










Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Windows Server Pro Manage and Administer Objective Test
Typology: Exams
1 / 18
This page cannot be seen from the preview
Don't miss anything!











You work as the IT Administrator for a small corporate network. You have four domain controllers in your Main location: CorpDC, CorpDC2, CorpDC3, and CorpDC4. During installation, CorpDC2 and CorpDC3 were not made global catalog servers. You would like additional global catalog servers. Your task in this lab is to designate CorpDC2 and CorpDC3 as global catalog servers. (To answer this question, complete the lab using information below.) - - Active Directory Users and Computers, edit the computer account. On the General tab, click NTDS Settings... In Active Directory Sites and Services, edit the NTDS Settings for the server object. Tick the "Global Catalog" option and then Apply for both CorpDC2 and CorpDC3 servers.c You work as the IT Administrator for a small corporate network. You have a branch site with about 50 employees that is connected to the main site with a WAN link. A single domain controller named BranchDC2 is configured in the branch location. Because the WAN link is slow and unreliable, you have not configured BranchDC2 as a global catalog server. You find that when the WAN link goes down, users at the branch location cannot log on to the network. Even when the WAN link is up, users complain that logon is slow. You want to minimize Active Directory traffic across the WAN link, but you also want to let branch users log on to the network even when the WAN link is down. Your task in this lab is to use Active Directory Sites and Services to enable universal group membership caching in the branch office. To do this, edit the NTDS Site Settings object for the Branch2-Site site. Keep the default caching settings. - - 1. From Hyper-V Manager, click CORPSERVER. Expand the window to view all virtual machines.
Schedule....*
computers, but not domain controllers. Your task in this lab is to modify GPO permissions to prevent the SecureWS GPO from applying to domain controllers.
Development departments, regardless of which computer they use for logon.
GPO where you want to create the software distribution policy.
Windows Settings > Security Settings > Local Policies* and select Security Options. 7. Right-click the rights assignment you want to edit and select Properties. 8. Select Define this policy setting. 9. Select Enabled or Disabled, or configure additional values for the policy. 10. Click OK. 11. Repeat steps 7 through 10 as needed for additional options. 12. Close the Group Policy. Edit the GPO Status 1. In the Group Policy Management console, browse to the Group Policy Objects folder. 2. Right-click the GPO you want to modify and select GPO Status, then select: - Enabled to enable both computer and user settings - User Configuration Settings Disabled - Computer Configuration Settings Disabled - All Settings Disabled You work as the IT Administrator for a small corporate network. You are configuring a password policy for the domain. Your task in this lab is to edit the Default Domain Policy on CorpDC using Group Policy Management and configure the Account Policy settings to meet the following requirements: - Passwords must be at least 10 characters long. - Passwords must contain uppercase letter, lowercase letter, number, and symbol characters. - Users must change passwords every 90 days.
by Microsoft. Your task is to configure the following Audit policy settings in the WorkstationGPO on CorpDC: Policy Setting Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings Enabled Audit: Shut down system immediately if unable to log security audits Enabled Retention method for security log Enabled: Do not overwrite events (clear log manually) Audit Policies: Account Logon: Audit Credential Validation Success and Failure Audit Policies: Account Management: Audit User Account Management Success and Failure Audit Policies: Account Mana - - Remember to not use the old Audit Policies located in Computer Configuration\Policies\Windows Settings\Security Settings\Local Policies\Audit Policies. Following are steps that an expert might take to perform the tasks in this lab:
You work as the IT Administrator for a small corporate network. The Sales department would like to make sure that all users of Internet Explorer are using the Corporate intranet website for their home page regardless of which computer they use. You need to enforce these preferences along with a few changes to Internet Explorer security settings. All computers are running Internet Explorer 10. Your task is to configure the following Internet Explorer preference settings in the SalesGPO:
Internet Explorer 10*.
Right-click the CorpDC server and select Connect... (maximize the window for easier viewing if desired). From Server Manager, select Tools > Group Policy Management. Browse to the Group Policy Objects container. To restore settings for a GPO, right-click the GPO and select Restore from Backup.... Click Next to begin the wizard. Click Browse..., and then browse to folder where the GPO backup is located. Select the folder, click OK, and then click Next. Select the desired backup, and then click Next. Click Finish to restore the GPO settings. You work as the IT Administrator for a small corporate network. As the company continues to grow, you realize that you will need assistance with managing group policy. You would like to create a group that has the ability to manage group policy so you can assign assistants to the group as needed. Your task in this lab is to delegate group policy management as follows:
Expand the window to view all virtual machines.
viewing if desired).
Namespace...*.
- Turn on BitLocker for the *System (C:)* drive. - Turn on and activate the TPM. - Save the recovery key to \CorpFiles12\Backup. - Encrypt the entire drive. - Perform a BitLocker system check. Note: To activate the TPM, restart the server and press the Delete key to enter setup. - - Complete the following steps: