









Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
A comprehensive set of questions and detailed answers for the windows operating system exam. It covers a wide range of topics related to windows operating system, including kerberos authentication, powershell execution policy, multi-tasking modes, dynamic access control, windows security auditing, security configuration tools, network security tools, windows firewall, user group permissions, powershell cmdlets, service startup types, windows bitlocker configuration, and more. Likely intended to serve as a study guide or exam preparation material for individuals seeking to demonstrate their expertise in windows operating system administration and security.
Typology: Exams
1 / 17
This page cannot be seen from the preview
Don't miss anything!










In a Kerberos Authentication process which one of the following sends a Ticket Granting Ticket secret key and a session key as a function? A. TGS_RESPONSE B. AS_RESPONSE C. TGS_REQ D. AP_RESPONSE Correct Answer B. AS_RESPONSE An API is a set of functions that an application can call to allow the application to operate within Windows. A. True B. False Correct Answer A. True
Which Active Directory Certificate Service (AD CS) server role allows routers and other network devices that do not have a domain account to obtain certificates? A. Certificate Enrolment Web Service B. Online Responder C. Certificate Enrolment Policy Web Service D. Network Device Enrollment Service Correct Answer D. Network Device Enrollment Service Which value in the PowerShell "execution policy" allows loading of all configuration files and scripts? A. AllSigned B. Unrestricted C. Undefined D. RemoteSigned Correct Answer B. Unrestricted In which multi tasking mode can an operating system take control of the processor without consent from the task? A. Non-preemptive multi-tasking B. Preemptive multi-tasking C. Multi-threading
C. Audit Network Policy Server D. All of the above Correct Answer D. All of the above Which one of the following creates and manages and exports (for deployment) security policies across multiple Windows operating systems roles and Microsoft applications? A. Microsoft Security Configuration Wizard B. Microsoft Security Compliance Manager C. Security Templates D. Group Policy Correct Answer B. Microsoft Security Compliance Manager Which type of attacker has actions that are considered noble by the attacker but could cause more harm than good? A. White Hat B. Black Hat C. Red Hat D. Gray Hat Correct Answer D. Gray Hat During which step of Microsofts recommended Update Management Process would an update be tested? A. Assess
B. Identify C. Evaluate and Plan D. Deploy Correct Answer C. Evaluate and Plan Which execution mode has unrestricted access to the underlying hardware? A. Kernel B. Operating System C. User D. Guest Correct Answer A. Kernel Which one of the following can be managed through group policies (GPO)? A. Authentication settings B. Software installation and update C. IPsec connections D. All of the above Correct Answer D. All of the above The Windows Security Configuration Wizard can be used to configure the Windows Firewall with advanced security support.
D. Load and unload device drivers Correct Answer A. Increase a process working set Security Templates provide a standardized way to organize and express and measure security related information. A. True B. False Correct Answer B. False Which one of the following is a cmdlet that is used to gather computer information? A. Get-WmiObject B. Get-ChildItems C. Get-Service D. None of the above Correct Answer A. Get-WmiObject Network Access Protection (NAP) is a Windows feature that provides which one of the following? A. Automatic Remediation B. Non-current Compliance C. Health State Invalidation D. None of the above Correct Answer A. Automatic Remediation
What are the four service startup types? A. Manual; Automatic; Disabled; Prompt B. Manual; Automatic; Enabled; Disabled C. Manual; Automatic; Scheduled; Disabled D. Manual; Automatic; Automatic (Delayed); Disabled Correct Answer D. Manual; Automatic; Automatic (Delayed); Disabled PowerShell is built on top of the .Net CRL and .Net Framework. A. True B. False Correct Answer A. True Which solution is best to avoid downloading an untrusted patch? A. Disable automatic updates B. Check for updates on a trusted network C. Verify the source of the update D. All of the above Correct Answer D. All of the above In a PowerShell environment the WhatIf parameter allows PowerShell users to test the command before actually executing. A. True
A. Microsoft Security Configuration Wizard B. Security Content Automation Protocol (SCAP) C. Group Policy D. None of the above Correct Answer C. Group Policy In which one of the Social Engineering stages would you establish credibility? A. Information Gathering B. Select Target C. Relationship Development D. Relationship Exploitation Correct Answer C. Relationship Development In a Hardening Process which method uses plaintext files containing software and driver installation configuration settings? A. Security Templates B. Microsoft Baseline Security Analyzer C. Security Compliance Manager Toolkit (SCM) D. Group Policy Correct Answer A. Security Templates
Which method scans systems to identify common security misconfigurations and missing security updates? A. Microsoft Security Configuration Wizard B. Microsoft Security Compliance Manager C. Microsoft Baseline Security Analyzer D. Group Policy Correct Answer C. Microsoft Baseline Security Analyzer Which two of the following categories of monitoring are in the Action Center formerly known as the Windows Security Center? A. Windows API and Applications B. Windows Services and Processes C. Security and Maintenance D. Memory Management and CPU usage Correct Answer C. Security and Maintenance Which Internet Protocol Security (IPsec) protocol provides confidentiality by encrypting data? A. Internet Key Exchange (IKE) B. Authentication Header (AH) C. Encapsulating Security Payload (ESP)
A. Incremental update between service packs or versions to fix outstanding issues B. Publicly released update to fix a known flaw for a software application or operating system C. An update to fix a very specific issue D. A collection of patches Hotfixes and maintenance releases Correct Answer C. An update to fix a very specific issue Which Network Access Protection (NAP) client collects and maintains a system health status? A. System Health Agent B. NAP Agent C. NAP Enforcement Client D. None of the above Correct Answer B. NAP Agent Which option is best for a server to connect to a network? A. Wired B. Wireless C. Virtual Private Network D. None of the above Correct Answer A. Wired
Which one of the following steps is not part of securing the Microsoft patch process? A. Always validate patches B. Apply patches while on the road C. Harden the WSUS server D. Ensure ALL software is patched not just Microsoft Correct Answer B. Apply patches while on the road User Account Control (UAC) was introduced in Windows XP and Server 2003. A. True B. False Correct Answer B. False A logical Patch Management process is a one-time process that businesses should establish to ensure success. A. True B. False Correct Answer B. False In the Windows Registry what is a collection of discrete files called? A. Programs
C. Integrity D. All of the above Correct Answer D. All of the above Which key command in PowerShell shows an objects methods and properties? A. Get-Help B. Get-Command C. Get-Member D. All of the above Correct Answer C. Get-Member Which built-in Windows security feature prevents users from loading unauthorized and unapproved applications? A. Windows Firewall B. Windows Defender C. Windows AppLocker D. Windows Group Policy Correct Answer C. Windows AppLocker Authenticode is a means of code signing that allows users to verify the source and author of the signed software. A. True
B. False Correct Answer B. False Which one of the following DLL file handles the memory management? A. User32.dll B. Kernel32.dll C. Gdi32.dll D. None of the above Correct Answer B. Kernel32.dll Which type of permissions are created by default on non child objects or based by user assignment? A. Inherited B. Standard C. Effective D. Explicit Correct Answer D. Explicit