| < Day Day Up > |
|
Page
6-13
1. | By default, where do MBSA and MBSACLI store security reports?
|
|
2. | Which of the following commands would scan the subnet 192.168.5.0?
|
|
Answers
1. | c. MBSA and MBSACLI store reports in C:\Documents and Settings\username\Security Scans\ by default. |
2. | d. MBSACLI's -r parameter scans a range of IP addresses. |
Page
6-26
1. | Which of the following commands would slipstream a service pack named sp1.exe into an installation folder named D:\W2003\ that had been created by copying the contents of the Windows Server 2003 installation CD?
|
|
2. | Which section of an answer file would you modify to automatically run updates after the installation completed?
|
|
Answers
1. | b. The -s parameter is the correct parameter for creating an integrated installation. You should specify the folder that corresponds to the root of the setup CD; you do not need to specify the i386 directory. |
2. | c. The [GuiRunOnce] section of the answer file contains a list of applications to be run after setup is completed. |
Page
6-41
1. | Which command-line parameter would configure an update so that it won't store copies of files that it replaces?
|
|
2. | Which of the following tools can be used to identify the Automatic Updates client's configuration, in addition to the GPO that defined that configuration? (Choose all that apply.)
|
|
3. | Which registry key would you edit to configure the local computer's Automatic Updates client settings?
|
|
4. | Which of the following might provide you with useful information about a problem you are experiencing with downloading updates from an SUS server?
|
|
Answers
1. | a. The /n parameter saves disk space by not backing up replaced files. |
2. | a and c. RSoP and Gpresult will show current policy settings and the GPO that defined them. |
3. | b. The Automatic Updates client takes its configuration information from the HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\WindowsUpdate registry key and its subkeys. |
4. | b, e, and g. The SUS server will add relevant events to the System event log on the SUS server. The Automatic Updates client adds events to the client's System event log. Details about individual requests to the SUS server from the Automatic Updates client are contained in the IIS usage log. |
Page
6-43
1. | What method will you implement to deploy updates?
|
|
2. | How will you configure the Automatic Updates client?
|
|
3. | How will you ensure that newly installed computers are updated? |
|
4. | How will you determine whether clients are being successfully updated?
|
|
Answers
1. | c. For this environment, SUS is the best way to deploy updates. |
2. | d. In an Active Directory environment, GPOs are the most efficient way to configure the Automatic Updates client. |
3. | You should create an integrated installation of all operating systems that are currently being deployed to new computers. For each operating system, include security updates, critical updates, and any important updates provided by your original equipment manufacturer (OEM) or required by non-Microsoft applications. If possible, assign an administrator to regularly update the integrated installation with newly released updates. If various people within your organization will be deploying new computers, do your best to educate them about the importance of installing computers with the integrated installation. To further reduce the risk of new computers being infected, use MBSA and MBSACLI to scan every IP address in your organization for new computers. |
4. | d. Of these options, the best choice is to schedule the MBSACLI utility. This reduces the burden on you and on end users. It is a less than perfect plan, however, because computers not accessible on the network when the scan runs will not be detected. |
Page
6-46
1. | What is the source of the problem? |
|
2. | How would you troubleshoot the problem? |
|
Answers
1. | The problem is that the client computer does not have sufficient permissions to request updates from the SUS server. IIS usage logs can be difficult to interpret, but this is an important part of troubleshooting problems related to SUS. The sc-status field contains the Hypertext Transfer Protocol (HTTP) status code that IIS returned to the client. If the request could be successfully filled, the status code would be 200. However, in all of the requests shown in this scenario, the response code is 401. The HTTP status code 401 indicates that the client is unauthorized for the type of request. For more information about HTTP status codes, refer to RFC 2616. |
2. | You should use IIS Manager to check the permissions for the Web site and the virtual directories used by SUS. Additionally, you should check the file permissions on the Web site root. The root of the Web site, and all SUS content, should be configured to allow anonymous requests. |
| < Day Day Up > |
|