What subnets will you assign to each segment?1.
What protections can EFS offer (choose all that apply)?
2.
Your Windows server 2008 has Windows Server Update Services (WSUS) role installed. You noticed an alert indicating that the C volume is running out of space. You want to free up space by running the WSUS Server cleanup wizard. The "Remove Superseded Updates" is selected. Which of the following updates will the wizard remove? (choose all that apply).
3.
A user has logged onto his Windows Vista laptop computer to domain account wirelessly. After he logged onto his desktop and changed his password. He cannot log onto his laptop computer. You are able to connect to the domain control from your computer. What is the most likely cause of the problem?
4. How many computers can you host in an IPv4 network 172.16.0.0/22?
5.
The lab includes six computers with address space 192.16.1.0/29 assigned. You plan to add 10 new computers to the lab. Company policy states that each network is granted address space only according to its needs.
What should you do?
6.
Your Windows 2008 server has the following IPv4 address:
IP Address: 192.168.46.186
Subnet mask: 255.255.255.192
Default Gateway: 192.168.46.1
Users on other subnets report that they are unable to connect to the server. What should you do?
7.
The following network uses IPv4 scope 131.107.40.0/22.
What subnets will you assign to each segment?
8.
You want an IPv6 address for a server that you want to connect to the IPv6 Internet. What type of IPv6 address do you need?
9.
You want to create a test IPv6 network with three subnets. What type of IPv6 addresses do you need?
10.
When would a DNS server contact a root server?
11.
After the address of a certain client computer is updated, you notice that a local DNS server is resolving the name of the computer to the old computer name. How can you resolve it?
12.
Your Windows server 2008 computer name is Server08. A Windows XP client in the local network cannot connect to it by using UNC path :\\Server08\. What can you do?
13.
Your network has a Active Directory domain computers and Linux computers. The enterprise certificate authority is configured in your domain. Both domain member computers and Linux computers have been issued certificates. You are creating a rule to require IPSec communications between computers in your internal network. Which authentication method should you choose?
14.
You want to install DHCP Server role on a server core computer. What is the command?
15.
You set up a VPN server on Windows 2008. The users' computers are Windows XP and Vista. You don't have a certificate infrastructure in your network. Which VPN protocol should you choose?
16.
Your network consists of 20 Active Directory sites. The site link costs have been configured to accurately reflect the wide area network's routing infrastructure.
You are configuring the Distributed File System (DFS) to replicate a single shared folder among DFS servers located ata 12 of the 20 sites. You would like client computers to connect to DFS servers at their local site first. If a DFS server is not available at the local site, you would like clients to connect to the DFS server at the site with the lowest cost.
What ordering meth should you choose?
17.
You would like your Windows 2008 server to send an e-mail to your mobile device when a specific event occurs?
Which tools can you use to configure this? (choose all that apply.)
18.
You create an Active Directory-integrated DNS zone on a server running Windows server 2008 and select the "To All DNS servers in This Domain" replication type.
Which Active Directory partition will be used for replication?
19.
Sam left your company for good. Your boss wants to access a file in sam's Document folder, but the entire Document folder is encrypted with the Encypting File System (EFS). You have used Group Policy settings to configure a user account as a Data Recovery Agent (DRA). How can you grant your boss access to the EFS encrypted files? (Choose all that apply.)
20.
You need to capture communications between two other computers on your network. You run Network Monitor and enable P-mode for your network adapter. In which of the following scenarios will you be able to capture traffic? (Choose all that apply.)
21.
Your windows server 2008 server name is MSIR2 and Print and Document Services is installed. A installed and shared print name is Canon100. You receive a notification that the C drive is low on free disk space space and discover that the print spool folder is very large. You would like to move the print spool to the D drive, which has more available disk space.
In the Print Management console, which node should you edit the properties of to change the location of the print spool?
22.
You are implementing Network Access Protection with IPSec enforcement. You plan to configure IPSec rules so that only healthy computers can connect to healthy computers with a few exceptions.
Which of the following must you configure to enable IPsec enforcement? (Choose all that apply.)
23.
Your DNS server have been enabled aging and scavenging, with a no-refresh interval of 10 days and a refresh interval of 12 days. After a dynamic DNS record is added, what is the minimum amount of time before the record is removed?
24.
All DNS servers are Windows Server 2008.You want to deploy a GlobalNames zone. How do you do that? (Each correct answer presents part of the solution. Choose two.)
25.
IT has created a private domain, test.local, for testing DNS name resolution scenarios. You want clients on your internal network to be able to resolve names in the test.local domain, but you do not want to modify client configuration. The test.local domain does not allow zone transfers. How should you configure your DNS servers?
26.
You added a lab subnet to your production network (192.168.1.0/24) with a dedicated router. The lab router has the IP address 192.168.1.2, and your default gateway has the IP address 192.168.1.1. You need to be able to communicate with computers on the lab subnet (192.168.2.0/24).
Which commands would you use to configure your computer to allow routing to the lab network? (Choose all that apply.)
27.
You are configuring a scheduled backup of the C volume using the Windows Server backup tool. To which destinations could you save the backup?
28.
You have just completed an installation of Windows Server 2008 Server Core. You would like to add the primary forward lookup zone east.contoso.com to the DNS Server ns.contoso.com.
How can you do this?
29.
You have recently added a new router to your local network (192.168.1.0/24) as shown below. The new router provides access to a remote network (192.168.2.0/24).
Currently, your computer has 192.168.1.1 configured as the default gateway. You want to configure your computer to access the 192.168.2.0/24 network through the new router even after you restart the computer.
What command should you run?
30.
You manage a DNS server running Windows Server 2008 Server Core. You need to add the host name server.contoso.com to the contoso.com zone and associate it with the IP address 192.168.2.20.
Which command should you run?
31.
Clients are having problems connecting to your wireless network. You want to use Network Monitor to troubleshoot the problems by capturing traffic sent from other computers connected to the wireless network.
How should you configure Network Monitor before beginning the capture?
32.
You are a systems administrator responsible for managing a computer running Windows Server 2008 with the Windows Server Update Services (WSUS) server role installed. You are using the Windows Internal Database to store WSUS updates, but you would like to move the updates to a SQL Server database to take advantage of the more advanced management capabilities.
You have several SQL Servers available to you.
Which of the following could you configure WSUS to use? (Choose all that apply.)
33.
You are a systems administrator for an international airline. For the last month you have been testing Network Access Protection (NAP) in a lab environment using IPsec, a virtual private network, and 802.1X enforcement.
You are ready to begin a pilot deployment of NAP in the production environment. Initially, however, you want to deploy it in monitoring-only mode so that unhealthy clients are still allowed to connect to the network.
After duplicating your lab environment's NAP enforcement configuration, how can you configure NAP for monitoring-only?
34.
You are attempting to connect to an application server with the NetBIOS name SERVER. The application returns an error message indicating that the server could not be found. You manually query the WINS server and discover that the NetBIOS name has not been registered.
You open a support ticket with the group that manages the WINS server. Meanwhile, you need to configure your Windows Vista computer to resolve the NetBIOS name SERVER to the IP address 10.22.53.87 without contacting the WINS server.
What should you do?
35.
You are a systems administrator for a medium-sized company. Currently, you are configuring Group Policy settings to allow domain members to automatically connect to your new wireless access point.
You have configured a computer running Windows Server 2008 as a RADIUS server and have set up your wireless access point to send authentication requests to the server.
On the Configure An Authentication Method page, which option should you select to allow users to authenticate with their domain credentials?
36.
You are currently configuring a firewall to allow Windows Vista clients to forward events to a computer running Windows Server 2008. The firewall presents you with a list of network protocols that are allowed.
Which protocol do you need to allow?
37.
You are a systems administrator deploying a small regional network. You need to provide Internet access for 25 client computers. However, your ISP has assigned you only a single IP address. You want to use a computer running Windows Server 2008 to provide Internet access to all clients.
In the Add Roles Wizard, which role and role service should you add?
38.
30 days ago, you installed Windows Server 2008 on a computer, along with several new applications. Since that time you have made no changes to the computer and the computer has not experienced any failures.
You open the Reliability Monitor snap-in.
What will the System Stability Index be?
39.
You are a systems administrator for a small landscaping company. Recently, you configured secure wireless network access to your local area network and configured your computer to connect to it. The SSID for the network is "Contoso."
You would like to copy your computer's wireless network configuration to other Windows Vista and Windows Server 2008 computers.
Which commands would you run to do this? (Each correct answer presents part of the solution. Choose two.)
40.
You are a systems administrator responsible for managing a computer running Windows Server 2008 with the Windows Server Update Services server role installed. Recently, you noticed an alert indicating that the C volume is running out of space.
You install a new hard disk, labeled D. You need to move the updates from the C drive to the D drive.
Which tool should you use to do this?
41.
You are a systems administrator configuring a mobile computer running Windows Vista. The computer is for a user who travels between two offices. In the first office all IP addresses are assigned by DHCP. In the second office all IP addresses must be manually assigned.
You obtain the IP address 10.43.88.25 for the mobile computer when it is connected to the second office.
What is the best way to configure the computer?
42.
You manage a DNS server running Windows Server 2008. You create a stub zone.
Which of the following record types will be replicated? (Choose all that apply.)
43.
You are a systems administrator for an Active Directory directory service domain with 200 client computers. You are currently configuring a computer running Windows Server 2008 with the Windows Server Update Services (WSUS) role.
The WSUS server resides on your internal network. Your IT department has configured a very restrictive proxy server that allows computers on the internal network to access only approved websites.
Which of the following websites will the WSUS server need to access to download updates from Microsoft Update? (Choose all that apply.)
44.
You are a help desk operator at a furniture design firm. A user calls to complain that a computer running Windows Server 2008, Fabrikam1, is offline. You are not familiar with the configuration of the server, but you use the Ping command to test connectivity. The output from Ping is:
Pinging Fabrikam1 [192.168.1.12] with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 192.168.1.12:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),
Which of the following are possible causes of the problem? (Choose all that apply.)
45.
You manage a DNS server on a computer running Windows Server 2008. All zones are Active Directory-integrated.
One of your DNS servers is returning outdated IP addresses when queried by DNS clients.
Which event log should you examine to determine whether replication problems are occurring?
46.
You are a systems administrator for a national real estate company. You are evaluating the security features available for ad hoc wireless networks.
You've researched the strengths of different wireless security standards, the tools available to crack into the cryptography, and the time it typically takes an attacker to bypass wireless security.
The mobile client computers in your organization use Windows Vista.
Which of the following wireless standards will these computers support for ad hoc wireless networks? (Choose all that apply.)
47.
You are a systems administrator responsible for managing a DHCP server. Recently, your DHCP server failed. Unable to bring it back online quickly, you installed the DHCP Server role on a different computer on the same subnet and restored the DHCP server configuration.
You would like to ensure that the new DHCP server does not assign IP addresses that the previous DHCP server had assigned.
Where can you configure this?
48.
You are a systems administrator for a company that manufactures oil-based paints. Your division is a small office with a single server. The server is connected to both your intranet and the public Internet.
One of the roles the server performs is acting as a Microsoft Exchange e-mail server. The server must be able to accept incoming Simple Mail Transfer Protocol connections from computers on the Internet. Additionally, computers on the intranet must use other e-mail protocols, including Post Office Protocol (POP) and Internet Message Access Protocol (IMAP).
To provide additional security, especially when clients are connected to wireless networks, you want to require IPsec authentication and encryption for POP and IMAP connections.
How can you configure this?
49.
You are a systems administrator for an international book publisher. Currently, the 1200 client computers in your organization are running Windows 98 and Windows 2000 Professional.
You are currently evaluating upgrading client computers to Windows Vista. You need to evaluate the impact that Windows Firewall will have on existing applications so that you can make configuration changes as required.
Based on the default Windows Firewall settings, what can cause application compatibility problems?
50.
You need to determine the total amount of disk space used for shadow copies.
Which command should you run?
51.
You are a help desk operator for a biomedical firm. A user calls you because an important application is displaying an error when it attempts to connect to a server. The user is currently connected to your internal network, which is an Active Directory directory service domain environment.
Recently, your IT department enabled outbound filtering using Windows Firewall. Checking the firewall configuration, you see that an outbound firewall rule was created for the application. However, you would like to verify that Windows Firewall is not preventing the application from establishing an outbound network connection.
How can you enable firewall logging and view the log file?
52.
You are configuring routing for a subnet with three routers running Windows Server 2008. You log on to Server2 and run the "route print" command. The network and command output are shown below.
Which networks will Server2 be able to communicate with? (Choose all that apply.)
53.
You are a systems administrator for a fashion magazine. To improve security, you have decided to implement Network Access Protection (NAP) using 802.1X enforcement.
You have both Windows Vista and Windows XP (with Service Pack 3) clients on your network. Currently, you have NAP configured in monitoring-only mode. As the next phase of your deployment, you would like to enable NAP enforcement for only Windows Vista clients.
How can you do this?
54.
You manage a DNS server running Windows Server 2008 Server Core named DNS1. The DNS server hosts the primary zone hq.contoso.com.
Recently, a representative of your computer security group warned you that outside attackers had attempted to perform a zone transfer for the hq.contoso.com zone. You would like to prevent all zone transfers.
While logged on locally to the computer, which command should you run?
55.
You are a systems administrator for a small organization that tests specialized processors for mobile devices. Your manager has asked you to design a network for a new regional office that will have about 10 computers.
The ISP you have selected is going to assign a single public IP address. To provide Internet connectivity for all clients, you plan to use Network Address Translation.
Which of the following would be a good choice for the internal network address? (Choose all that apply.)
56.
After examining log files, you discover many users are attempting to access your Web server (intranet.contoso.com) by typing www.contoso.com. You would like either name to resolve to the same server, even if you later change the IP address associated with intranet.contoso.com.
Which type of record should you add?
57.
Recently, your IT department increased the DHCP lease renewal interval to 20 days. You manage a DNS server running Windows Server 2008 with aging and scavenging enabled. You want to ensure that dynamic DNS records are not removed while a DHCP lease is still valid.
You have aging and scavenging intervals set at their default values.
Which of the following should you do?
58.
The System Health Agent included with Windows Vista and Windows Server 2008 supports which of the following health checks? (Choose all that apply.)
59.
You are a systems administrator for a small organization that designs industrial optics. Your manager has asked you to design an IPv6 network for a new regional office that will have about 1200 computers. You plan to use IPv6 for only internal connectivity, and you do not have any public IPv6 addresses.
Which of the following would be a good choice for the internal network address?
60.
You need to use the Quota Management console to create notifications for storage utilization.
When installing the File Server server role, which role service do you need to add?
61.
You configure shadow copies on a file server to allow users to access earlier versions of files.
Which client operating systems are capable of accessing the previous versions? (Choose all that apply.)
62.
You are using Network Monitor to capture traffic between your computer and a remote host. Your computer has the IP address 192.168.10.2, and you want to capture only traffic sent to the IP address 192.168.10.40.
Which capture filter should you use?
63.
In an Active Directory directory service domain environment, a domain user logged on to a Windows Vista computer attempts to connect to a folder shared from a Windows Server 2008 computer. Both computers are members of an Active Directory domain.
By default, which authentication protocol do they use first?
64.
Prior to installing an application, you need to initiate a shadow copy on your D drive.
Which command should you run?
65.
You are a systems administrator managing a DHCP server running Windows Server 2008. Recently, users have intermittently complained that they received Automatic Private IP Addressing IP addresses because the DHCP server was not online.
You would like to examine detailed DHCP-related events.
Where should you look?
66.
You need to configure a Distributed File System (DFS) folder so that client computers connect to only the target DFS servers in the same Active Directory directory service site.
Which tool should you use?
67.
You need to configure client computers to always use IPsec when establishing network connections for a new internally developed application. The application uses TCP port 77 and might connect to several servers.
You would like to use Group Policy to require the client computers to use IPsec just for that application's connections. IPsec has already been configured on the client computers for other connections, and a Windows Firewall exception exists for TCP port 77.
In the Windows Firewall With Advanced Security console, which node would you select to require IPsec for all connections that use TCP port 77?
68.
You are a help desk operator. A user has called you to help her troubleshoot a problem with her network connectivity. You walk to the user's desk and run the Ipconfig command. You view the following output:
Windows IP Configuration
Ethernet adapter Local Area Connection:
IPv4 Address. . . . . . . . . . . : 169.254.23.84
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . :
What is the cause of the problem?
69.
You manage an enterprise business with a large headquarters and several remote offices. Currently, you are planning name resolution for a small remote office.
You want clients in the remote office to be able to resolve internal names while minimizing the number of requests that must be sent across the WAN link. You want to avoid replication traffic across the WAN. You do not plan to assign the remote office its own subdomain.
What should you do?
70.
You are a systems administrator for a national nursery chain. Several of your employees travel regularly and must connect to the network remotely. Until now, you have required those users to dial in to your internal network. You are currently planning to provide VPN access.
You are concerned that an attacker will use a man-in-the-middle attack to gather user credentials by impersonating your VPN server. Therefore, you need to use an authentication protocol that allows for authenticating the VPN server. Your remote access users are running Windows 2000 Professional, Windows XP Professional, and Windows Vista. The VPN servers are Windows Server 2008.
Which authentication protocols can you use? (Choose all that apply.)
71.
You are a systems administrator for an enterprise manufacturing firm. Recently, Microsoft released a security update. Because there is a known exploit available on the Internet, you want to deploy it to client computers as soon as possible.
You currently have all client computers configured to connect to Windows Server Update Services (WSUS), which you have installed on four computers running Windows Server 2008. Other than configuring client computers to retrieve updates from the nearest WSUS server, client computers have the default settings.
After approving the update, what is the maximum amount of time a client computer with the default settings might wait to check for new updates?
72.
You are configuring IPsec policies for computers running Windows Server 2008 in your organization. You want to require IPsec for as many connections as possible.
For which services will you need to create IPsec exemptions? (Choose all that apply.)
73.
You are configuring a computer running Windows Server 2008 to be the primary DNS server for the contoso.com domain. You plan to use a computer running Linux with a BIND DNS server as the secondary DNS server for the domain, but you do not want other computers to be able to perform a zone transfer.
How can you allow the secondary DNS server to perform zone transfers? (Select two.)
74.
You are a systems engineer for a retail franchise specializing in high-end pet products. Currently, you are developing a strategy to support remote access connections.
After some negotiations, your security team has decided to allow remote access connections. However, they want to prevent remote users from accessing the 192.168.33.0/24 subnet, which hosts servers containing highly confidential data.
On the Windows Server 2008 VPN server, how can you enforce this?
75.
You are configuring a computer running Windows Server 2008 to forward events to another computer running Windows Server 2008.
What command should you run on the computer?
76.
You are configuring a computer running Windows Server 2008 to act as a DNS server for a small office. The server needs to resolve both internal and external host names. To resolve external host names on the Internet, you want the server to send requests to the DNS server of your ISP.
What should you do?
77.
You are a systems administrator for a textile manufacturing company. You are developing a remote access strategy to allow employees to work from home if severe weather conditions prevent them from coming into the office.
After some experimentation, you discover that many employees have firewalls and proxy servers protecting their home networks and these firewalls do not work well with some VPN protocols.
Which VPN protocol is most likely to work with a firewall or proxy server?
78.
You manage client computers in a Windows Server 2008 Active Directory directory service domain environment. One of your users has a printer connected to the desktop computer in his office. The user has shared the printer so that he can print to it from his mobile computer.
The user complains that other users on the network occasionally print to his printer. He would like to remove the printer's listing in the Active Directory domain.
How should he do this?
79.
You have been monitoring the System Stability Index for a computer running Windows Server 2008. The computer currently has a System Stability Index of 3.0 because of recurring hardware failures. You have replaced the hardware and would like to reset the System Stability Index.
How can you do this?
80.
You need to determine what level of access a user, Mary, will have to a file. Mary is a member of the Accounting group. The Accounting group has Read & Execute permissions. Mary's user account has the permissions shown in the graphic.
What are Mary's effective permissions?
81.
You are a systems administrator for a furniture manufacturing company. To keep IT costs down, management has extremely long lifecycles for client computers. As a result, you still maintain computers running Windows 95, Windows 98, and Windows 2000. Newer client computers have Windows XP or Windows Vista installed.
You are evaluating deploying Windows Server Update Services (WSUS) to help you manage software updates.
Which of the following client operating systems will need to be upgraded before they can act as a WSUS client? (Choose all that apply.)
82.
You are a systems administrator troubleshooting a network connectivity problem with a Windows Server 2008 computer. You see that the computer is configured with the IP address fe80::30ef:2d59:e7a4:b481%9.
How was the IP address configured?
83.
Your organization, Contoso, is merging with a second organization, Fabrikam. Your organization uses the domain contoso.com, while Fabrikam uses fabrikam.com.
Your IT department connects your two internal networks using a VPN. However, client computers in the contoso.com domain cannot resolve internal host names in the fabrikam.com domain. You are not yet ready to merge the two domains into a single Active Directory directory service forest.
What is the best way to allow client computers in the contoso.com domain to resolve internal names in the fabrikam.com domain?
84.
You are a systems administrator at an enterprise Web hosting company. Many of the computers you manage are accessed by unauthenticated clients on the Internet. However, they must also be managed (using Remote Desktop and other protocols) from clients on your intranet. You have administrators physically at your facilities covering all shifts, and you do not allow remote access users to manage the Web servers.
Recently, a worm infected one of the critical Web servers. After an extensive audit, you discovered that the computer of one of your systems administrators transmitted the worm. That computer had become infected because it did not have recent updates.
You would like to ensure that only authorized, healthy computers connect to your network and initiate management connections to your Web servers. You would like to prevent both accidental connections from legitimate users and malicious connections from attackers.
Which of the following Network Access Protection enforcement methods would suit your needs? (Choose all that apply.)
85.
You install Windows Server Update Services component in Windows server 2008. Which events can WSUS send an e-mail notification?
86.
Your organization has two domains: contoso.com and nwtraders.com. You would like all single-label names to be resolved to the contoso.com domain, regardless of which domain clients computers are a member.
You use Active Directory directory service Group Policy settings to manage client computers.
Which policy should you define?
87.
You have used Network Monitor to capture data from the network. You would like to view only Hypertext Transfer Protocol (HTTP) communications.
Which filter should you define?
88.
You are a systems administrator responsible for configuring Group Policy settings to configure wireless Windows Vista and Windows XP clients to connect automatically to your wireless networks. Your wireless access points are configured to use WPA2-EAP security.
Which of the following tasks do you need to accomplish to configure WPA2-EAP security? (Choose all that apply.)
89.
You are a help desk operator supporting users at a health care provider. You receive a call from a user indicating that she cannot connect to an e-mail server running Windows Server 2008. Checking the server's status, you discover that a system administrator just finished replacing the network adapter in the server. However, you are able to connect to the server from your computer.
The user is able to connect to other network resources, including network resources on the same subnet as the server. You want to verify that the client computer does not have an outdated version of the server's Media Access Control address cached.
Which tool should you use?
90.
You are attempting to add a Windows Vista client computer to your domain, contoso.com. The client reports that it cannot find the domain controller.
You would like to verify that DNS is correctly configured.
Which type of DNS record should you examine?
91.
You are a systems architect for a large government contractor. You are creating security specifications for wireless networks, which you plan to deploy in several months.
Which of the following security best practices would you recommend?
92.
You manage a computer running Windows Server 2008. The C volume contains the operating system installation and the D volume stores user files.
You use Windows Server Backup to backup the C and D volumes to writable DVD media.
Which types of restorations can you perform? (Choose all that apply.)
93.
You are creating a script that you will distribute to computers running Windows Server 2008 and Windows Vista. The script needs to log performance data.
Which command-line tool should you use?
94.
You are configuring routing for a subnet with three routers running Windows Server 2008, as shown blow.
How can you enable each of the three servers to communicate to each of the remote networks?
95.
You manage a DNS server running Windows Server 2008 Server Core. The DNS server is also a domain controller. You need to determine in which Active Directory directory service partition DNS data for the contoso.com zone is being stored.
Which command should you run?
96.
You are configuring a file server and you need to control the amount of disk space users consume. You use the Quota Management console to configure quotas.
Which of the following quota scenarios can you support? (Choose all that apply.)
97.
You need to record performance data overnight for a computer running Windows Server 2008. The counters you need to record are counters that your internal application adds to the operating system.
In the Reliability And Performance snap-in, which tool should you select?
98.
You are preparing to deploy a computer running Windows Server 2008 that will perform multiple roles. This computer will be deployed to a remote office without IT staff, so you want to minimize maintenance and the computer's attack surface by performing a Server Core installation.
Which of the following server roles can you install? (Choose all that apply.)
99.
You manage a DNS server running Windows Server 2008. You create the primary zone fabrikam.com and clear the Store The Zone In Active Directory check box.
You need to manually copy the zone file to a backup server.
Where is the zone file located?
100.
You are a systems administrator for an enterprise lighting manufacturer. You are currently evaluating the cost of deploying Network Access Protection (NAP).
Your organization has a variety of different client computers.
Which of these platforms can support NAP using the standard Windows Security Health Validator? (Choose all that apply.)
101
You use the Distributed File System to configure a folder to replicate between two computers running Windows Server 2008. You would like to prevent all media files, including those with .MP3 and .WMA, from replicating between the servers, but you would still like users to be able to save those types of files.
How can you do this?
102
You are currently assessing which troubleshooting tools will be useful for different types of help desk calls.
In which of the following scenarios can you use the Reliability Monitor snap-in for troubleshooting? (Choose all that apply.)
103.
Previously, you had two routers connected to a single subnet. The default gateway, 192.168.1.1, handled traffic for all destination networks except for a lab subnet. The lab subnet was accessed using the gateway at 192.168.1.2.
Recently, you connected the lab subnet to the router at 192.168.1.1. Now all client computers can access the subnet through the default gateway. You disconnected the router at 192.168.1.2, but computers are now unable to reach the lab subnet.
You view the output from the "route print" command, as shown.
What command should you run to resolve the problem?
104.
You are a systems engineer configuring an environment for IPsec Network Access Protection (NAP) enforcement. Because your organization is distributed, you will need to configure NAP separately for different offices.
Your organization acquired some of the offices through mergers and acquisitions. These offices have separate certification authorities (CAs), and where possible, you would like to leverage the existing CA.
Which of the following CAs can you configure to support a Health Registration Authority (HRA)? (Choose all that apply.)
105.
You are a systems engineer for an enterprise consulting firm. Currently, you are creating a lab environment with four subnets: 192.168.0.0/24, 192.168.1.0/24, 192.168.2.0/24, and 192.168.3.0/24. The subnets are connected to your corporate network by RouterB, a computer running Windows Server 2008 with five network adapters.
You need to provide network engineering with a route they can use to configure RouterA so that it can forward traffic to the four lab subnets from the WAN (as illustrated in the graphic).
What is the most efficient network path that can be routed to RouterB?
106.
You are creating a new primary zone on a DNS server running Windows Server 2008. The DNS server is a domain controller. Other domain controllers are running Windows Server 2003 and Windows 2000 Server and also act as your DNS servers.
You would like all other DNS servers to provide fault tolerance for the new zone.
Which replication type should you choose?
107.
You are a systems administrator for a mail-order company, Contoso, Inc. Your organization has about 300 telephone support representatives who work from their homes and who are located around the country. To provide remote access to your internal network, you have contracted with an ISP who will provide dial-up services. Users dial-in to the ISP's local dial-in number, and then the ISP authenticates the user to your internal RADIUS server.
Recently, your organization acquired another mail order company, Fabrikam. Contoso is now planning to replace Fabrikam's dial-in solution with its own. However, Fabrikam's customer support staff will need to authenticate against Fabrikam's own RADIUS servers.
How can you support this configuration?
108.
You manage three DFS servers running Windows Server 2008: Server1, Server2, and Server3. You use the New Replication Group Wizard to create a replication group with a full-mesh topology. Later, you decide that you want all changes to occur on Server1 and those changes to be replicated to Server2 and Server3. You do not want changes made to Server2 and Server3 to be replicated.
Which replication connections should you remove? (Choose all that apply.)
109.
You need to create a batch file that captures broadcast network traffic for 10 minutes and saves it to a file that you can analyze in Network Monitor.
Which command should you run?
110.
You are a systems administrator for a water bottling company. Your manager has asked you to install a server application on a Windows Server 2008 computer.
After installing the application, you discover that it runs as part of SvcHost.exe, lacking its own executable file. For this reason you cannot create a Windows Firewall Program rule type for it. Instead, you need to create one or more Port rule types.
Unfortunately, the application's documentation does not list the port numbers that the application requires.
Which tool can you use to determine the port numbers it uses?
111.
You are a systems administrator for a fabric manufacturer. Your organization has a single office at the factory premises, with about 120 computers running Windows Vista and 20 computers running Windows Server 2008.
Recently, you have deployed a wireless network using several wireless access points to provide complete coverage throughout your facility. Performing a wireless audit afterward, you find several employees who are using ad hoc wireless networks. You are concerned that an attacker might connect to one of these ad hoc networks and use it to gain access to your internal network.
Many of your computers are not managed by Active Directory directory service, but you do have the ability to run a script on the computers.
What command would you run to prevent computers from connecting to any ad hoc wireless network?
112.
You connect a new printer to a computer running Windows Server 2008 and publish it to the Active Directory directory service. You want the printer to be automatically available to any user who logs on to specific Windows XP computers.
How can you do this?
113.
You are creating a data collector set that will gather configuration information about a custom application.
After creating the data collector set, what type of data collector should you create to record the values contained in registry keys?
114.
You have configured DNS1, a computer running Windows Server 2008 Server Core, as a DNS server. Currently, it hosts the contoso.com primary zone. However, you would like to configure a different server, DNS2, to host the primary zone and configure DNS1 to host the secondary zone.
DNS1 has the IP address 10.12.1.1, and DNS2 has the IP address 10.12.1.2.
What command should you run to configure DNS1?
115.
You are a help desk operator at a software development company. One of your developers phones you and says that he is unable to connect to the VPN, even though he has been able to connect in the past.
You use Remote Desktop to connect to the VPN server.
Which log file should you examine to gather more information about the failed VPN connection attempt?
116.
You are currently configuring a server application that consists of three tiers, each implemented on different computers running Windows Server 2008. The front-end tier provides a Web interface to users with IIS. The middle tier processes business rules using Application Services. The data tier uses Microsoft SQL Server.
To improve security, management has asked you to require authentication and encryption for all communications between the tiers. You create a Group Policy object (GPO) that applies to three tiers. Then you use that GPO to create a connection security rule.
On the Rule Type page of the New Connection Security Rule Wizard, what should you select?
117.
You are a systems engineer for a paper manufacturing company. You are currently working with management to design a network for a new regional office, which will have about 220 client computers. You plan to use Network Address Translation (NAT) to allow clients to connect to the Internet.
Currently, you are evaluating the NAT capabilities built into Windows Server 2008.
Which of the following are advantages of the Routing And Remote Access NAT capabilities over the Internet Connection Sharing (ICS) NAT capabilities? (Choose all that apply.)
118.
You are a systems administrator currently configuring a new computer running Windows Server 2008. The computer is connected to a new network segment that will also contain client computers. Currently, no DHCP server is configured on that network segment.
Which server role should you add to configure Windows Server 2008 as a DHCP Relay Agent?
119.
You are configuring a computer running Windows Server 2008 to resolve host names for internal computers. You want to ensure that the computer never resolves Internet host names when queried by DNS clients.
What should you do?
120.
You are configuring a computer running Windows Server 2008 to act as an e-mail server, a Web server, and a file server. The e-mail and Web services need to be accessible from the public Internet, but only domain users and computers should access the file services.
In the Windows Firewall With Advanced Security console, which node should you select to require security for incoming file services connections?
121.
Currently, your organization includes both a DNS server with a single forward lookup zone and a Windows Internet Naming Service (WINS) server. You are in the process of migrating away from using the WINS server.
You would like newly deployed client computers to perform all name resolution through your DNS server without sending requests to the WINS server. However, some names they need to resolve might exist only on the WINS server.
What is the best way to configure name resolution to meet your needs?
122.
You are a systems administrator for a small computer accessory manufacturer. You are working with your development team to deploy an internally developed sever application to your Windows Server 2008 computers. The application runs as a service with the executable name ContosoServer.exe. The development team informs you that it currently listens for incoming connections on TCP port 33 and UDP port 1217, but they might update the port requirements in future versions.
You need to use Group Policy settings to configure a firewall rule to allow incoming connections for the custom service.
On the Rule Type page, what should you choose?
123.
You manage a Web server running Windows Server 2008. The Web developer provides you with an Install.msi file to update an existing Web application. Running the .MSI file initiates a shadow copy.
After the installation, the Web server reports that the Web application cannot run because of a configuration error in the Web.Config file. You would like to restore the Web.Config file to the state it was in when the shadow copy was created.
How can you do this? (Choose all that apply.)
124.
You are a systems administrator for an enterprise network that uses Windows Server Update Services (WSUS) to distribute updates to client computers. To help protect against an attacker who might attempt to impersonate your WSUS server, you want to install a Secure Sockets Layer (SSL) certificate for server authentication.
In IIS, which of the following virtual roots should you require SSL for? (Choose all that apply.)
125.
You are a systems administrator for an enterprise network. Currently, you are planning your IP addressing scheme. You plan to use DHCP servers to assign IP addresses to all client computers.
Which of the following networks should have the shortest DHCP lease?
126.
You receive a notification that the IP address of one of the root DNS servers is changing.
In Server Manager, on your DNS server with the name DCSRV1, which node should you use to make the necessary change?
127.
You are a systems administrator for a medium-size business operating out of a single location. All client computers are members of your Active Directory directory service domain and are managed by Group Policy.
You are currently planning to deploy a wireless network by PEAP, so that users don't need to set up wireless network password for all wireless access points. You need wireless clients to connect to the Active Directory domain before the user logs in.
Which wireless security standards can you choose that support this? (Choose all that apply.)
128.
You have configured an event subscription on a computer running Windows Server 2008 to receive events forwarded from a computer running Windows Vista. You want the subscription to retrieve updates events more frequently.
Which command should you run?
129.
You are currently configuring a small office network as shown. The router has three interfaces connecting to three network segments. Subnet A connects to the Internet. Subnet B connects to a server subnet that includes the network's DHCP server. Subnet C connects to all client computers.
Currently, client computers on Subnet C are unable to obtain an IP address from the DHCP server.
On which subnet should you configure a DHCP Relay Agent?
130.
You manage a DNS server running Windows Server 2008. You are troubleshooting a problem with loading the zone file shown.
What is the host name of the primary DNS server?
131.
You manage a computer, Server1, running Windows Server 2008 with the DHCP Server role installed. The computer is a member of a Windows Server 2008 Active Directory directory service domain.
The DHCP server is not yet authorized for the domain.
How can you authorize it? (Choose all that apply.)
132.
Your organization is changing company names. As part of that effort, you need to switch domain names from contoso.com to Fabrikam.com.
A user complains that he cannot send e-mail to his work e-mail address (user@fabrikam.com). The user forwards you the error message, which indicates that his ISP's mail server could not locate your mail server.
Which type of DNS record should you add?
133.
You are a systems administrator for a large company that has a campus with five buildings. Each of the buildings has at least one wireless access point, although several buildings have multiple wireless access points.
You would like client computers to be able to move between different wireless access points without prompting the user for credentials or requiring them to insert a smart card. You configure all wireless access points to use the same RADIUS server (a computer running Windows Server 2008).
Which authentication option should you choose when configuring Group Policy settings?
134.
You manage a print server running Windows Server 2008. When users running 32-bit Windows Server 2008 connect to a shared printer from across the network, they can immediately print. However, when users running 64-bit Windows Server 2008 connect to the shared printer, Windows prompts them to install a driver. You would like to have the driver automatically installed for all clients.
How can you do this?
135.
You are configuring a shared folder on a file server. You want users to be able to access versions of the shared folder as it existed in earlier stages. For example, users should be able to view files as they were at 7 A.M. the previous day.
How can you do this?
136.
You manage a DNS server running Windows Server 2008. You need to provide a zone file for contoso.com, an Active Directory-integrated zone, so that it can be imported on a UNIX-based DNS server.
How can you accomplish this?
137.
You manage a computer running Windows Server 2008. The C volume is running low on free disk space, and you want to provide a large amount of space for shadow copies. You install an additional hard disk and use it to create the D volume.
Which command should you run to configure the D volume to store shadow copies of the C volume?
138.
ou are a systems administrator for a manufacturing company that specializes in LCD displays. You are currently deploying IPv6.
While in the early stages of your deployment, you would like to configure Windows Vista and Windows Server 2008 computers with IPv6 addresses using logon scripts that run with administrative privileges.
What command would you use to configure the Local Area Connection network adapter with the IPv6 address 2001:db8::1a49:2aa:ff:fe34:ca8f?
139.
You are configuring NetBIOS name resolution for client computers. You would like client computers to query your WINS server first and then, if the WINS server cannot resolve the name, transmit a broadcast request.
Which node type should you select?
140.
You are a systems engineer for a major computer manufacturer. Recently, you began a Network Access Protection (NAP) deployment using DHCP enforcement. Currently, you are running NAP in monitoring-only mode, so client computers are still granted full access to network resources.
Before you enable limited access for your Windows Vista NAP clients, you want to determine which client computers are failing the health check so that you can resolve the problems.
Where can you find information about failed NAP health checks? (Choose all that apply.)
141.
You have used DFS to configure two-way replication between two computers running Windows Server 2008, Server1 and Server2. You would like to change the replication to one-way so that changes on Server1 are always replicated to Server2.
How can you do this?
142.
You are a systems administrator for a television production company. With leftover budget that needed to be spent before the end of the fiscal year, your management ordered an array of hardware-based VPN servers.
Your management would now like you to configure the VPN servers. It is very important to them that users can gain remote access without memorizing a new user name and password. Currently, users authenticate to a Windows Server 2008-based domain controller.
How can you accomplish this?
143.
You are a systems administrator managing internal computers for a major social networking website. Recently, your organization acquired three other similar companies.
Currently, your organization uses a RADIUS server to authenticate remote access and wireless users. Each of the three newly acquired companies has its own RADIUS servers that are configured to authenticate its users. You would like to configure a RADIUS proxy to receive all RADIUS authentication requests and forward the requests to the appropriate servers.
What do you need to do to configure a RADIUS proxy?
144.
You manage a DNS server running Windows Server 2008. You need to allow a UNIX-based DNS server to host a secondary zone.
How can you configure the primary zone on your server to allow this? (Choose all that apply.)
145.
You are a systems administrator for a major coffee exporter. You are in the process of configuring Network Access Protection (NAP) using DHCP enforcement. Your development team has created a custom Security Health Validator (SHV), so you will not be using the standard Windows SHV.
You have configured the NAP and DCHP servers, and now you need to configure the client computers. Currently, all client settings are in their default states.
Which of the following tasks do you need to perform to allow client computers to participate in NAP with DHCP enforcement? (Choose all that apply.)
146.
You are attempting to connect to a new Web server with the host name www.contoso.com. When your Web browser is unable to resolve the host name, you discover that it has not yet been registered in the DNS server.
You know that the IP address of the Web server is 192.168.15.12. However, you cannot access the website using the IP address because the Web server is configured to require host headers.
You need to configure your Windows Server 2008 computer to resolve the host name www.contoso.com to the IP address 192.168.15.12 without contacting the DNS server.
What should you do?
147.
You are a systems administrator at an enterprise organization that uses Active Directory directory service to manage all client computers. You are currently planning a wireless deployment using WPA2-EAP wireless security.
You would like to allow users to authenticate to the network using their standard domain credentials.
Which authentication method should you select?
148.
Your organization uses three different domain names: contoso.com, fabrikam.com, and nwtraders.com. Many users are accustomed to using single label names to access computers. For example, users in the contoso.com domain connect to their mail server using the name MAIL.
Different client computers are configured to use different domains by default. When users in different domains work together, they can run into problems because their computers cannot resolve names in different domains. For example, computers in the fabrikam.com domain cannot resolve the MAIL host name.
All client computers use IPv4.
How can you resolve the name resolution problem? (Choose all that apply.)
149.
You are a systems administrator at an enterprise video production organization. To meet recently updated security requirements, you have decided to deploy Network Access Protection using IPsec enforcement (after a trial period in monitoring-only mode).
You want to minimize the amount of downtime experienced by clients that fail the health check by configuring remediation servers that will allow clients to retrieve updates and antivirus signatures.
How should you configure the remediation servers?
150.
Currently, your organization has a single DNS server, DNS1, which hosts the domain contoso.com. You want to configure a second DNS server, DNS2, to provide fault tolerance, but you want all updates to occur on DNS1.
What type of zone should you create on DNS2?
151.
Client computers in your organization occasionally resolve names unexpectedly. All client computers are configured to support NetBIOS name resolution, IPv4, and IPv6. In which order will Windows Vista clients attempt to resolve single-label names?
152.
You need to provide encryption for zone replication traffic between DNS servers.
Which of these options can you use? (Choose all that apply.)
153.
You are a systems administrator for a small network that uses a Windows Server 2008-based Active Directory directory service domain to manage client computers. You are currently configuring wireless access for client computers and are configuring a Windows Server 2008 computer to act as a RADIUS server.
You are worried about wireless network security, and you want to allow only wireless authentication methods that support using different encryption keys for each session.
Which authentication methods can you use? (Choose all that apply.)
154.
You are a systems administrator for an enterprise consulting firm. Your IT department manages a large bank of dial-up and VPN servers that authenticate requests against computers running Windows Server 2008, which have been configured as RADIUS servers.
Recently, to help justify budget, your management decided to begin billing the different internal departments based on their VPN and dial-up usage. Your management has acquired software that processes standard RADIUS server log files.
Where can you find the log file that you would need to present to management for analysis?
155.
You are a systems administrator for a medium-sized camera equipment manufacturer. Recently, you have deployed Network Access Protection using IPsec enforcement. When you initially performed the configuration, you did not have a Secure Sockets Layer (SSL) certificate available for the Health Registration Authority (HRA) Web application.
Now that the fiscal year has ended and you have budget available once again, you have purchased an SSL certificate for the Web application from a public certification authority.
How can you install the SSL certificate on the HRA?
156.
Recently, you configured a server running Windows Server 2008 to request IPsec for all incoming connections. You would like to verify that client computers are using IPsec.
157.
You are a systems administrator for a mail-order company specializing in premium products. You are currently planning a Network Access Protection (NAP) deployment using 802.1X enforcement.
You have been planning a NAP deployment for more than a year now, and when you recently replaced your network hardware, you chose switches that supports 802.1X. Your switches support using either Virtual Local Area Networks (VLANs) or access control lists (ACLs).
Which of the following are reasons to choose using an ACL over a VLAN?
158.
You are creating a script to configure client computers with the IP address of a new DNS server, 10.5.1.213.
Which command should you run?
159.
You are a systems administrator for an international media company. Your organization has begun to implement IPv6 internally, and you would like to provide IPv6 clients with access to the IPv6 Internet. Currently, your entire internal network infrastructure supports IPv6. However, your ISP supports only IPv4.
Which technology should you use to connect your network to the IPv6 Internet without configuring individual client computers?
160.
You are a systems administrator for an enterprise corporation with a large network. Suddenly, you notice you can no longer connect to a server, Contoso1, located in another office. You run the command "pathping Contoso1" and see the output shown in the exhibit.
What is the most likely cause of the connectivity problem?
161.
You manage 30 DNS servers running Windows Server 2003 and Windows Server 2008 in an Active Directory directory service forest. Currently, all DNS zones are Active Directory-integrated. However, because you are currently replicating thousands of frequently updated client host records, replication traffic is impacting network performance on your WAN.
You would like to replicate host records only to specific domain controllers.
Which replication type should you select?
162.
You are a systems engineer for a rapidly growing image processing firm. You are currently planning an office in Sacramento, California. Initially, you plan to deploy 12 computers to the office, using your standard client and server applications.
Your ISP plans to assign a single public IP address. To allow all clients to access the Internet, you plan to configure a Windows Server 2008 computer named Fabrikam1 with Network Address Translation (NAT).
Which of the following applications will not work with NAT without additional configuration or are completely incompatible with NAT? (Choose all that apply.)
163.
You are planning to configure a DNS server to host a secondary zone for contoso.com. You want to verify that the primary DNS server (which has the IP address 192.168.1.189) is configured to allow zone transfers to your server.
Which commands can you run to perform a zone transfer?
164.
You manage a DNS server running Windows Server 2008 Server Core. You want to enable aging and scavenging for the contoso.com domain and ensure that records are not removed until at least one week after they have been updated.
Which commands should you run? (Each correct answer presents part of the solution. Choose two.)
165.
You manage a DNS server on a computer running Windows Server 2008 Server Core. All zones are Active Directory-integrated.
One of your DNS servers is returning outdated IP addresses when queried by DNS clients. You would like to immediately attempt replication of the DNS records and force the DNS server to use the freshest data.
Which commands should you use? (Choose all that apply.)
166.
The users in Active Directory domain, ny.us.nwtraders.msft, want to connect to resources located in the uk.eu.nwtraders.msft domain. The name resolution of remote name is very slow. You want to improve name resolution response times for names within uk.eu.nwtraders.msft domain by keeping an updated list of remote name servers authoritative for that domain name. You also want to minimize the zone transfer traffic. What should you do?
167.
You have recently migrated a DNS zone named Contoso.com to a domain controller running Windows Server 2008. You have selected the option to store the zone in Active Directory, but you find that the zone does not appear on a domain controller named DC2000 that is running Windows 2000 server in the same domain. DC2000 is already configured with the DNS sesrver component. You want the zone to appear on all domain controllers in the contoso.com domain. What should you do?
168.
Currently, client computers on the 192.168.1.0/24 subnet are configured with the default gateway 192.168.1.1 as shown below:
You connect a second router to both the 192.168.1.0/24 subnet and 192.168.2.0/24 subnet.
You would like clients on the 192.168.1.0/24 subnet to connect to th e192.168.2.0/24 using the new router, which has the IP address 192.168.1.2. Which command should you run?
168.
The path for computers of subnet 192.168.1.0/24 to reach the hosts on subnet 192.168.2.0/24 is to go through Router A and Router B. How do you configure the computers on 192.168.1.0/24 subnet to efficiently reach the 192.168.2.0/24 network?
169.
After you deploy a DHCP server for 192.168.1.0/24 subnet, you find that none of the DHCP clients can communicate beyond the local subnet when they specify the IP address of a computer on the company network. Statically assigned computers can successfully communicate beyond the local subnet. How can you configure the DHCP server to enable DHCP clients to communicate beyond the local subnet?
170.
You want to deploy a DHCP server on a computer named DHCP1.nwtraders.msft. To this server you have configured a static address of 10.10.0.5/24 and assigned a DNS server address of 10.10.1.1. On DHCP1 you configure a scope within the range 10.10.1.0/24. You then activate the scope and authorize the server, but the server does not successfully lease any addresses to computers on the local subnet. When you verify the addresses of the clients on the subnet, you find that they are all assigned addresses in 169.254.0.0/16 range. You want the DHCP server to lease addresses to client computers on the local subnet only. Which of the following actions will most likely fix the problem?
171.
Your company sale staff use their mobile computers to connect to Internet either using wireless network or dial-up connection. At any given time, 100 salespeople might need to connect, and at most 30 would need dial-up connections.Your company has tight capital budget. Therefore, you need to minimize up-front cost. What is the best way to configure remote access for the sales staff while using existing Active Directory user credentials? (choose all that apply.)
172.
You need to allow sales people to connect to your VPN server while traveling. Many sales people have complained that they are unable to connect at times, and you have isolated the problem as being caused by firewalls that do not allow PPTP or L2TP traffic through. You would like to recommend that the sales staff use SSTP VPN connections. Which operating systems support SSTP VPN connections? (Choose all that apply.)
173.
You are configuring a computer running Windows Server 2008 to resolve host names for internal computers. You want to ensure that the computer never resolves Internet host names when queried by DNS clients.
What should you do?
174.
You install a software in Windows server 2008. The software acts as a network client and needs to connect to a server on intranet using TCP port 88 and to a server on Internet using TCP port 290. Additionally, you install a client software on Windows Vista workstation. The client software will connect to Windows server 2008 computer using TCP port 39. Windows Firewalls is currently configured with the default settings on both Vista and Server 2008. Which of the following changes do you need to allow the application to work?
175.
You have installed an application on Windows Server 2008 computer. The application will accept incoming connections on TCP port 1036. The application does not include any access control capability. How can you configure the inbound firewall rule properties to allow connections only from authorized users in your domain? (choose all that apply. Each answer presents part of the complete solution.)
176.
You use Group Policy to configure firewall settings on your XP and Vista computers. You would like to configure rules using only the Windows Firewall node rather than the Windows Firewall with Advanced Security node. Which of the following features are NOT available when using the Windows Firewall node in Group Policy settings?
177.
You need to create a network policy that prevents noncompliant computers from connecting to network. How should you configure the network policy properties?
178.
You want to configure a set of remediation servers that should be accessible for clients that don't support NAP. Which of the following do you need to do? (Choose all that apply.)
179.
You configure NAP DHCP enforcement. You plan to run NPS and DHCP on separate computers. Which of the following requirements do you need to fulfill? (Choose all that apply.)
180.
Your company has six offices and a centralized IT department that manages all of the 1200 client computers. Each office has about 200 computers. The WAN uses a hub-spoke architecture, with each office of the five remote offices connected directly to the head-quarter. How would you design the WSUS architecture?
181.
You need to use Group Policy settings to configure client computers to download updates and install them automatically without prompting the user. Which Group Policy setting should you enable and configure?
182.
You run MBSA to audit client computers for the presence of a specific security updates. You found several computers that did not have the updates installed. How can you determine why the update installation failed? (Choose all that apply.)
183.
You want to verify that updates are being distributed successfully by WSUS server. Which of the following information can you get from the Update Status Summary report?
184.
You create different computer groups in WSUS so that you can stagger update deployments. How can you assign a computer to a specific computer group? (Choose all that apply.)
185.
You are configuring a computer named SERVER to collect events from a computer named CLIENT. Both computers are in the nw.com domain. Which of the following commands would you run on the collecting computer?
186.
You are configuring a computer named SERVER to collect events from a computer named CLIENT. Both computers are in the nw.com domain. Which of the following commands would you run on the forwarding computer? (Choose all that apply.)
187.
You need to configure an event subscription to update every minute. Which tool should you use?
188.
You enabled shadow copies on a file server running Microsoft Windows Server 2008. The shared folders are physically located on drive D:. You enable shadow copies. Shadow copies write to drive E:. Drives D: and E: are on separate physical hard disks.
Users complain that files deleted less than three days earlier are no longer available. Drive E: has 30 gigabytes (GB) of disk space available.
You need to ensure that deleted files remain available for at least two weeks.
What should you do?
189.
A computer running Windows server 2008 has been experiencing intermittent performance problems. You think the problem might be caused by an application that was installed last week. Which tool would you use to determine exactly when the application was installed?
190.
Users are complaining that e-mail is very slow at peak usage times in the middle of the day. At night, performance seems adequate. You would like to determine what resources are limiting performance by recording performance data overnight and during the day and then comparing them. Which tools should you use to accomplish this? (Choose all that apply.)
191.
Which of the following types of information might be stored in Reliability Monitor? (Choose all that apply.)?