QUESTION NO:1
Your network contains 50 servers that run Windows Server 2003 and 50 servers that run Windows Server 2008.You plan to implement Windows Server 2012 R2.You need to create a report that includes the following information:The servers that run applications and services that can be moved to Windows Server 2012 R2 The servers that have hardware that can run Windows Server 2012 R2 The servers that are suitable to be converted to virtual machines hosted on Hyper-V hosts that run Windows Server 2012 R2 Solution: You install Windows Server 2012 R2 on a new server, and then you run Microsoft Deployment Toolkit (MDT) 2012. Does this meet the goal?A. Yes
B. No
Answer: B
QUESTION NO: 2
Your network contains 50 servers that run Windows Server 2003 and 50 servers that run Windows Server 2008.You plan to implement Windows Server 2012 R2.You need to create a report that includes the following information:The servers that run applications and services that can be moved to Windows Server 2012 R2 The servers that have hardware that can run Windows Server 2012 R2 The servers that are suitable to be converted to virtual machines hosted on Hyper-V hosts that run Windows Server 2012 R2 Solution: You install Windows Server 2012 R2 on a new server, and then you run the Windows Server Migration Tools. Does this meet the goal?A. Yes
B. No
Answer: B
QUESTION NO:3
Your network contains an Active Directory domain named contoso.com. The domain contains multiple sites.You plan to deploy DirectAccess.The network security policy states that when client computers connect to the corporate network from the Internet, all of the traffic destined for the Internet must be routed through the corporate network.You need to recommend a solution for the planned DirectAccess deployment that meets the security policy requirement Solution: You set the ISATAP State to state disabled.Does this meet the goal?A. Yes
B. No
Answer: B
QUESTION NO: 4
Your network contains an Active Directory domain named contoso.com. The domain contains multiple sites.You plan to deploy DirectAccess.The network security policy states that when client computers connect to the corporate network from the Internet, all of the traffic destined for the Internet must be routed through the corporate network.You need to recommend a solution for the planned DirectAccess deployment that meets the security policy requirement.Solution: You enable split tunneling. Does this meet the goal?A. Yes
B. No
Answer: B
QUESTION NO: 5
Your network contains an Active Directory domain named contoso.com. The domain contains three VLANs. The VLANs are configured as shown in the following table.
A. Yes
B. No
Answer: A
QUESTION NO: 6
Your network contains an Active Directory domain named contoso.com. The domain contains three VLANs. The VLANs are configured as shown in the following table.
All client computers run either Windows 7 or Windows 8. The corporate security policy states that all of the client computers must have the latest security updates installed.You need to implement a solution to ensure that only the client computers that have all of the required security updates installed can connect to VLAN 1. The solution must ensure that all other client computers connect to VLAN 3.Solution: You implement the VPN enforcement method.Does this meet the goal?
A. Yes
B. No
Answer: B
QUESTION NO: 7
Your network contains an Active Directory domain named contoso.com. The domain contains three VLANs. The VLANs are configured as shown in the following table.
All client computers run either Windows 7 or Windows 8. The corporate security policy states that all of the client computers must have the latest security updates installed.You need to implement a solution to ensure that only the client computers that have all of the required security updates installed can connect to VLAN 1. The solution must ensure that all other client computers connect to VLAN 3.Solution: You implement the DHCP Network Access Protection (NAP) enforcement method.Does this meet the goal?
A. Yes
B. No
Answer: B
QUESTION NO: 8
Your network contains a server named Server1 that runs Windows Server 2012. Server1 has the Network Policy Server server role installed.You configure Server1 as part of a Network Access Protection (NAP) solution that uses the 802.enforcement method,You add a new switch to the network and you configure the switch to use 802.lx authentication. You need to ensure that only compliant client computers can access network resources through the new switch.What should you do on Server1?A. Add the IP address of each new switch to a remediation server group.
B. Add the IP address of each new switch to the list of RADIUS clients.
C. Add the IP address of each new switch to a connection request policy as an Access Client IPv4 Address.
D. Add the IP address of each new switch to a remote RADIUS server group.
Answer: A
QUESTION NO: 9
Hotspot QuestionYour network contains an Active Directory domain named contoso.com. The domain has a certification authority (CA). You create four certificate templates. The templates are configured as shown in the following table,
You install the Remote Access server role in the domain. You need to configure DirectAccess to use one-time password (OTP) authentication. What should you do? To answer, select the appropriate options in the answer area,
Answer:
QUESTION NO: 10
Your network contains an Active Directory forest named contoso.com.You plan to deploy 200 Hyper-V hosts by using Microsoft System Center 2012 Virtual Machine Manager (VMM) Service Pack 1 (SP1).You add a PXE server to the fabric.You need to identify which objects must be added to the VMM library for the planned deployment. What should you identify? (Each correct answer presents part of the solution. Choose all that apply.)A. A host profile
B. A capability profile
C. A hardware profile
D. A generalized image
E. A service template
Answer: AD
QUESTION NO: 11
You plan to deploy multiple servers in a test environment by using Windows Deployment Services (WDS).You need to identify which network services must be available in the test environment to deploy the servers.Which network services should you identify?(Each correct answer presents part of the solution.Choose ail that apply.)A. DHCP
B. Active Directory Domain Services (AD DS)
C. DNS
D. Active Directory Lightweight Directory Services (AD LDS)
E. WINS
F. Network Policy Server (NPS)
Answer: AC
QUESTION NO: 12
Your network contains an Active Directory forest named contoso.com. The forest is managed by using Microsoft System Center 2012. Web developers must be able to use a self-service portal to request the deployment of virtual machines based on predefined templates. The requests must be approved by an administrator before the virtual machines are deployed.You need to recommend a solution to deploy the virtual machines.What should you include in the recommendation?More than one answer choice may achieve the goal. Select the BEST answer.A. A Virtual Machine Manager (VMM) service template, a Service Manager service offering, and an Orchestrator runbook
B. A Virtual Machine Manager (VMM) service template, an Operations Manager dashboard, and an Orchestrator runbook
C. A Service Manager service offering, an Orchestrator runbook, and Configuration Manager packages
D. A Service Manager service offering, an Orchestrator runbook, and an Operations Manager dashboard
Answer: A
QUESTION NO: 13
You have a server named Server1 that runs Windows Server 2012. Server1 has the DNS Server server role installed.You need to recommend changes to the DNS infrastructure to protect the cache from cache poisoning attacks.What should you configure on Server1?A. DNS devolution
B. DNS Security Extensions (DNSSEC)
C. DNS cache locking
D. The global query block list
Answer: C
QUESTION NO: 14
Your network contains a server named Server1 that runs Windows Server 2012. Server1 has the Network Policy Server server rote installed.You configure Server1 as part of a Network Access Protection (NAP) solution that uses the 802.lx enforcement method.You add a new switch to the network and you configure the switch to use 802.lx authentication.You need to ensure that only compliant client computers can access network resources through the new switch.What should you do on Server1?A. Add the IP address of each new switch to the list of RADIUS clients.
B. Add the IP address of each new switch to a connection request policy as an Access Client IPv4 Address.
C. Add the IP address of each new switch to a remote RADIUS server group.
D. Add the IP address of each new switch to a remediation server group.
No comments:
Post a Comment
Note: only a member of this blog may post a comment.