Term
You work as the network administrator at PassGuide.com. The PassGuide.com network has a
domain named PassGuide.com. All servers on the PassGuide.com network run Windows Server
2008.
Only one Active-Directory integrated zone has been configured in the PassGuide.com domain.
PassGuide.com has requested that you configure DNS zone to automatically remove DNS records
that are outdated.
What action should you consider? |
|
Definition
| B. You should consider enabling Scavenging in the DNS zone properties page. |
|
|
Term
You work as the network administrator at PassGuide.com. The PassGuide.com network has a
domain named PassGuide.com. All servers on the PassGuide.com network run Windows Server
2008.
The PassGuide.com network has a server named PASSGUIDE-SR15. You install the Active
Directory Lightweight Directory Services (AD LDS) on PASSGUIDE-SR15.
Which of the following options can be used for the creation of new Organizational Units (OU’s) in
the application directory partition of the AD LDS? |
|
Definition
| B. You should open the ADSI Edit Microsoft Management Console on PASSGUIDE-SR15. |
|
|
Term
You work as the network administrator at PassGuide.com. The PassGuide.com network has a
domain named PassGuide.com. All servers on the PassGuide.com network run Windows Server
2008.
The PassGuide.com network has two domain controllers PASSGUIDE-DC01 and PASSGUIDEDC02.
PASSGUIDE-DC01 suffers a catastrophic failure but it is causing problems because it was
configured to have Schema Master Operations role. You log on to the PassGuide.com domain as
a domain administrator but your attempts to transfer the Schema Master Operations role to
PASSGUIDE-DC02 are unsuccessful.
What action should you take to transfer the Schema Master Operations role to PASSGUIDEDC02? |
|
Definition
| B. Your best option would be to have the Schema Master role seized to PASSGUIDE-DC02. |
|
|
Term
You work as the network administrator at PassGuide.com. The PassGuide.com network has a
single forest. The forest functional level is set at Windows Server 2008.
The PassGuide.com network has a Microsoft SQL Server 2005 database server named
PASSGUIDE-DB04 that hosts the Active Directory Rights Management Service (AD RMS).
You try to access the Active Directory Rights Management Services administration website but
received an error message stating:
"SQL Server does not exist or access is denied."
How can you access the AD RMS administration website? |
|
Definition
You need to restart the Internet Information Server (IIS) service and the MSSQLSVC service on
PASSGUIDE-DB04. |
|
|
Term
You work as an enterprise administrator at PassGuide.com. The PassGuide.com network has a
domain named PassGuide.com. The PassGuide.com network has a Windows Server 2008
computer named PASSGUIDE-SR03 that functions as an Enterprise Root certificate authority
(CA).
A new PassGuide.com security policy requires that revoked certificate information should be
available for examination at all times.
What action should you take adhere to the new policy? |
|
Definition
B. This can be accomplished by having the Online Certificate Status Protocol (OCSP) responder
implemented. |
|
|
Term
You work as the network administrator at PassGuide.com. The PassGuide.com network has a
domain named PassGuide.com. All servers on the PassGuide.com network run Windows Server
2008.
You are responsible for managing two servers PASSGUIDE-SR01 and PASSGUIDE-SR02. They
are setup with the following configuration.
PASSGUIDE-SR01 running Enterprise Root certificate authority (CA)
PASSGUIDE-SR02 running Online Responder role service
Which of the steps must you perform for configuring the Online Responder to be supported on
PASSGUIDE-SR01? |
|
Definition
| You should enable the Authority Information Access (AIA) extension on PASSGUIDE-SR01. |
|
|
Term
You work as the network administrator at PassGuide.com. The PassGuide.com network has a
domain named PassGuide.com. All servers on the PassGuide.com network run Windows Server
2008 and all client computers run Windows Vista.
The PassGuide.com network has a client computer named PASSGUIDE-WS640 that was last
used six months ago. During the course of the day you attempt to log on to PASSGUIDE-WS640
but you are unable to authenticate during the logon process.
What action should you consider in order to log on to PASSGUIDE-WS640? |
|
Definition
| You should consider removing PASSGUIDE-WS640 from the domain and then rejoining it. |
|
|
Term
You work as an enterprise administrator at PassGuide.com. The PassGuide.com network has a
forest with a domain named PassGuide.com.
The PassGuide.com network has a Windows Server 2008 domain controller named PASSGUIDEDC01
that hosts the Directory Services Recovery Mode (DSRM) role.
What would be the best option to take to have the DSRM password reset? |
|
Definition
| The best option is to run the ntdsutil command. |
|
|
Term
You work as an enterprise administrator at PassGuide.com. The PassGuide.com network has a
domain named PassGuide.com. All servers on the PassGuide.com network run Windows Server
2008. PassGuide.com has two offices Chicago and Dallas.
The network has the following setup.
Chicago Office - Domain Controller named PASSGUIDE-DC01
Dallas Office - Read-Only Domain Controller named PASSGUIDE-DC02
How can you make sure that Dallas Office users use only PASSGUIDE-DC02 for authentication? |
|
Definition
You should consider installing and configuring the Password Replication Policy on
PASSGUIDE-DC02. |
|
|
Term
You work as the network administrator at PassGuide.com. The PassGuide.com network has a
domain named intl.PassGuide.com. All servers on the PassGuide.com network run Windows
Server 2008. The domain controllers on the PassGuide.com domain are configured to function as
DNS servers.
What action should you take to ensure that computers that are not part of the intl.PassGuide.com
domain are not able to dynamically register their DNS registration information in the
intl.PassGuide.com zone? |
|
Definition
| You should consider configuring Secure Only dynamic updates. |
|
|
Term
You work as a network administrator at PassGuide.com. The PassGuide.com network has a
domain named PassGuide.com. All servers on the PassGuide.com network run Windows Server
2008.
The PassGuide.com network has two servers named PASSGUIDE-SR01 and PASSGUIDE-SR02
that are configured as domain controllers and as DNS servers. Both servers have the following
setup for the PassGuide.com domain.
PASSGUIDE-SR01 - Standard Primary zone
PASSGUIDE-SR02 - Standard Secondary zone.
You have to perform the following tasks
- Perform the replication of PassGuide.com Zone Data
- Make sure that Zone Data maintains encryption
- Prevent the loss of Zone Data
How can you accomplish the goals |
|
Definition
C. You should consider having the primary zone on PASSGUIDE-SR01 converted to an Active
Directory-integrated zone.
D. You should consider having the secondary zone on PASSGUIDE-SR02 deleted. |
|
|
Term
You work as the network administrator at PassGuide.com. The PassGuide.com network has a
domain named PassGuide.com. All servers on the PassGuide.com network run Windows Server
2008.
All master roles in the forest are maintained at a domain controller PASSGUIDE-DC01. You have
another domain controller in the network named PASSGUIDE-DC02 which contains better
hardware and can improve performance. PASSGUIDE-DC01 is to be removed from the network.
Which option can you select in order to ensure that proper roles are transferred to PASSGUIDEDC02
without disrupting the forest wide operations? |
|
Definition
| You should consider transferring the Infrastructure master role and the PDC emulator role. |
|
|
Term
You work as the enterprise administrator at PassGuide.com. The PassGuide.com network has a
domain named PassGuide.com. All servers on the PassGuide.com network run Windows Server
2008. The PassGuide.com network has a domain controller named PASSGUIDE-DC01 that has a
single hard drive named Drive C. Drive C hosts the ntds.dit database. You have installed an
additional hard drive named Drive D on PASSGUIDE-DC01.
What would be the best option to take to transfer the ntds.dit database to Drive D? |
|
Definition
| The best option is to run the Ntdsutil command with the Files option. |
|
|
Term
You work as a network administrator at PassGuide.com. The PassGuide.com network has a
domain named PassGuide.com. All servers on the PassGuide.com network run Windows Server
2008.
The PassGuide.com network has organizational units (OU's) named Sales, Marketing and Admin.
The Sales OU contains a file server named PASSGUIDE-SR04 that hosts a shared folder named
SalesDocs that contains sensitive customer information.
What action should you take to track access to the SalesDocs folder? |
|
Definition
Create a new GPO
Enable the audit objectaccess option
link the gpo to the sales gpo
configure auditing for the everyone group or the sales group |
|
|
Term
You work as the network administrator at PassGuide.com. All servers on the PassGuide.com
network run Windows Server 2008.
The PassGuide.com network has a server named PASSGUIDE-SR01 that functions as an
Enterprise Root certificate authority (CA).
What action should you take to configure PASSGUIDE-SR01 to support key archival? |
|
Definition
| The private key on PASSGUIDE-SR01 should be archived. |
|
|
Term
You work as the enterprise administrator at PassGuide.com. The PassGuide.com network has a
domain named PassGuide.com that operates at the Windows Server 2008.
How can you configure the network so that it allows the users of PassGuide.com to have multiple
password policies? |
|
Definition
| You should consider creating multiple Password Setting objects in the ADSI Edit console. |
|
|
Term
You work as the network administrator at PassGuide.com. The PassGuide.com network has a
domain named PassGuide.com. All servers on the PassGuide.com network run Windows Server
2008.
The PassGuide.com Network contains a server which is configured as:
- Domain Controller
- DNS Server
What option can you sure to ensure tracking of all DNS queries received by PASSGUIDE-SR01? |
|
Definition
You should consider having debug logging enabled in the DNS Manager Console on
PASSGUIDE-SR01. |
|
|
Term
You work as an enterprise administrator at PassGuide.com. All servers on the PassGuide.com
network run Windows Server 2008. PassGuide.com has its headquarters in Chicago and a branch
office in Miami. The two offices are configured as separate sites.
The Miami site contains a domain controller named PASSGUIDE-DC06. You receive an
instruction from the CIO to install a new application at the Miami office. In order for the application
to run a Global Catalog server is required.
What action should you consider to add a Global Catalog server to the Miami site |
|
Definition
You should consider using the Active Directory Sites and Services console to configure the
PASSGUIDE-DC06 as a Global Catalog server. |
|
|
Term
You work as the network administrator at PassGuide.com. The PassGuide.com network has a
domain named PassGuide.com. All servers on the PassGuide.com network run Windows Server
2008.
The network contains two sites London and Paris. The following configuration applies to each
location.
London
- Single Domain Controller named PASSGUIDE-DC01
- Separate Active Directory Site.
Paris
- Single Domain Controller named PASSGUIDE-DC02
- Separate Active Directory Site.
Network Setup
- Both Active Directory Sites are using DEFAULTIPSITELINK object for connectivity.
What action should you take to reduce the delay it takes during replication between PASSGUIDEDC01
and PASSGUIDE-DC02? |
|
Definition
You should consider having the replication interval for the DEFAULTIPSITELINK object
decreased. |
|
|
Term
You work as the network administrator at PassGuide.com. The PassGuide.com network has a
domain named PassGuide.com. All servers on the PassGuide.com network run Windows Server
2008.
The PassGuide.com network has four file servers named PASSGUIDE-SR01, PASSGUIDESR02,
PASSGUIDE-SR03 and PASSGUIDE-SR04 that are placed in an Organizational Unit (OU)
named PGServers.
PassGuide has several contractual workers who are members of a global group named
PartTimeUsers. A new PassGuide.com security policy requires that any attempts by contractual
workers to access the folders and files on the file servers in the PGServers OU needs to be
tracked.
What action should you take to implement this policy? |
|
Definition
add PartTimeUsers to the auditing tab on the shared folders of the server
Configure failed full controlsetting in the audit entrydialog box |
|
|
