the Remote Desktop Services Gateway (RD Gateway). Then implement Network Access Protection (NAP).
Passive file screens
Implement Windows BitLocker Drive Encryption (BitLocker)

21. You need an Active Directory strategy that supports the recovery of deleted objects for up to one year after the date of deletion. to accomplish this
Add the Remote1-Admins group to the Administrators local group on each server in Remote1.
Reinstall AD DS on DCC.company.com as a WRITABLE DC.
Increase the tombstone lifetime for the forest.
Create a standard secondary of domain and create standard secondary of other domain.

22. The Computer Management snap-in allows you to create shares both on...
djoin /requesteodj from internal server - djoin /provision from outside server/PC
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
Your machine and remote desktops
Then install new Server 2008 R2 Enterprise subordinate CA.

23. Tool to montior replicaiton of group policy template files when DFL set at Windows SVR 2003
Execute the Set-ADServiceAccount cmdlet
Ntfrsutil
Create a new Password Settings Object (PSO) for the IT users.
Dynamically expanding VHD's

24. You have 2 Server Core servers that are part of a Network Load Balance that host a web site. To be able to allow administrators - on their Windows 7 computers - remotely manage the NLB with automation
Configure block inheritance on the IT OU
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication
Configure RADIUS accounting by using local file loggin on each server. Store the log files in an Internet Authentication Service (IAS) format on a shared folder on one of the servers (Srv1).
Enable Windows Remote Management (WinRM) on the servers.

25. To defragment and AD database...
Configure folder redirection
Raise the DFL to Windows Server 2008 R2.
net stop ntds
Deploy a GPO for the Sales OU

26. If you want to implement BitLocker and store recovery informaiton in a central location
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
Install and share a printer on a server and then enable printer pooling.
Recommend Active Directory delegation
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.

27. You need to implement read only copies of files at several locations. You currently have DFS for 2008 deployed. You should recommend this.
Import-Module
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop
Upgrading DFS to Windows Server 2008 R2
Assign the application to all client computers by using a GPO.

28. In order for admins at a branch office to be able to change their passwords and logon if a single DC fails even if the WAN Link to the corporate office fails you shoud

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

29. A specific application requires registry modifications to be in place before installing; you should use
AD RMS
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie
Group Policy Preferences
Additional DFS Targets

30. To be able to manage all the corporate servers from a workstation - you must install the
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
WDS
Create a standard secondary of domain and create standard secondary of other domain.
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop

31. Company.com is working on a set of corporate documents. These documents are stored in a shared folder on your corporate file server. You need to protect documents as they get created.
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Windows Deployment Services (WDS)
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
Then install new Server 2008 R2 Enterprise subordinate CA.

32. What should be done to resolve names by using GlobalNames zone?
dnscmd tool
Modify zone transfer settings for company.com zone on DCA
Implement Windows System Resource Manager (WSRM) and configure user policies
Active Directory Domains and Trusts

33. You have been tasked with backing up all the GPOs in the domain. The IT manager also wants you to minimize the size of the backup. You decide to use...
Disable Site Link Bridging from the IP properties
Create a GPO and link the GPO to the domain then configure the GPO to be enforced
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.
The Group Policy Management console

34. Can be used to install the Windows RE on existing servers
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
WSUS server in the branch office in replica mode.
WDS
Configure an audit policy by editing the default domain policy and configure Event Forwarding

35. Capture all replication errors from all your DCs to a central location...
FILES option within Ntdsutil
Implement File Server Resource Manager (FSRM) quotas on the desired servers
Configure event log subscriptions
Remote Server Administrative Tools (RSAT) on your administrative workstation or laptop

36. You need to manage GPO to meet the following: allow administrators to view and edit the GPO in their own language; minimize number of GPOs deployed
Autonomous mode...This allows the local administrator to approve their own updates.
Ntfrsutil
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Create ADMX and ADML files. Configure the GPO and link it to the domain.

37. UPN Suffix xxxx.com needs to be available for user accounts...
Attach VHD file created by Windows server backup
An Active Directory subnet object needs to be created.
Add the new UPN Suffix to the forest
Execute the Active Directory Diagnostics Data Collector Set and then review the report.

38. You need to ensure that your Windows 2008 R2 file servers meet the following: supports volumes larger than 2 terabytes - if a single disk fails - maintain data redundancy - if a single server fails - maintain access to all data - maximize disk throug
PowerShell 2.0
Deploy a two-node cluster. Connect an external storage subsystem. Configure the external subsystem as a RAID 10 array - and format the array as a GPT disk.
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)

39. The company requires that only users that have a certificate can recover BitLocker keys. To support this requirement you will need to
Create a user and designate him as a recovery agent by issuing him a data recovery certificate.
djoin /requesteodj from internal server - djoin /provision from outside server/PC
Active Directory Users and Computers
Upgrading DFS to Windows Server 2008 R2

40. Need to access some resources in another domain that is part of another forest...What trust is created?
Create an e-mail account in AD DS for your RMS users.
Configure RADIUS accounting by using SQL loggin on each server and use Srv1 as database for RADIUS aaccounting.
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie
Incoming external trust

41. To deploy templates across the organization
Place the operating system files on one of the RAID 1 array - place the SQL transaction logs on the other RAID 1 array - and place the SQL database files on the RAID 5 array
Add \file2templates as a folder target for \domain.comdfstemplates - Create a DFS replication group that contains \file1templates and \File2templates
Include a server that runs Microsoft Office SharePoint Server 2010
Implement one LUN for the quorum and another LUN for the data

42. hr.domain.com domain has an OU named Sales...You need to give UserA administrative rights so that he can manage Group Policies for the Sales OU while meeting the following requirments: UserA must be able to create and configure Group Polices in hr.do
Run the Delegation of Control Wizard on Sales OU. In Group Policy Management Console - modify the permissions of the Group Policy Objects container in the hr.domain.com domain.
Autonomous mode...This allows the local administrator to approve their own updates.
Configure each SharePoint site to use a separate application pool - and then implement Windows System Resource Manager (WSRM)
New ACCOUNT STORE should be added and configured

43. If you need to implement Encrypting File System (EFS) and minimize amount of data transferred across and access EFS certs on any client computer
Implement Microsoft System Center Configuration Manager (SCCM) 2007 R2.
Dynamically expanding VHD's
Enable Credential Roaming
Create ADMX and ADML files. Configure the GPO and link it to the domain.

44. to prevent VMs from receiving updats from a group policy
Apply a WMI Filter to the policy. Note: You can use a WMI filter to filter out VM from being affected by a GPO the same way you can a physcial machine.
Autonomous mode...This allows the local administrator to approve their own updates.
Deploy the Root CA certificate to the external computers.
From Server A - run Create Basic Task Wizard

45. To recover objects deleted from Active Directory you should recommend
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
Configure an audit policy by editing the default domain policy and configure Event Forwarding
A Distributed File System (DFS) namespace
Active Directory snapshots and Tombstone reanimation

46. To make a 64-bit application available to several 32-bit XP SP3 computers in the branch office you could use either a remote desktop session host or a remote desktop virtualization host. However - if the application requires you to be a local adminis

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

47. when deploying Virtual Machines in a Remote Desktop pool you can minimize the amount of disk space used by the VM and reduced the admin effort by deploying this.
Then configure GlobalNames zones on each domain controller.
Assign the application to computers in the PC OU
The applications within the VM by using RemoteApp. Create a RemoteApp and Desktop Connection for each VM.
1) Enable the Audit object access setting in the Local Security Policy for Srv1. 2) Configure auditing in the Certification Authority snap-in.

48. What utility is used to see what accounts cached on RODC?
Add all the sales user accounts into a new global security group. Create a new Password Policy Object (PSO) and apply it to the group.
Active Directory Users and Computers
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Jill came down with 2.50.

49. If you need to ensure that data is protected by BitLocker then you will...
Administrative Role Separation
Provide remote access to a Windows Server 2008 R2 server that has the Remote Server Administration Tools (RSAT) installed.
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.
NOT be able to store that data on an iSCSI SAN

50. If your company has the need to create administrative templates (.admx) files for Active Directory runnin on server 2008 R2 you should recommend...
Allocate three disks to a single RAID 5 volume for the user data. Allocate two disks to a mirrored volume for the operating system data.
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
One virtual network...Install two network adapaters on each node. Configure the network adapters to communicate on separate subnets.
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise