Page 1-6
1. | You are developing a deployment plan for Exchange Server 2003. You have been asked to ensure that the contoso.com and fabrikam.com domain trees that are part of the same forest can be included in the same Exchange Server 2003 organization. Is this possible with the existing Active Directory structure, or will you need to change the Active Directory structure first? |
|
2. | You are an Exchange Server 2003 administrator. You regularly create new user accounts for contractors, but periodically you receive an error that the object cannot be created. Usually you are able to cancel the process and try again later or to create the new account from another server. Since the process works most of the time, you know it isn't a configuration problem or permissions problem. What else might be causing the problem?
|
|
3. | The CIO for your company returns from a Windows Server 2003 seminar and is anxious to share his new knowledge. He says you should make all of the servers in your Active Directory forest global catalog servers because it will improve the response time to user queries, especially with Exchange Server 2003. He feels that this will help significantly since your organization has four domain trees with multiple child domains in each. Do you agree with him? Why or why not? |
|
Answers
1. | The security boundary for an Exchange Server 2003 organization is the forest rather than the domain, so you will be able to include the two domain trees in the same Exchange Server 2003 organization. If the domain trees were in separate forests, you would have to first migrate one domain into the other forest in order to be able to place them both in the same organization. |
2. | The correct answer is b. |
3. | While more global catalog servers would theoretically improve the response time to user queries, replication traffic on the network would increase. Depending on the network, this additional traffic could have a detrimental effect that outweighs the benefits of using additional global catalog servers. There is a balance between too few and too many global catalog servers. |
Page 1-10
1. | You are an Exchange Server 2003 consultant that has been contacted by Contoso, Ltd., to help analyze their network environment and make recommendations as they prepare to migrate from Windows NT Server 4 and Exchange Server 5.5 to Windows Server 2003 Active Directory and Exchange Server 2003. They are concerned about total cost of ownership (TCO), especially as it concerns having to duplicate user information between Windows and Exchange. What advice can you give them about this concern? |
|
2. | Which Active Directory naming context is responsible for the storage of Exchange Server 2003 recipient objects?
|
|
3. | What is the primary function of the DSAccess service?
|
|
Answers
1. | In contrast to Exchange Server 5.5, which maintained its own directory, Exchange Server 2003 integrates with Active Directory. As a result, there is no need to maintain separate user databases. Exchange Server 2003 extends the Active Directory schema so that user objects can be configured with Exchange-specific information, such as e-mail addresses, mailboxes, and so on. The end result is a single point of user management with no duplication of effort between the Windows environment and the Exchange environment. |
2. | The correct answer is a. |
3. | The correct answer is d. |
Page 1-14
1. | You are the Exchange administrator for Contoso, Ltd. You are planning the deployment of Exchange Server 2003 into your Windows Server 2003 Active Directory domain. The IT director questions you about the effect that Exchange Server 2003 will have on IIS security, concerned that installing Exchange Server 2003 will cause IIS to be less secure. How do you address his concerns? |
|
2. | Which of the following Windows Server 2003 services is not used by Exchange Server 2003 to support the messaging infrastructure?
|
|
Answers
1. | IIS security has been a problem in the past, but IIS 6 includes the Worker Process Isolation Mode, which provides greater security by isolating all the processes and extensions associated with an application. When Exchange Server 2003 is installed, it automatically configures IIS to operate in this more secure mode. |
2. | The correct answer is b. |
Page 1-15
1. | Describe the forest and domain infrastructure you would recommend that would result in the most efficient level of administration. |
|
2. | Explain how the number of Active Directory forests would affect the deployment of Exchange Server 2003. |
|
Answers
1. | Because management wants to reduce the duplication of administrative effort and also have a centralized IT department that is able to administer all domains, it would be best to implement Active Directory as a single forest. A forest can have multiple domain trees, which would be ideal for this situation, since each domain tree in the forest would share a common Schema Admins and Enterprise Admins security group. Local domain administration can still be performed by members of each individual Domain Admins group, allowing a level of decentralized administration, as well. |
2. | The security boundary for an Exchange Server 2003 organization is the forest, so if there are multiple forests, then there need to be multiple Exchange organizations. This would fail to meet the needs of the company, which requires that each domain be a part of the same Exchange organization in order to share a common global address list. A single forest structure with multiple domain trees would allow each domain to be in the same Exchange organization, and Exchange Server 2003 can support multiple domains in the same organization. |
Page 1-16
1. | Describe a feature of Active Directory that you can use to organize resources in a way that will allow you to minimize usage of WAN bandwidth for non-user-generated network traffic during business hours. |
|
2. | How would the use of sites in this situation affect the placement of global catalog servers? |
|
Answers
1. | Active Directory uses sites to group resources that are connected by high-speed LAN bandwidth. Within a site, non-user-generated network traffic such as replication between domain controllers takes place immediately when a change is made. However, replication traffic between sites can be scheduled. By using scheduling, you can schedule non-user-generated network traffic to take place outside of business hours, thereby reducing costs. |
2. | In order to minimize the use of WAN bandwidth further, you would want to make at least one domain controller in each site a global catalog server. This would prevent Active Directory from being sent across the WAN connection. |