1.LAB
Hotspot question. Click on the correct location or locations in the exhibit.
Correct Answers:
70-270 70-272 70-293 70-297 2.You are the network administrator for your company. All network servers run Windows Server 2003. All
file servers contain shared volumes that use shadow copies. All
client computers run the Previous
Versions
client software. A user named Anne creates a file named Logo.bmp. Other users edit the file. The
editing history of Logo.bmp is shown in the following table.
User Changes to Logo.bmp Date
Anne Creates Logo.bmp. The foreground color is green. January 4, 2003
The background color is yellow.
Eric Changes the background color to blue. January 6, 2003
Mark hanges the foreground color to magenta. January 7, 2003
Stephen Changes the foreground color to green. January 10, 2003
During the save,Logo.bmp is corrupted
and cannot be reopened.
You need to ensure that the foreground color of Logo.bmp is green and the background color is blue. You
also need to ensure that other users cannot access the corrupted version of Logo.bmp. Your solution must
require the minimum amount of user effort. What should you do? To answer, configure the appropriate
options in the dialog box.
Hotspot question. Click on the correct location or locations in the exhibit.
Correct Answers:
70-431 70-433 70-450 3.You are the network administrator for your company. The network consists of a single Active Directory
domain. All network servers run Windows Server 2003. User profiles are stored in a folder named
Profileshome, which is located on a member server named Server1. Profileshome is shared as Profiles. A
change in business rules requires you to create a template account for users in the engineering
department. All user accounts that are created from the template will use roaming profiles. Each profile
name will be based on user name. All profiles must be stored in a central location. You create the
template and name it T-Engineer. Now you need to add information about profile location to T-Engineer.
What should you do? To answer, drag the appropriate path or paths to the correct location or locations in
the dialog box.
Drag and drop question. Drag the items to the proper locations.
Correct Answers:
4.You are the network administrator for Fourth Coffee. The network consists of a single Active Directory
domain that contains the organizational units (OUs) shown in the work area below. The network contains
Windows Server 2003 computers, Windows XP Professional computers, Windows NT Workstation 4.0 computers,
and Windows Millennium Edition computers.An update to the written company security policy states that the
NTLMv2 and Kerberos protocols must be the only protocols that are used to authenticate logons to all
computers. You need to configure security settings by using the appropriate security template to ensure
that only the NTLMv2 and Kerberos protocols are used when users log on to the domain. You want to link
the minimum number of Group Policy objects (GPOs) to accomplish this goal.What should you do?To answer,
drag the appropriate .inf template or templates to the correct OU or OUs.
Drag and drop question. Drag the items to the proper locations.
Correct Answers:
70-536 70-646 70-649 5.You are the network administrator for Woodgrove Bank. The network consists of a single Active Directory
domain named woodgrovebank.com. All network servers run Windows Server 2003.All company Web sites are
hosted on a server named Server1, which runs IIS. You create two new Web sites, Marketing and Sales. You
create the appropriate host records on the DNS server. You test both Web sites offline and successfully
access all content.However, when you test the Web sites online, you cannot access either site. You are
directed to pages on the default Web site. You open IIS Manager and see the display shown in the exhibit.
(Click the Exhibit button.) You cannot start the new Web sites.You need to ensure that you can start all
Web sites on Server1.What are three possible ways for you to achieve this goal? (Each correct answer
presents a complete solution. Choose three.)
A:Specify Marketing.Woodgrovebank.com and Sales.Woodgrovebank.com as the host header names for the two
new Web sites.
B:For each new Web site, create a file named Default.htm in the directory path.
C:For each new Web site, specify a unique TCP port. Ensure that all
client computers use the appropriate
port to connect to each site.
D:For all Web sites, create custom HTTP headers.
E:For all Web sites, specify unique IP addresses. Modify the appropriate host records on the DNS server.
F:For all Web sites, enable anonymous access.
Correct Answers: A, C, E
6.You are the network administrator for your company. The network consists of a single Active Directory
domain. All network servers run Windows Server 2003.The domain contains a member server named Server1,
which is located in an organizational unit (OU) named Servers. Server1 is managed by an application
administrator named Richard. His domain user account is a member of the local Administrators group on the
server. Members of this group are the only users who have the Log on locally user right on Server1.The
written company security policy states that only authorized individuals can access Server1. However, you
discover that help desk technicians use the Remote Assistance feature to share their server logon
sessions with unauthorized individuals.You need to reconfigure Server1 so the Remote Assistance feature
cannot be enabled or used by the help desk technicians. However, Richard should have the ability to
enable and use this feature.What should you do?
A: In the System Properties dialog box on Server1, disable the Turn on Remote Assistance and allow
invitations to be sent from this computer option.
B: In the System Properties dialog box on Server1, disable the Allow users to connect remotely to this
computer option.
C: Edit the Group Policy object (GPO) for the Servers OU by disabling the Offer Remote Assistance
setting.
D: Edit the Group Policy object (GPO) for the Servers OU by disabling the Solicited Remote Assistance
setting.
Correct Answers: A
7.You are the network administrator for your company. The network consists of a single Active Directory
domain, and it contains five member servers running Windows 2000 Server. All five servers have CD-ROM
drives and floppy disk drives.You purchase a new computer that has a CD-RW drive. This computer does not
currently have a floppy disk drive, but you plan to install one eventually. You install and configure
Windows Server 2003 and Recovery Console on the new computer. You configure it as a member server named
Server6. Now you need to ensure that Server6 can be restored in the event of an operating system
failure.Which two actions should you perform? (Each correct answer presents part of the solution. Choose
two.)
A:Copy Asr.sif, Asrpnp.sif, and Autorun.exe from the appropriate directories on Server6 to another
server. Copy the same files to a CD-ROM.
B:Copy Asr.sif and Asrpnp.sif from the appropriate directory on Server6 to another server. Copy the same
files to a floppy disk.
C:Start the Automated System Recovery wizard on Server6.
D:Start the Create an Emergency Repair Disk wizard on Server6.
E:Copy Autoexec.nt, Config.nt, Setup.log, and Autorun.exe from the appropriate directories on Server6 to
another server. Copy the same files to a CD-ROM.
F:Copy Autoexec.nt, Config.nt, and Setup.log from the appropriate directories on Server6 to another
server. Copy the same files to a floppy disk.
Correct Answers: B, C
8.You are the network administrator for your company. The network consists of a single Active Directory
domain. All network servers run Windows Server 2003, and all
client computers run Windows XP
Professional. Terminal Services is installed on a member server named Terminal1 with default settings.
Users in the editing department are members of a group named Editors. When these users try to make a
Terminal Services connection to Terminal1, they receive the following error message: "The local policy of
this system does not permit you to logon interactively." You need to enable members of the Editors group
to establish Terminal Services sessions on Terminal1. What should you do?
A: Enable the Allow users to connect remotely to this computer option on Terminal1.
B: Add the Editors group to the Remote Desktop Users group on Terminal1.
C: Configure the RDP-Tcp connection properties on Terminal1 to assign the Allow - Full Control permission
to the Editors group.
D: Add the Editors group to the Remote Desktop Users group in Active Directory.
Correct Answers: B
9.You are the network administrator for Contoso, Ltd. The network consists of two Active Directory
domains named contoso.com and corp.contoso.com. All DNS zones are configured as Active Directory-
integrated zones. A user named Anne logs on to her Windows XP Professional computer, which is named
Computer1. Anne runs the nslookup command and receives the output shown in the exhibit. (Click the
Exhibit button.) You need to ensure that Anne can list the contents of corp.contoso.com from only
Computer1. What should you do? To answer, configure the appropriate option or options in the dialog box,
and drag the appropriate IP address or addresses to the appropriate location or locations.
9.The picture is answer
Correct Answers:
10.You are the network administrator for your company. The network consists of a single Active Directory
domain. All servers run Windows Server 2003. The domain contains two domain controllers named DC1 and
DC2. You use a Windows XP Professional
client computer named Client1. In Active Directory, the domain
administrator creates two new user accounts named NetAdmin1 and AdminUser1. The NetAdmin1 account is a
member of the Domain Admins global group. The AdminUser1 account is a member of only the Users local
group. You assign the AdminUser1 logon account the Allow log on locally user right in the Default Domain
Controller Group Policy object (GPO). A new written security policy states that user accounts that are
members of the Domain Admins global group should not be used to log on to the console of a domain
controller. It also states that administrative tasks should be performed by using the Secondary Logon
service. You now need to create a new computer account in Active Directory, and you must comply with the
new company security policy. What should you do?
A: Log on to DC1 by using the AdminUser1 user account. Run the dsa.msc command.
B: Log on to DC1 by using the NetAdmin1 user account. Run the dsa.msc command.
C: Log on to Client1 by using the AdminUser1 user account. Run the runas /user:netadmin1 dsa.msc command.
D: Log on to Client1 by using the NetAdmin1 user account. Run the runas /user:adminuser1 dsa.msc command.
Correct Answers: C
