| Question 1 | How many forests will be created for the company? | | Question 2 | How many domains will be created in the new infrastructure? | | Question 3 | How many sites will be created in the new infrastructure? | | Question 4 | FKB currently has BIND 8.2.2 DNS servers. Can these DNS servers support the new Active Directory infrastructure? A. No. Windows Server 2003 DNS must be used. B. No. BIND 8.2.2 only supports SRV records. C. Yes. All versions of BIND support SRV records and dynamic updates. D. Yes. BIND 8.2.2 supports SRV records and dynamic updates.
| | Question 5 | DKB Consulting has its own DNS infrastructure. The company plans to upgrade its DNS servers to Windows Server 2003. What type of zone should be configured to allow administrators to control which users can update the zone file? | | Question 6 | Traffic needs to be controlled over the frame relay connection. Which of the following options would work best? A. Use RPC over IP as the replication protocol and configure a link cost B. Use SMTP as the replication protocol and configure a replication schedule C. Use RPC over IP as the replication protocol and configure a replication schedule D. Use SMTP as the replication protocol
| | Question 7 | How many top-level organizational units should be configured? | | Question 8 | What must be done before the domain controllers can be upgraded to Windows Server 2003? A. Upgrade the Windows NT Server 4.0 directly to Windows Server 2003 B. Install the latest service pack on the domain controllers C. Upgrade the domain controllers to Windows 2000 D. Perform a clean installation of Windows Server 2003 because there is no upgrade path
| | Question 9 | How many Global Catalog servers should be implemented? | | Question 10 | A research and development department is being added. Users in this department are responsible for creating, testing, and modifying company software. The applications installed will make several modifications to the schema. The IT manager does not want all users to be affected by the modifications. What should you do? A. Create a child domain for the new department B. Create a new organizational unit for the department C. Create a new forest for the department D. Create a new root domain within the existing forest for the new department
| | Question 11 | Which of the following platforms can update their own host records with the DNS servers? | | Question 12 | The company needs to support clients that use NetBIOS names for locating network services. Which of the following solutions can be used? A. DNS B. WINS C. HOSTS D. LMHOSTS
| | Question 13 | The IT manager wants to implement group policies throughout the company. Place the following in the order that group policies are applied. Local Computer Domain Site User Organizational Unit
______________________ ______________________ ______________________ ______________________ ______________________
| | Question 14 | The administrator for the Sales OU is configuring a GPO for software distribution. However, the IT group should not be affected by the policy settings. What technique can be used to solve this problem? A. Use filtering with security groups B. Use the No Override option C. Use the Block Inheritance option D. Rearrange the OU structure so that it is based on groups rather than departments
| | Question 15 | Don is a member of the Research and Development department. He's trying to update the Active Directory schema but is receiving an error message. What could be causing the problem? A. Don is not logged on locally to the schema master. B. Don is not a member of the Schema Admins group. C. Don is not a member of the Enterprise Admins group. D. The default schema cannot be changed.
|
Case 3: Good Nature, Inc.
Good Nature, Inc. Overview Good Nature, Inc. is a large manufacturer of bath and body products. The head office is located in Minneapolis, Minnesota. Regional offices are located in Los Angeles, Phoenix, Tampa, and Chicago. The head office currently has the following departments: Accounting Human Resources IT Manufacturing Advertising Sales Marketing
Each regional office has the following departments: IT Manufacturing Sales Marketing
Good Nature has recently acquired a chain of day spas. The two companies must maintain a separate Internet presence but still be able to share resources. Current LAN/WAN Structure Workstations are running a variety of platforms, including Windows 95, Windows 98, Windows NT Workstation 4.0, and Windows 2000 Professional. Most servers are running Windows NT Server 4.0, but a few are still running Windows NT Server 3.51. Regional offices are connected to the head office using 1.5mbps T1 connections. The T1 connections are not heavily utilized at this point. The different office locations are connected using routers. Routing tables are currently maintained by the administrators, but the routers support dynamic routing. Proposed WAN Structure The company is looking into using DSL and VPN connections to the head office to reduce costs. However, a remote access solution must be in place before this will happen. Directory Services Commentary CIO: We would like to maintain a centralized approach to creating user accounts. Accounts should be created in the head office. However, due to the number of calls received from regional offices, we would like to delegate some authority to the local IT groups so that they can reset passwords and perform other various day-to-day tasks. IT Director: All offices are connected using routers. Static routes are currently implemented, but with expansion of the company being planned in the future, static routes will be a serious overhead. Also, to reduce the administrative overhead associated with maintaining our DNS servers, host records should be dynamically updated. IP addresses should also be assigned automatically. Currently none of the routers forward broadcasts. CEO: We would like to implement tighter security in regard to client computing environments and implement domain-wide policies with local administrators being able to apply further restrictions. GNDaySpas requires an application that will alter the schema. We do not want to be affected by this. | Question 1 | How should Active Directory be structured for Good Nature? A. Two forests B. One forest, one domain C. One forest, two domain trees D. One forest, one domain tree
| | Question 2 | One of the departments in Good Nature requires more complex passwords than all other departments. What should you do? A. Place the department within its own forest B. Place the department within its own domain C. Place the department within its own OU and configure an account policy at the OU level D. Place the department within its own domain tree
| | Question 3 | Place the appropriate operation masters on each domain. Some may be used more than once. Domains: Goodnature.com Accounting.goodnature.com GNDaySpas.com Operation Masters: Schema master RID master Domain naming master PDC emulator Infrastructure master
Goodnature.com _____________________________________________________ Accounting.goodnature.com _____________________________________________________ GNDaySpas.com _____________________________________________________ | | Question 4 | Which of the following are benefits of using L2TP as opposed to PPTP for VPN connections? A. More efficient data transfer B. Provides support for a variety of platforms C. Tunnel authentication for each transmission D. Provides support for a variety of protocols
| | Question 5 | A user in the GNDaySpas domain attempts to install an application that will integrate within Active Directory. The installation will add new classes to the schema. However, the installation fails. What is most likely causing the problem? A. There is no schema master within the domain. B. The user is not a member of the Schema Admins group. C. The Active Directory schema cannot be updated. D. The application is not supported.
| | Question 6 | The IT administrators want users to be able to perform searches for resources throughout the network as quickly as possible. What should you do? A. Place a domain naming master in each region B. Move the role of Global Catalog to another server C. Install a DNS server within each region D. Enable a Global Catalog within each region
| | Question 7 | One of the domains within the forest has two member servers. These member servers host resources that all users in the forest need access to. What should you do? A. Create local groups on each member server. Place users in global groups. Add the global groups to the local groups. B. Create global groups on each member server. Place users in domain local groups. Add the domain local groups to the global groups. C. Create domain local groups on each member server. Place users in global groups. Add the universal groups to the domain local groups. D. Create global groups on each member server. Place users in local groups. Add the local groups to the global groups.
| | Question 8 | How should group policies be implemented for the company? A. Configure policies at the OU level. B. Configure a single domain-wide policy and enable the Block Inheritance option. C. Configure a domain-wide policy and enable the No Override option. D. Configure multiple policies at the domain level.
| | Question 9 | How should you implement the administration of group policies? A. Enable local regional administrators to edit GPOs at the domain level. B. Enable domain administrators to edit GPOs at the OU level. C. Enable local regional administrators to create and edit GPOs at the OU level. D. Enable local regional administrators to edit GPOs at the OU level.
| | Question 10 | What is one of the most important aspects to consider when determining the number of domains to create? A. Account policies B. The location of domain resources C. The amount of bandwidth available D. The number of users within a company
| | Question 11 | Which of the following factors require that multiple domains be created? A. Separate internal namespaces B. Account policies C. Delegation of authority D. Multiple Global Catalog servers
| | Question 12 | DKP International is expanding and a new office is being opened in Europe. The IT director for the company wants to know if a new domain is required for the new location. Which of the following should be considered? | | Question 13 | Which of the following would offer an IP addressing solution for the company? A. Install a single DHCP server to be used by all workstations. B. Install a single DHCP server. Place a DHCP relay agent on each subnet without a DHCP server. C. Place a DHCP server on each subnet. D. Install the DHCP relay agent.
| | Question 14 | Static routes are no longer suitable for the company. Which of the following can be implemented? A. OSPF B. ICMP C. PPTP D. RIP
| | Question 15 | Good Nature has no immediate plans to upgrade client workstations. What should you do to enable name resolution with the least amount of administrative overhead? A. Configure LMHOSTS files on each workstation B. Implement a WINS solution C. Configure each workstation with a HOSTS file D. Purchase routers that can forward NetBIOS name broadcasts
|
Case 4: DKP Int'l
DKP Int'l. Overview DKP Int'l is a medium-size provider of school supplies. The company manufactures pencils, pens, erasers, and other miscellaneous items. DKP Int'l has decided to upgrade to Windows Server 2003. DKP is merging with a company called Paper Trailz. Paper Trailz is a manufacturer of paper products such as notebooks, calendars, and day planners. Paper Trailz is also upgrading to Windows Server 2003 as part of the merger. Current LAN/WAN Structure The head office is located in Chicago. This is where all administrative staff is currently located. The head office contains approximately 800 workstations. Regional offices are located in Denver, San Francisco, and Orlando. These three offices are all connected to the head office. Production facilities are located throughout the United States. These offices are connected to regional offices using 56kbps connections. All workstations run Windows 95. Some users have portable computers that are running Windows 2000 Professional. The network currently uses Windows NT Server 4.0. There are four domains configured: one for the head office and three for the regional offices. A complete trust model has been implemented. Paper Trailz currently uses a single Windows NT 4.0 domain. DKP Int'l has registered the domain name of DKP.com. The company would like to use this for the forest root domain name. Each regional office has a local administrator. However, all the high-end technical administrators are based in the head office. Proposed LAN/WAN Environment The company has no plans to upgrade any of the existing WAN connections. Local administrators should have limited authority with the ability to reset passwords, unlock accounts, and manage some local resources. Because Paper Trailz (papertrailz.com) already has an Internet presence, this should be maintained. DKP plans to implement remote access in the future so that users can access the regional domains from their home offices. This brings up security concerns. Centralized administration of remote access is preferred. Only members of the Managers group and the Sales group should have remote access permissions. Managers should have access at any time, whereas members of the Sales group should have access only during weekday business hours. Directory Service Commentary CEO: There are too many people with administrative privileges, which dates back to when the company was first established. IT Manager: The local IT support in each of the regional offices should have limited administrative privileges. CIO: The new company should be able to maintain its current Internet presence. However, the two companies need to be able to easily share resources. | Question 1 | You're designing the DNS naming strategy for DKP Int'l. Which of the following points should you consider? A. The company plans to have an Internet presence. B. The number of users within the company. C. Paper Trailz' existing Internet presence. D. IT administrators in regional offices will have limited privileges.
| | Question 2 | How many Active Directory forests will be required? | | Question 3 | Paper Trailz needs to maintain its current domain name. Users in this company should also still be able to manage their own resources. Users in both companies need to share resources. How should you proceed? A. Create a child domain called papertrailz.dkp.com under the forest root dkp.com for the new company. B. Create an OU for Paper Trailz within the dkp.com domain. C. Create a new forest root called papertrailz.com. D. Create a new tree within the dkp.com forest for Paper Trailz.
| | Question 4 | How many domains would you create for DKP Int'l? A. One domain B. Two domains: one for DKP Int'l and one for Paper Trailz. C. Four domains: One for each regional office and one for the head office. D. Five domains: One for the head office, one for each regional domain, and one for Paper Trailz.
| | Question 5 | Which of the following servers must exist within the Paper Trailz domain? A. Schema master B. Global Catalog C. RID master D. PDC emulator E. DNS server
| | Question 6 | What kind of organizational unit model is appropriate for DKP Int'l? A. Functional B. Organizational C. Geographical D. Hybrid
| | Question 7 | Two domains are created for DKP Int'l: dkp.com and papertrailz.com. dkp.com is the forest root domain. Which of the following information will be replicated between the two domains? | | Question 8 | One of the administrators in Chicago makes a change to the properties of a user's account. How long until the change appears on other domain controllers within Chicago? A. 5 seconds B. 5 minutes C. 10 minutes D. 15 minutes E. 60 minutes
| | Question 9 | DKP Int'l hopes to implement remote access in each of the regional offices so that users can access the network from home offices. Administration of the remote access servers should be done by the IT group in the Chicago office. What should you do? A. Configure remote access servers in each of the regional offices B. Configure a single remote access server in the head office C. Configure an IAS server in the head office D. Configure multiple remote access servers in the head office E. Configure an IAS server in each of the regional offices
| | Question 10 | During the migration to Windows Server 2003, users in a Windows NT 4.0 regional domain need access to resources in a Windows Server 2003 domain. What should you do? A. Nothing. Two-way transitive trusts are automatically configured. B. Manually configure two-way transitive trusts between domains. C. Manually configure a shortcut trust between domains. D. Configure a one-way NTLM trust between domains.
| | Question 11 | Remote access policies consist of various elements. In what order are policy elements evaluated against a connection attempt? A. Conditions, profile, permissions B. Conditions, permissions, profile C. Profile, conditions, permissions D. Permissions, conditions, profile
| | Question 12 | DKP is implementing remote access policies for its company so that users can remotely access the regional domains. Two policies are created: one for the Sales group that limits access during the weekdays from 8 a.m. to 5 p.m. and one for the Managers group. Jim is a member of both the Sales group and the Managers group. When he connects to the remote access server at 5 p.m., access is denied. What should you do? A. Remove Jim from the Sales group B. Edit the properties of Jim's user account to grant remote access C. Edit the permissions of the remote access policy to grant access D. Change the order of the remote access policies so that the policy created for the Managers group is listed first
| | Question 13 | You're the network administrator for DKP Int'l. A new sales office is being opened in a remote location. The office will maintain only 10 workstations. You're in charge of connecting 10 Windows XP Professional clients to the Internet. There are no other computers in the office. One DSL line is connected to the office. You want to connect all clients to the DSL line with the least expense to the company and the least administrative effort. Which service should you use? A. Internet Connection Sharing B. Network address translation C. Proxy server D. Internet authentication server
| | Question 14 | DKP Int'l is installing the first domain controller for the Paper Trailz domain. The domain will host several domain controllers. Which Flexible Single Master Operation roles will be installed, by default, on the first domain controller (and only on the first domain controller) within the Paper Trailz domain? A. PDC emulator B. Schema master C. Domain naming master D. RID master
| | Question 15 | One of the domains is running in mixed mode. Mary's Dial-In permissions are set to the default setting. When she attempts to access the network through the remote access server, all attempts are denied. Which could you do to allow Mary access to the network through the RAS? A. Change her permissions to Allow B. Change her profile to Allow C. Change her permissions to Control Access Through Remote Access Policy D. Change the domain to native mode
|
| 