Test your basic knowledge |

MSITP

Subjects : certifications, msitp, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. When configuring delegation of administration for Domain Controllers at a remote location you must Add the users or groups as members of the Domain Admins Group. However - be careful to allow just a certain user or group of users to manage the Domain
Request and obtain a server authentication certificate from a trusted certification authority (CA) in your organization or from a trusted third-party CA - Authorization Manager provides a flexible framework for integratin role-based access control in
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
FFL Windows Server 2008 R2
Winrm quickconfig

2. You need to recommend a solution to ensure that users in the Philadelphia corporate office can access the courseware files in the remote Fernwood office. You should deploy this.
Use Netsh tool from administrator's computer.
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office
Domain based DFS namespace and configure a DFS replication group
Configure folder redirection

3. New Password Policy needs to be created for OU different from domain password policy
Then install new Server 2008 R2 Enterprise subordinate CA.
Assign the support technicans to the Administrators group on the Windows Server 2008 R2 servers.
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Enhanced Storage Access settings in Group Policy on the local machine to require a unique vendor ID to identify the device or even require a certificate for the device to connect to your machine. This policy can even lock the device when the computer

4. If you need to implement a Cert Services solution that automates distribution of certificates - ensures security and gives external users acess to resources that use cert-based authentication
Microsoft Desktop Optimization Pack (MDOP)
Use a GPO to configure device installation restrictions
Site
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.

5. You need to recommend a BitLocker recovery method you should recommend this.
Enable Windows Remote Management (WinRM) on the servers.
Modify properties of RODC server computer account.
Data Recovery Agent
Active Directory Right Management Services (AD RMS)

6. You have a root domain and four child domains. Policy requirements state that all local guest accounts must be renamed and disabled - and all local administrator accounts must be renamed
Publish the application as a Remote App. Enable Remote Desktop Web Access (RD Web Access).
Implement Distributed File System Replication (DFSR) on both servers
Microsoft SharePoint Foundation 2010
Implement a GPO for each domain

7. To allow administrators to create and store .ADMX templates in a way that allows them to have access to the template no matter what administrative computer they logon to you must
Ldp
Create a Central Store
Microsoft System Center Data Protection Manager
Create an e-mail account in AD DS for your RMS users

8. To allow a user to administer Active Directory
Add the user to the Domain Admins global group
FILES option within Ntdsutil
Run auditpol and then configure the Security settings of the Domain Controllers OU.
Create TWO new starter GPO's one with user administrative templates configure - and one with computer admin template configured - and export them to .cab files - and make the .cab files available in both forests...Then when creating new group policie

9. To backup Virtual Machines
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Deploy Microsoft System Center Data Protection Manager 2010 and create a new protection group.
1) Add the branch office admin accounts to teh Group Policy Creator Owners Group. 2) Run the Delegation of Control Wizard and delegate the right to link GPOs for their branch OUs to the branch office admins.
Move "Infrasture Master" role in child domain to a DC that does not hold the Global Catalog.

10. GPO's can be difficult to manage; you need a solution that will include version tracking and offline modifications. You should recommend
Microsoft Desktop Optimization Pack (MDOP) to your company
Configure an audit policy by editing the default domain policy and configure Event Forwarding
Zone transfer settings
Use a GPO to configure device installation restrictions

11. To configure Administrator Role Separation for an RODC
Recommend Group Policy preferences
Changed manually
Click Start - click Run - type cmd - and then press ENTER. - At the command prompt - type dsmgmt.exe - and then press ENTER. - For a list of valid parameters - type ? - and then press ENTER. - By default - no local administrator role is defined on th
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.

12. An AD LDS instance needs to be replicated from one server to another...
Authorization Manager
Add the user to the Domain Admins global group
IIS Manager user account
Service user account for AD LDS

13. When using Remote Desktop and Remote Desktop Session hosts - to be able to control both who can gain access - and to what - on the network configure;
Configure caching on the shared folder (offline files)
One Remote Desktop connection authorization policy (RD CAP) and two Remote Desktop resource authorization polices (RD RAPs)
Authorization Manager
Use the Local Roles options with dsmgmt.

14. What should be configured to ensure domain controllers only replicate between doain controllers in adjacent sites?
Disable Site Link Bridging from IP Properties
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO
Implement Distributed File System Replication (DFSR) on both servers
Restore-ADObject cmdlet

15. You need a patch management strategy to deploy updates to the computers on the secure network. To accomplish
Win2000
Subnet object needs to be created
Registry on users computer needs to be modified
Deploy WSUS server on secure network. From an online WSUS server - copy the update metadata and the WSUS content to the WSUS server on the secure network.

16. To make deploying the custom Word dictionary easy
Additional DFS Targets
Recommend Group Policy preferences
Configure caching on the shared folder and configure offline files to use encryption
Import-Module

17. Requirements are: support the installation of SQL Server 2008; Provide redundancy for SQL services if a single server fails. To accomplish this
Microsoft Desktop Optimization Pack (MDOP)
Install a full installation of Windows Server 2008 R2 Enterprise Edition on two servers and configure the failover cluster services on them.
Dsmgmt
Deploy Remote Desktop Connection 7.0 on all computers; Enabled the Desktop Experience feature on the RD Session host; and install the application on the Remote Desktop Services server.

18. To determine size of AD database file...
View properties of %systemroot%ntdsntds.dit
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
The WSUS client to retrieve updates from Microsoft Update (Do not Store updates locally)
Ldp

19. Your company recently created a corporate web site using their own internal developers. Recently your CIO has decided that it would be best that some of the work be done by an outside contractor - and to allow that contractor to only the specific sec
IIS Manager user account
ntdsutil
Implement Network Access Protection (NAP)
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.

20. For complete fault tolerance the backend SQL Server should be protected as well - by placing it in a MSCS Failover Cluster) - To allow computers that are members of the domain to receive updates from a local WSUS you can easily create a group policy
PDC emulator with w32tm.exe
Implement a domain-based DFS namespace and add a second namespace server; Enable the "Clients fail back to preferred targets" option. Make sure all client computers have at least XP SP2.
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
Modify the local policy to point to the Internal WSUS server

21. A specific application requires registry modifications to be in place before installing; you should use
Group Policy Preferences
Modify the schema of LDSInst1
The computer must be connected to the network when the end user clicks the icon and launches the install of the application.
Add-ADFineGrainedPasswordPolicySubject cmdlet

22. What should be done so application does not fail after 30 days while still keeping password policy in mind?
Network Policy Server (NPS) and Routing and Remote Access Service (RRAS)
AD Domains and Trusts
Then use Windows Deployment Services (WDS) on DHCP1.
Set-ADServiceAccount cmdlet

23. to protect file servers and hard disks that may be at risk of being accessed or stolen
Run a full back up by using Windows Server Backup - and then run a full back up of the Hyper-V hosts by using Windows Server Backup.
Implement Windows BitLocker Drive Encryption (BitLocker)
Microsoft Desktop Optimization Pack (MDOP) to your company
Execute the Active Directory Diagnostics Data Collector Set and then review the report.

24. You need to deploy a distributed database application that meets the following: allocates storage to servers as required; isolates storage traffic from the exisiting network; ensures that data is available if a single disk fails; ensures that data is
A Fibre Channel (FC) disk storage subsystem that uses Microsoft Multipath I/O. Configure a RAID 5 array.
Execute the Active Directory Diagnostics Data Collector Set and then review the report.
Then Upgrade clients to Win7 - implement Enterprise CA on Win 2008 R2 and implement IPSec VPN with cert-based authentication.
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.

25. So a user can install updates on an RODC while preventing them from logging on to any other domain controller...
IPSec based enforcement. IPSec enforcement should be used when you want a stronger solution than 802.1x - DHCP or VPN based NAP. IPSec based NAP cannot be bypassed by modifying the NAP agent/client.
Deploy the application via RemoteApp as an .MSI file and enable File Extension Take over.
Use local roles options within "dsmgmt"
ntdsutil

26. You need to allow a user to add a single computer to a domain - without any additional rights...
Ntdsutil
Prestage the computer account in AD
Deploy an off-line standalone Root CA - deploy an on-line Enterprise Subordinate CA - and deploy an on-line standalone Subordinate CA.
SSTP is a good solution if you have Vista SP1 or higher and your security team has already opened port 443 on the firewall and the coporate security policy states that they would prefer not to open any more ports on the firewall than necessary. SSTP

27. If your company has the need to create administrative templates (.admx) files for Active Directory runnin on server 2008 R2 you should recommend...
Then configure auto enrollment of certificates and Credential Roaming.
Implementing a Central Store. This will allow custom .admx files to replicate and be available to administrators on any administrative workstation with the RSAT tools installed in the enterprise
Implement GPO for all client computers
PDC emulator with w32tm.exe

28. You need to plan for the delegation of administrative authority for an OU in your AD named Staff. It should: allow help desk admins to create user accounts in the Staff OU; allow helpdesk admins to change the address attributes; prevent HelpDesk admi
Run the Delegation of Control Wizard on the Staff OU
Deploy the Root CA certificate to the external computers.
Add the new UPN suffix to the forest.
Create a standard secondary of domain and create standard secondary of other domain.

29. When deploying servers one would have to include some kind of process that would ultimately join the servers to the domain - this typically would require a script and a reboot. to help eliminate some of the steps involved and automate the deployment
Offline domain join
Install the Remote Server Administration Tools (RSAT) on the Windows 7 computers.
Implement Shadow Copies
Win2000

30. Audit account management policy settings and Audit directory services access settings are enabled for the entire domain. What should be done to ensure that changes made to AD objects can be logged? The logged changes must include the old and new valu
Subnet object needs to be created
Run auditpol and then configure the Security settings of the Domain Controllers OU.
Recommend Offline Files
Include an iSCSI disk storage subsystem that supports Virtual Disk Service (VDS). Configure the storage subsystem as a RAID 5 array.

31. The solution requires that teachers that have been issued district based laptops - work remotely - and teach only on-line classes - must connect to the school network using split-tunnel VPN. Need to be sure that: minimize traffic over the VPN wheneve

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183

32. If a user needs to access a new cert template when logging on to any client computer in domain and you need to automatically install on each client computer a cert
Then configure auto enrollment of certificates and Credential Roaming.
Configure RODC for Administrator Role Separation
Create a Network Load Balancing cluster.
Deploy a standalone DFS namespace; Enable access-based enumeration and use DFS Replication

33. In Active Directory Sites and Services - what should be configured to ensure domain controllers only replicate between domain controllers in adjacent sites?
Utilize IFM (Install From Media)
Disable Site Link Bridging from the IP properties
Then use on install image file that contains a single install image.
Implement Network Access Protection (NAP) that uses 802.1x enforcement

34. To monitor replication of group policy template files when DFL set at Windows 2008 R2...
Refresh the zone on DNS2
Domain based Distributed File System (DFS) will reduce network traffic
Run the Delegation of Control Wizard on the Staff OU
Dfsrdiag

35. There is a file server in each office that contains a shared folder named Data. You need to plan the data availability for the Data folder according to these requirements: if WAN link fails - the files in the Data folder must be available in all of t
Deploy it by using Group Policy Software Installation method
Implement a domain-based DFS namespace that uses DFS Replication in a hub and spoke topology
1) Restart dc in DirectoryServiceRestoreMode - 2) Restory system state data to date before organizational unit was deleted - 3) Use ntdsutil utility to mark organizational unit as authoritative 4) Restart Domain Controller
Install WSUS 3.0 on a 2008 R2 server and configure Windows Update by using a GPO

36. Recently it was decided to increase the performance of the company's Web Servers by deploying a NLB Web server farm. You need to ensure that the content is easily replicated across all the servers in the farm. You should implement this.
dnscmd
Distributed File System (DFS) Replication
Add-ADFineGrainedPasswordPolicySubject cmdlet
Add the user to the Domain Admins global group

37. You have 159 server 2008 R2 servers that must meet the following: notification by e-mail to the administrator if error occurs on any server with minimum effort...
On one server - create event subscriptions for each server...on the server - attach tasks to the application error events
Then use Key Management Service (KMS) - DHCP server - and Windows Deployment Services.
Administrators is the minimum group membership required to complete this procedure.
From Server A - run Create Basic Task Wizard

38. You need an Active Directory strategy that supports the recovery of deleted objects for up to one year after the date of deletion. to accomplish this
Install Windows Server 2008 R2 Datacenter Edition on each server. Deploy the servers in a failover cluster. Deploy an iSCSI storage area network (SAN) - You have a main office and branch office.
Increase the tombstone lifetime for the forest.
802.1.x NAP
Implement Shadow Copies

39. To create and additional AD LDS applicaiton directory partition in existing instance...
Active Directory Right Management Services (AD RMS)
Import-Module
Ldp
Configure a server with the Remote Desktop Services role and install Outlook 2003 on the Remote Desktop Services server. Then publish Outlook 2003 as a Remote Desktop Services RemoteApp (RD RemoteApp).

40. All users store their files in their Documents folder. Some of these are very large. You are going to implement roaming profiles for all your users. You will configure this by using a GPO. To minimize the amount of time it takes for your users to log
Modify the GPO to include folder redirection
You could restore the backup to an alternate location. Then mount the database using the AD Database Mounting Tool (Dsamain.exe)
Then configure GlobalNames zones on each domain controller.
Enable Windows Remote Management (WinRM) on each server.

41. To ensure that admins in the corporate office can manage and control all Windows Updates and manage WSUS computer groups - deploy this.
Install and share a printer on a server and then enable printer pooling.
Group Policy Preferences
WSUS server in the branch office in replica mode.
Install Windows Server Backup and modify the Windows firewall settings

42. If you want to implement BitLocker and store recovery informaiton in a central location
Then make sure all DCs are runing Windows Server 2008 R2 - and then use a GPO to enable Trusted Platform Module backups to AD.
Recommend Offline Files
Branch Cache server that operates in Hosted Cache mode in your recommendation. This is an ideal solution if the branch office already maintains a Server 2008 R2 server solution (no additional licenses would be needed)
Run auditpol and then configure the Security settings of the Domain Controllers OU.

43. To backup to tape/robotic tape and to backup VMs you must use...
Installing Hyper-V on a Server Core installation of Windows Server 2008 R2 Enterprise
Add the IT Help Desk Users to the Group Policy Creator Owners group and then create a new Starter GPO.
Use Netsh tool from administrator's computer.
Microsoft System Center Data Protection Manager 2010

44. What role to keep same time as an external server?
In AD Sites and Services - assign a new IP subnet to SiteB - and then move the new DC object to SiteB.
Add-ADFineGrainedPasswordPolicySubject cmdlet
PDC emulator with w32tm.exe
Implement Network Access Protection (NAP) that uses 802.1x enforcement

45. All computers are running either Windows SP2 or Windows 7. You want to audit users that are accessing the administrative shares on all the computers...
Create and deploy a logon script that runs Auditpol.
PowerShell 2.0
Implement Windows System Resource Manager (WSRM) and configure a resource-allocation policy for process-based management.
Store all sensitive files in EFS encrypted folders and require home users to access the files by using SSTP

46. Deployment of 10 WSUS servers across 10 branch office will take place over a three month period. The bandwidth between the corporate office and the branch offices must be minimized due to budget contraints within the company. Admins in the corporate
Configure folder redirection
Microsoft Application Virtualization (AppV)
Repadmin
WSUS servers running in replica mode - and configure them to download updates from the WSUS server in the main office

47. To prevent account password from being cached on RODC server...
ntdsutil
Object access auditing on the server that supports the resource. Note: Enabling audit access also helps when auditing your Cert Servers
Modify properties of RODC server computer account.
Loopback Processing - The purpose of the Loopback Processing policy is to prevent usesr policies that currently affect the user from following them to a publicly used or (shared remote desktop) computer. We may indeed in many cases want these policie

48. You are upgrading only a few computers in one department to Windows 7. These computers are running a legacy XP application you should recommend...
1) Stop AD services service 2) Compact ntds.dit 3) Move to %windir% ntds 4) Start AD domain services service
Windows XP Mode
Storage manager for SANs
Then deploy Windows Deployment Services (WDS) and Transport Server feature and configure transport server to use static multicast address range.

49. If you need to minimize the number of install images and support Win Server 2008 R2 deployment
Implement the Windows Search Service.
Then use on install image file that contains a single install image.
Add all the particular accounts into a new global security group. - Create new (PSO) and apply to group.
Deploy a GPO for the Sales OU

50. Auditing the deletion of Registry keys on all Domain Controllers
Deploy Microsoft SharePoint Foundation 2010 - and then migrate the share to a new document library. Enable versioning for the library
Modify Object Access Settings AND Global Object Access Auditing settings FROM Advanced Audit Policy configurations
Discover the run Microsoft Baseline Security Analyzer (MBSA)
Microsoft Desktop Optimization Pack (MDOP) to your company

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Major Subjects
Tests & Exams AP CLEP DSST GRE SAT GMAT	Certifications CISSP go to https://www.isc2.org/ PMP ITIL RHCE MCTS More...	IT Skills Android Programming Data Modeling Objective C Programming Basic Python Programming Adobe Illustrator More...	Business Skills Advertising Techniques Business Accounting Basics Business Strategy Human Resource Management Marketing Basics More...
Soft Skills Body Language People Skills Public Speaking Persuasion Job Hunting And Resumes More...	Vocabulary GRE Vocab SAT Vocab TOEFL Essential Vocab Basic English Words For All Global Words You Should Know Business English More...	Languages AP German Vocab AP Latin Vocab SAT Subject Test: French Italian Survival Norwegian Survival More...	Engineering Audio Engineering Computer Science Engineering Aerospace Engineering Chemical Engineering Structural Engineering More...
Health Sciences Basic Nursing Skills Health Science Language Fundamentals Veterinary Technology Medical Language Cardiology Clinical Surgery More...	English Grammar Fundamentals Literary And Rhetorical Vocab Elements Of Style Vocab Introduction To English Major Complete Advanced Sentences Literature Homonyms More...	Math Algebra Formulas Basic Arithmetic: Measurements Metric Conversions Geometric Properties Important Math Facts Number Sense Vocab Business Math More...	Other Major Subjects Science Economics History Law Performing-arts Cooking Logic & Reasoning Trivia

Test your basic knowledge |

MSITP

Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?

Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests

Major Subjects

Tests & Exams

Certifications

IT Skills

Business Skills

Soft Skills

Vocabulary

Languages

Engineering

Health Sciences

English

Math

Other Major Subjects

Browse all subjects

Browse all tests

Most popular tests