Case Study Questions


1.  

You want to install the administrative tools on the computers of all members of the IT department, in all locations. What is the best way to accomplish this task?

  1. Create a GPO to assign the adminpak .msi program to users. Link the GPO to the OU that holds the IT user objects.

  2. Place the adminpak.msi on a network share and instruct administrator users to install it from that location.

  3. Create a GPO to assign the adminpak.msi program to computers. Link the GPO to the OU where the IT computers reside.

  4. Create a GPO to assign the adminpak.msi program to computers. Link the GPO to the domain where the IT computers reside.

a. group policy allows you to define a gpo that contains software installation settings and to link that gpo to an ou, a site, or domain. because you are planning on rolling out the administrative tools only to users with administrative needs, you should create a gpo that has the software installation option set for users and link it to the ou where the administrative users are located.

2.  

How would you ensure IPSec communication between the Atlanta and Chicago offices? (Choose all that apply.)

  1. Create a GPO with the IPSec settings and link it to the Atlanta site.

  2. Create a GPO with the IPSec settings and link it to the OU.

  3. Place all of the servers from the Atlanta office into an OU and link the GPO to that OU.

  4. Place the server providing the VPN connection to Chicago in an OU and link the GPO to that OU.

b, d. the communication between the two locations needs to be encrypted, but internal communication between clients and servers within the atlanta office was not defined as needing encrypted communication. therefore, a server acting as a vpn server would best fit the needs, and the ipsec gpo should be applied to it.

3.  

Once corporate standards are applied and defined in a GPO, where should that GPO be linked?

  1. At the OUs where the user accounts reside in each domain within the forest.

  2. At the domain level of the root domain of the forest.

  3. At the sites for each location.

  4. At the domain level of each domain in the forest. It should be copied and linked at each domain in the forest.

d. corporate standards are settings that will apply to all users in the domain. when a user logs on to the domain, these settings should take effect, no matter where the user logs on. in order to accomplish this, the same settings must be in place on all domains in the forest. the gpo should be copied to all domains and linked at the root of each domain.

4.  

Assign the following group policies to the appropriate locations within Active Directory.

click to expand

 the default domain policy will always be applied at the domain level. the corporate standards gpo should be linked at the domain level also so that all users are under the control of these settings. because each of the locations will be using a standard set of applications, the user application policy should be copied to each domain and linked to the users ou. the administrative tools gpo should be linked at the admins ou so that all of the administrative staff will have the administrative tools added to computers where they log on. the atlanta ipsec policy should be copied to each domain and linked to the vpnservers ou in each domain.

Answers

1.  

A. Group Policy allows you to define a GPO that contains software installation settings and to link that GPO to an OU, a site, or domain. Because you are planning on rolling out the administrative tools only to users with administrative needs, you should create a GPO that has the software installation option set for users and link it to the OU where the administrative users are located.

2.  

B, D. The communication between the two locations needs to be encrypted, but internal communication between clients and servers within the Atlanta office was not defined as needing encrypted communication. Therefore, a server acting as a VPN server would best fit the needs, and the IPSec GPO should be applied to it.

3.  

D. Corporate standards are settings that will apply to all users in the domain. When a user logs on to the domain, these settings should take effect, no matter where the user logs on. In order to accomplish this, the same settings must be in place on all domains in the forest. The GPO should be copied to all domains and linked at the root of each domain.

4.  

click to expand

The Default Domain Policy will always be applied at the domain level. The Corporate Standards GPO should be linked at the domain level also so that all users are under the control of these settings. Because each of the locations will be using a standard set of applications, the User Application policy should be copied to each domain and linked to the Users OU. The Administrative Tools GPO should be linked at the Admins OU so that all of the administrative staff will have the administrative tools added to computers where they log on. The Atlanta IPSec policy should be copied to each domain and linked to the VPNServers OU in each domain.




MCSE
MCSE: Windows Server 2003 Active Directory and Network Infrastructure Design Study Guide (70-297)
ISBN: 0782143210
EAN: 2147483647
Year: 2004
Pages: 159
Authors: Brad Price, Sybex

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net