Fiszki
Windows Serwer 2012 R2 70-411
Test w formie fiszek Ogromny test z administracji systemem Windows Server 2012. Pytania o Windows Serwer 2012 R2 - Egzamin 70-411
Ilość pytań: 211
Rozwiązywany: 8553 razy
You have a server named Server1 that runs Windows Server 2012 R2. Server1 has the File Server Resource Manager role service installed.
Each time a user receives an access-denied message after attempting to access a folder on Server1, an email notification is sent to a distribution list named DL1.
You create a folder named Folder1 on Server1, and then you configure custom NTFS permissions for Folder1.
You need to ensure that when a user receives an
access-denied message while attempting to access
Folder1, an email notification is sent to a distribution list named DL2. The solution must not prevent DL1
from receiving notifications about other access-denied messages.
What should you do?
From File Explorer, modifythe Customize tab ot Folder1
From File Explorer, modifythe Classification tab ot Folder1
From the File Server Resource Manager console, set a folder management property
From the File Server Resource Manager console, modifythe Email Notifications settings
From the File Server Resource Manager console, set a folder management property
Your network contains an Active Directory domain named contoso.com.
All domain controllers run Windows Server 2012 R2.
An organizational unit (OU) named 0U1 contains 200 client computers that run Windows 8 Enterprise.
A Group Policy object (GPO) named GP01 is linked to OU1.
You make a change to GP01.
You need to force all ot the computers in OU1 to refresh their Group Policy settings immediately. The solution must minimize administrative effort.
Which tool should you use?
The lnvoke-GpUpdate cmdlet
Server Manager
The Secedit command
Group Policy Object Editor
The lnvoke-GpUpdate cmdlet
Your network contains an Active Directory domain named contoso.com. The domain contains a server named Server1 that runs Windows Server 2012 R2.
You enable and configure Routing and Remote Access (RRAS) on Server1.
You create a user account named User1.
You need to ensure that User1 can establish VPN connections to Server1.
What should you do?
Modify the members of the Remote Management Users group
Create a connection request policy
Modify the Dial-in setting of User1
Add a RADIUS client
Modify the Dial-in setting of User1
Your network is configured as shown in the exhibit. (Click the Exhibit button.)
Server1 regularly accesses Server2.
You discover that all ot the connections from Server1 to Server2 are routed through Router1. You need to
optimize the connection path from Server1 to Server2.
Which route command should you run on Server1?
Route add -p 192.168.2.12 MASK 255.255.255.0 192.168.2.0 METRIC 50
Route add -p 192.168.2.0 MASK 255.255.255.0 192.168.2.1 METRIC 50
Route add -p 192.168.2.0 MASK 255.255.255.0 192.168.1.2 METRIC 100
Route add-p 192.168.2.12 MASK 255.255.255.0 192.168.2.1 METRIC 100
Route add -p 192.168.2.0 MASK 255.255.255.0 192.168.1.2 METRIC 100
Your company has a main office and a branch office.
The network contains an Active Directory domain named contoso.com. The main office contains a domain
controller named DC1 that runs Windows Server 2012 R2.
DC1 is a DNS server and hosts a primary zone for contoso.com. The branch office contains a member server named Server1 that runs Windows Server 2012 R2. Server1 is a DNS server and hosts a secondary zone for contoso.com.
The main office connects to the branch office by using an unreliable WAN link. You need to ensure that Server1 can resolve names in contoso.com if the WAN link in unavailable for three days.
Which setting should you modify in the start of authority (SOA) record?
Expires after
Retry interval
Refresh interval
Minimum (default) TTL
Your network contains an Active Directory domain named contoso.com.
All domain controllers run Windows Server 2012 R2.
DirectAccess is deployed to the network.
Remote users connect to the DirectAccess server by using a variety of network speeds. The remote users report that sometimes their connection is very slow. You need to minimize Group Policy processing across all wireless wide area network (WWAN) connections.
Which Group Policy setting should you configure?
Configure Group Policy slow link detection
Change Group Policy processing to run asynchronously when a slow network connection is detected
Configure Direct Access connections as a fast network connection
Configure wireless policy processing
Configure Group Policy slow link detection
Your network contains an Active Directory domain named contoso.com. All user accounts reside in an organizational unit (OU) named 0U1. All of the users in the marketing department are members of a group named Marketing.
All of the users in the human resources department are members of a group named HR.
You create a Group Policy object (GPO) named GPO1.
You link GP01 to 0U1. You configure the Group Policy preferences of GPO1 to add two shortcuts named Link1 and Link2 to the desktop of each user.
You need to ensure that Link1 only appears on the desktop of the users in Marketing and that Link2 only appears on the desktop of the users inHR.
What should you configure?
Item-level targeting
WMI Filtering
Security Filtering
Group Policy Inheritance
Your network contains an Active Directory domain named adatum.com.
The domain contains a server named Server1 that runs Windows Server 2012 R2. Server1 is configured as a Network Policy Server (NPS) server and as a DHCP server.
You need to ensure that only computers that send a statement ot health are checked for Network Access
Protection (NAP) health requirements.
Which two settings should you configure?
(Each correct answer presents part ot the solution.
Choose two.)
The Called Station ID constraints
The Health Policies conditions
The NAS Port Type constraints
The NAP-Capable Computers conditions
The MS-Service Class conditions
The Health Policies conditions
The NAP-Capable Computers conditions
You have a server named Server1 that runs Windows Server 2012 R2. Server1 has the File Server Resource Manager role service installed.
Each time a user receives an access-denied message after attempting to access a folder on Server1, an email notification is sent to a distribution list named DLL.
You create a folder named Folder1 on Server1, and then you configure custom NTFS permissions for Folder1.
You need to ensure that when a user receives an
access-denied message while attempting to access
Folder1, an email notification is sent to a distribution list named DL2.
The solution must not prevent DL1 from receiving notifications about other access-denied messages.
What should you do?
From Server Manager, run the New Share Wizard to create a share for Folderl by selecting the SMB Share - Applications option
From the File Server Resource Manager console, set a folder management property
From the File Server Resource Manager console, create a local classification property
From the File Server Resource Manager console, modify the Access-Denied Assistance settings
From the File Server Resource Manager console, set a folder management property
Your network contains a single Active Directory domain named contoso.com.
All domain controllers run Windows Server 2012 R2.
The domain contains 400 desktop computers that run Windows 8 and 10 desktop computers that run
Windows XP Service Pack 3 (SP3).
All new desktop computers that are added to the domain run Windows 8.
All of the desktop computers are located in an organizational unit (OU) named OLU. You create a Group Policy object (GPO) named GPO1. GPO1 contains startup script settings.
You link GP01 to OLU.
You need to ensure that GPO1 is applied only to computers that run Windows XP SP3.
What should you do?
Run the Set-GPlnheritance cmdlet and specify the -target parameter
Create and link a WML filter to GPO1
Run the Set-GPLink cmdlet and specify the -target parameter
Modify the Security settings ot OU1
Create and link a WML filter to GPO1
Your network contains an Active Directory domain named contoso.com. The network contains a server named Server1 that runs Windows Server 2012 R2. Server1 has the Network Policy and Access Services server role installed.
You plan to deploy additional servers that have the Network Policy and Access Services server role installed.
You must standardize as many settings on the new servers as possible. You need to identify which settings can be standardized by using Network Policy Server (NPS) templates.
Which three settings should you identify?
(Each correct answer presents part ot the solution.
Choose three.)
IPfilters
shared secrets
health policies
connection request policies
network policies
IPfilters
shared secrets
health policies
Your network contains an Active Directory domain named contoso.com.
Network Policy Server (NPS) is deployed to the domain.
You plan to deploy Network Access Protection (NAP).
You need to configure the requirements that are validated on the NPS client computers.
What should you do?
From a Group Policy object (GPO), configure the NAP Client Configuration security setting
From the Network Policy Server console, configure a Windows Security Health Validator (WSHV) policy
From the Network Policy Server console, configure a network policy
From a Group Policy object (GPO), configure the Network Access Protection Administrative Templates setting
From the Network Policy Server console, configure a health policy
From the Network Policy Server console, configure a Windows Security Health Validator (WSHV) policy
Your network contains an Active Directory domain named adatum.com. The domain contains a server named Server1 that runs Windows Server 2012 R2. Server1 is configured as a Network Policy Server (NPS) server and as a DHCP server.
The network contains two subnets named Subnet1 and Subnet2.
Server1 has a DHCP scope for each subnet.
You need to ensure that noncompliant computers on Subnet1 receive different network policies than noncompliant computers on Subnet2.
Which two settings should you configure? (Each correct answer presents part of the solution. Choose two.)
The Called Station ID constraints
The NAP-Capable Computers conditions
The Health Policies conditions
The NAS Port Type constraints
The MS-Service Class conditions
The Health Policies conditions
The MS-Service Class conditions
Your network contains an Active Directory forest named contoso.com. The forest contains a single domain.
All domain controllers run Windows Server 2012 R2 and are configured as DNS servers.
All DNS zones are Active Directory-integrated.
Active Directory Recycle Bin is enabled.
You need to modify the amount of time deleted objects are retained in the Active Directory Recycle Bin.
Which naming context should you use?
To answer, select the appropriate naming context in the answer area.
Your network contains an Active Directory domain named contoso.com.
The domain contains a server named Server1 that has the Network Policy Server server role installed.
The domain contains a server named Server2 that is configured for RADIUS accounting.
Server1 is configured as a VPN server and is configured to forward authentication requests to Server2.
You need to ensure that only Server2 contains event information about authentication requests from connections to Server1.
Which two nodes should you configure from the Network Policy Server console?
To answer, select the appropriate two nodes in the answer area.
NPS(Local)
Network Access Protection
Network Policies
Remote RADIUS Servers
Shared Secrets
Remediation Server Group
RADIUS Clients
Templates Management
RADIUS Clients and Servers
Remote RADIUS Server Groups
Policies
Health Policies
Connection Request Policies
NPS(Local)
Connection Request Policies
Your network contains an Active Directory domain named contoso.com.
The domain contains a domain controller named DC1.
You need to create an Active Directory snapshot on DC1.
Which four commands should you run?
To answer, move the four appropriate commands from the list of commands to the answer area and arrange them in the correct order.
You have a server named Servers that runs Windows Server 2012 R2. Servers has the Windows Deployment Services server role installed.
Server5 contains several custom images of Windows 8.
You need to ensure that when 32-bit client computers start by using PXE, the computers automatically install an image named Image1.
What should you configure?
To answer, select the appropriate tab in the answer area.
Client
ADDS
DHCP
TFTP
Network
PXE Reaponse
Your network contains an Active Directory domain named adatum.com. The domain contains a server named Server1.
Your company implements DirectAccess.
A user named User1 works at a customer's office.
The customer's office contains a server named Server1.
When User1 attempts to connect to Server1, User1 connects to Server1 in adatum.com.
You need to provide User1 with the ability to connect to Server1 in the customer's office.
Which Group Policy option should you configure?
To answer, select the appropriate option in the answer area.
Support Email Address
DirectAccess Passive Mode
Prefer Local Names Allowed
Corporate Resources
IPsecTunnel Endpoints
User Interface
Frendly Name
Prefer Local Names Allowed
Your network contains an Active Director domain named contoso.com. The domain contains a file server named Server1. All servers run Windows Server 2012 R2.
You have two user accounts named User1 and User2.
User1 and User2 are the members of a group named Group1. User1 has the Department value set to Accounting, user2 has thevDepartment value set to Marketing.
Both users have the Employee Type value set to Contract
Employee.
You create the auditing entry as shown in the exhibit. (Click the Exhibit button.)
To answer, complete each statement according to the information presented in the exhibit. Each correct selection is worth one point.
Wpisz od 1-4
You have a server named LON-SVR1 that runs Windows Server 2012 R2. LON-SVR1 has the Remote Access server role installed. LON-SVRI is located in the perimeter network.
The IPv4 routing table on LON-SVR1 is configured as shown in the following exhibit. (Click the Exhibit button.)
Your company purchases an additional router named Router1. Router1 has an interface that connects to the perimeter network and an interface that connects to the Internet.
The IP address ot the interface that connects to the perimeter network is 172.16.0.2.
You need to ensure that LON-SVR1 will route traffic to the Internet by using Routerl if the current default gateway is unavailable.
How should you configure the static route on LON-SVR1 ?
To answer, select the appropriate static route in the answer area.