| |
| Question 1 | The correct answer is A. Because the company currently uses a single domain and wants to maintain this, only a single domain needs to be created. When designing Active Directory, a single domain is recommended (but not always feasible). Also, company-wide security settings are required, one domain should be created. Therefore, answers B, C, and D are incorrect. |
| |
| Question 2 | The correct answer is D. Five separate OUs should be created. One OU will be created for each of the five different geographical locations. The company wants to enable each administrator in the various locations to perform administrative tasks. This can be achieved by creating an OU for each location and granting each administrator permission over the appropriate OU. Therefore answers A, B, and C are incorrect. |
| |
| Question 3 | The correct answer is A. Because all locations are connected by T1 links, only a single Global Catalog server is required. Multiple Global catalogs can be created. However, multiple GCs are usually implemented when locations are connected by slow links. Therefore answers B, C, and D are incorrect. |
| |
| Question 4 | The correct answer is C. By storing zone data within Active Directory, administration of DNS can be reduced through secure dynamic updates. Also, it will not be necessary to maintain two separate replication topologies. Zone information can be replicated using the active directory replication topology. Primary and stub zones can both be converted to Active Directory integrated. However, if the zone information is stored locally, administration of DNS is not reduced. Therefore, answers A and D are incorrect. Answer B is incorrect because secondary zones can not be converted to Active Directory integrated. |
| |
| Question 5 | The correct answer is C. Because the different locations are connected via high speed connections, RPC over IP should be used for the replication protocol if multiple sites are created. Answer A is incorrect because SMTP is normally used for slow, unreliable connections. Answer B and D are incorrect because they are not replication protocols. |
| |
| Question 6 | The correct answer is B. Windows 95 clients do not support dynamic updates, so a DHCP server must be configured to perform updates on behalf of clients. Answer A is incorrect because the Active Directory client does not provide this functionality. Answer C is incorrect because Windows 95 clients cannot be configured to update resource records. Answer D is incorrect because secure updates are enabled to limit those users and groups that can update the DNS zone file. |
| |
| Question 7 | Answer B is correct. Because the administrative model is based on the different business locations, the OU structure should model this and be based on geographical locations. Answer A and C are incorrect because these models would not allow the company to maintain its current administrative model. Answer D is incorrect; role-based is the same as functional. |
| |
| Question 8 | Answers A and B are correct. Because the routers do not forward broadcasts, a DHCP server can be placed within each location or a single DHCP server can be implemented and the DHCP relay agent enabled in each location. Answer C is incorrect because requests for IP addresses will not be forwarded by the routers. Answer D is incorrect because APIPA does not include the IP address of the default gateway, so communication is limited to the local subnet. |
| |
| Question 9 | Answer C is correct. Windows 95 clients use NetBIOS for locating network services. A WINS server is required to resolve NetBIOS names to IP addresses. Answers A and B are incorrect because DNS and HOSTS files are used to resolve domain names to IP addresses. Answer D is incorrect because dynamic updates are enabled so clients can dynamically update their own resource records. |
| |
| Question 10 | The correct answer is C. By establishing a new tree within the forest, the new company can maintain a separate namespace. Answer A is incorrect because a new forest is unnecessary. Answers B and D are incorrect because these two solutions would not allow the new company to maintain a separate namespace. |
| |
| Question 11 | The correct answer is C. By enabling the No Override option for a Group Policy Object, any settings configured at a lower level in the hierarchy will not be able to override the settings. Answer A is incorrect because the Block Inheritance option is set on an OU to change the default behavior of how policy settings are inherited. When this option is configured, policy settings configured for a parent container are not inherited by a child OU. Answer B is incorrect because this solution would exempt the Administrators group only from being affected by policy settings. Answer D is incorrect because policies are inherited from parent container to child container by default. |
| |
| Question 12 | The correct answer is C. Delegation of authority is used to grant individuals or groups certain administrative rights over a container or object. Answer A is incorrect because inheritance defines how settings such as permissions are inherited from parent to child. Answer B is incorrect because Group Policy is a tool used to control the user and computer environment. Answer D is incorrect because OUs are created to organize objects within a domain. |
| |
| Question 13 | The correct answer is D. By configuring a one-way external trust, users from a domain in one forest will be able to access resources from a domain in a remote forest. Answer B is incorrect because trusts are not automatically established between forests. Answer A is incorrect because shortcut trusts are established between domains in a single forest. Answer C is incorrect because the question does not state that users in the new forest need access to resources in the HW, Inc forest. |
| |
| Question 14 | The correct answer is C. The company has already registered this name on the Internet and wants to use the same name internally and externally. Answers A, B, and D are incorrect because they would not allow the company to use the same name internally and externally. |
| |
| Question 15 | The correct answer is D. One-way nontransitive NTLM trusts must be configured between Windows Server 2003 domains and Windows NT 4.0 domains. Answers A and C are incorrect because transitive trusts do not exist between Windows Server 2003 and Windows NT 4.0. Answer B is incorrect because shortcut trusts are created between Windows Server 2003 domains in the same forest. |
