Le succès n'est pas loin de vous si vous choisissez Pass4Test. Vous allez obtenir le Certificat de Microsoft 74-325 très tôt. Pass4Test peut vous permettre à réussir 100% le test Microsoft 74-325, de plus, un an de service en ligne après vendre est aussi gratuit pour vous.
Aujoud'hui, dans cette indutrie IT de plus en plus concurrentiel, le Certificat de Microsoft 70-291 peut bien prouver que vous avez une bonne concurrence et une space professionnelle plus grande à atteindre. Dans le site Pass4Test, vous pouvez trouver un outil de se former très pratique. Nos IT experts vous offrent les Q&As précises et détaillées pour faciliter votre cours de préparer le test Microsoft 70-291 qui vous amenera le succès du test Microsoft 70-291, au lieu de traivailler avec peine et sans résultat.
Le test Microsoft 70-291 est très important dans l'Industrie IT, tous les professionnels le connaîssent ce fait. D'ailleur, c'est difficile à réussir ce test, toutefois le test Microsoft 70-291 est une bonne façon à examiner les connaissances professionnelles. Un gens avec le Certificat Microsoft 70-291 sera apprécié par beaucoup d'entreprises. Pass4Test est un fournisseur très important parce que beaucoup de candidats qui ont déjà réussi le test preuvent que le produit de Pass4Test est effectif. Vous pouvez réussir 100% le test Microsoft 70-291 avec l'aide de Pass4Test.
Code d'Examen: 74-325
Nom d'Examen: Microsoft (Administering Office 365 for Small Businesses)
Questions et réponses: 88 Q&As
Code d'Examen: 70-291
Nom d'Examen: Microsoft (Implementing, Managing, and Maintaining a Microsoft Windows Server 2003 Network Infrastructure)
Questions et réponses: 260 Q&As
Le produit de Pass4Test peut assurer les candidats à réussir le test Microsoft 70-291 à la première fois, mais aussi offrir la mise à jour gratuite pendant un an, les clients peuvent recevoir les ressources plus nouvelles. Pass4Test n'est pas seulement un site, mais aussi un bon centre de service.
Vous serez impressionné par le service après vendre de Pass4Test, le service en ligne 24h et la mise à jour après vendre sont gratuit pour vous pendant un an, et aussi vous allez recevoir les informations plus nouvelles à propos de test Certification IT. Vous aurez un résultat imaginaire en coûtant un peu d'argent. D'ailleurs, vous pouvez économier beaucoup de temps et d'efforts avec l'aide de Pass4Test. C'est vraiment un bon marché de choisir le Pass4Test comme le guide de formation.
70-291 Démo gratuit à télécharger: http://www.pass4test.fr/70-291.html
NO.1 Drag and Drop
You are a network administrator for the Graphic Design Institute.The network contains five Windows
Server 2003 computers that also function as DNS servers.The servers are configured as shown in the
work area.
The Lagos and Nairobi branches of the school each have five Windows XP Professional client
computers.The
Tangier branch has 5,000 Windows XP Professional client computers, and the Cape Town branch has
2,500
Windows XP Professional client computers.
Server1 is located in the school's main office in Cairo.Server1 is the authoritative server for a zone named
TestInside.com.No changes are planned for the name server (NS) resource records for TestInside.com.
The DNS servers in the Nairobi and Lagos branches are multiuse servers that are configured with the
minimum hardware necessary to run Windows Server 2003. The DNS servers in the Cape Town and
Tangier branches are configured as dedicated servers with hardware that is sufficient to sustain multiple
DNS zones.
You need to ensure that the following requirements are met:
Each client computer can resolve names on the network as quickly as possible by using a fully qualified
domain name (FQDN).
Prevent zone replication traffic from occurring on the slow network connections.
Minimize hard disk utilization on the DNS servers in the Lagos and Nairobi branches as much as possible.
Ensure that DNS queries in Tangier and Cape Town are resolved locally.
How should you configure the remote DNS servers?
To answer, drag the appropriate server configuration to the correct server or servers in the work area.
Answer:
NO.2 131.107.12.0/24
Answer
:
2.You are the network administrator for your company.All servers run Windows Server 2003. All servers
are configured with static IP addresses.All client computers run Windows XP Professional.All client
computers are configured as DHCP clients.
The company has a main office and one branch office.The offices are separated by a router.A DHCP
server is deployed in each office.
One of the DHCP servers shuts down unexpectedly.It takes four hours to repair the server.During that
time, several mobile users connect their portable computers to the network and report that they cannot
connect to shared resources on the network.
After the server is repaired, you create a new scope on each DHCP server that includes IP addresses for
the other office.You activate the scopes.
You test the new DHCP configuration by shutting down the DHCP server in the main office.You find out
that the client computers in the main office are not receiving IP addresses from the DHCP server in the
branch office. You need to ensure that when the DHCP server in one office fails, the client computers will
receive a correct IP
address configuration from the DHCP server in the other office.
What are two possible ways to achieve this goal? (Each correct answer presents a complete
solution.Choose two.)
A.Configure the router between the offices to forward BOOTP broadcasts.
B.Configure the DHCP server in each office with a DHCP scope that includes the same IP addresses as
the DHCP server in the other office.Activate the scope.
C.Configure the DHCP server in each office with an additional network adapter.Connect each new
network adapter to the local network.Assign an IP address from the other office's network to each new
network adapter.
D.Install and configure a DHCP relay agent in each office.
Answer: DA
certification Microsoft 70-291 examen 70-291 examen 70-291
3.You are the network administrator for your company.The network consists of a single Active Directory
domain.All servers run Windows Server 2003.
The network contains a Web server named Server1 that runs IIS 6.0 and hosts a secure Web site.The
Web site is accessible from the intranet, as well as from the Internet.All users must authenticate when
they connect to Server1.
All users on the Internet must use a secure protocol to connect to the Web site.Users on the intranet do
not need to use a secure protocol.
You need verify that all users are using a secure protocol to connect to Server1 from the Internet.
What are two possible ways to achieve this goal? (Each correct answer presents a complete
solution.Choose two.)
A.Monitor the events in the application log on Server1.
B.Monitor the events in the security log on Server1.
C.Monitor the Web server connections on Server1 by using a performance log.
D.Monitor network traffic to Server1 by using Network Monitor.
E.Monitor the IIS logs on Server1.
Answer: ED
Microsoft certification 70-291 certification 70-291 certification 70-291 certification 70-291
4.You are the administrator of an Active Directory domain.All servers run Windows Server 2003. All client
computers run Windows XP Professional.All computers are members of the domain.
The Secure Server (Require Security) IPSec policy is assigned to a file server named Server6. The policy
is configured as shown in the exhibit.(Click the Exhibit button.)
Users report that they cannot access shared folders on Server6. Users were able to access shared
folders on
Server6 prior to the implementation of the IPSec policy.
You need to ensure that all client computers in the domain can access the shared folders on Server6. You
must ensure that all communications between client computers and Server6 be encrypted.
What should you do?
A.On Server6, enable the All ICMP Traffic IP Security rule in the properties of the Secure Server (Require
Security) IPSec policy.
B.On Server6, enable the <Dynamic> IP Security rule in the properties of the Secure Server (Require
Security)
IPSec policy.
C.On all client computers, assign the Client (Respond Only) IPSec policy.
D.On all client computers, install an IPSec communication certificate in the local machine store.
Answer: C
certification Microsoft 70-291 examen 70-291
5.You are a network administrator for your company.The network consists of a single Active Directory
domain.All servers run Windows Server 2003.
The company has a main office and one branch office.The perimeter networks for each office are
configured as shown in the exhibit.(Click the Exhibit button.)
You configure an L2TP/IPSec VPN tunnel between Server1 and Server2. You also configure and assign
an IPSec
policy named RASIPSec that requires secure communications.
You need to ensure that no unsecured traffic from the Internet reaches the internal network through this
VPN.You
also need to ensure that access to the VPN servers from their respective internal networks is not
disrupted. What should you do?
A.Configure input and output L2TP/IPSec packet filters on the internal interfaces of Server1 and Server2.
B.Configure input and output L2TP/IPSec packet filters on the external interfaces of Server1 and Server2.
C.In the properties of RASIPSec, edit the All IP Traffic IP Filter list to include the IP addresses for only
Server1 and Server2.
D.In the properties of RASIPSec, edit the All ICMP Traffic IP Filter list to include the IP addresses for only
Server1 and Server2.
Answer: B
certification Microsoft 70-291 70-291 examen 70-291 examen 70-291 examen 70-291 examen
6.You are the administrator of an Active Directory domain.The network contains a Windows Server 2003
domain controller named Server1.
Users report that they experience intermittent delays when they log on to Server1. Administrators report
that replication attempts between Server1 and other domain controllers are occasionally delayed.
You need to verify the cause of the intermittent connection delays to Server1. You also need to find out
whether the problem is related to a hardware deficiency on Server1. You need to track these delays over
a period of one day.
What should you do first?
A.Run the netdiag /verbose command to perform a network diagnostic test on Server1.
B.Run the replmon command to view the Active Directory replication status on Server1.
C.Use Network Monitor to view the network traffic packet contents between Server1 and all other
computers.
D.Create a System Monitor counter to track the queue lengths on the network adapter on Server1.
Answer: D
Microsoft examen 70-291 examen certification 70-291 70-291 certification 70-291
NO.3 You are the network administrator for your company.The network consists of a single Active Directory
domain.
The domain contains an organizational unit (OU) named Webservers.The Webservers OU contains the
computer accounts of 12 Windows Server 2003 computers that function as intranet Web servers.A Group
Policy object (GPO) named WebserversPolicy is linked to the Webservers OU.The GPO is used to
configure various settings on
the computers in the OU.A global group named WebserverAdmins is a member of the Administrators local
group on each intranet Web server.
You plan to install a security scanning application on each intranet Web server.The documentation for the
application states that it uses a service account, which must be able to modify the
HKEY_LOCAL_MACHINE\SYSTEM key in the registry of every computer on which the application is
installed.
You create the service account in the domain.The company's written security policy states that service
accounts must be assigned only the minimum rights and permissions that they require to function.
You need to configure the intranet Web servers so that they comply with the installation requirements of
the security scanning application.You also need to comply with the company's security policy.You want to
achieve this goal by using the minimum amount of administrative effort.
What should you do?
A.Add the service account to the WebserverAdmins global group.
B.Configure the required permissions as registry security settings in the WebserversPolicy GPO.
C.Run the regedit.exe command to add the required permissions to the registry of each intranet Web
server.
D.Run the explorer.exe command to modify NTFS permissions on the
Systemroot\System32\Config\System
file.Assign the service account the Allow - Change permission.
E.Configure file system security settings in the WebserversPolicy GPO to modify NTFS permissions on
the
Systemroot\System32\Config\System file.Assign the service account the Allow - Change permission.
Answer: D
certification Microsoft 70-291 examen certification 70-291 70-291 70-291 examen
NO.4 You are the administrator of a Windows Server 2003 computer named Server1. Server1 has a
third-party application installed on it.The third-party application runs as a service that is named Service1.
Service1 fails periodically.
You need to configure the recovery options for Service1 to meet the following requirements:
If Service1 runs successfully for a day or more, you need to ensure that only the service is immediately
restarted upon failure.
If, after this failure, Service1 does not run successfully for another day, you must ensure the entire server
is immediately restarted.
Which three actions should you perform? (Each correct answer presents part of the solution.Choose
three.)
A.Configure the Reset fail count after value for Service1 to 1 day.
B.Configure the Restart service after value for Service1 to 1,440 minutes.
C.Configure the response to the first failure to be to restart Service1.
D.Configure the response to the first failure to be to restart Server1.
E.Configure the response to the second failure to be to restart Service1.
F.Configure the response to the second failure to be to restart Server1.
Answer: FCA
certification Microsoft 70-291 certification 70-291 70-291
NO.5 You are the network administrator for your company.The network consists of a single Active Directory
domain.The functional level of the domain is Windows Server 2003. All client computers in the domain run
Windows XP Professional.
An application named Inventory.exe is installed on all computers in the domain to remotely gather
software inventory information.The application runs as a service in the security context of the Local
System.The startup type of the service is set to Automatic.
In the Default Domain Policy Group Policy object (GPO), the security administrator has configured a
software restriction policy that is applied to all computers in the domain.The policy contains a hash rule for
the
Inventory.exe application, and the hash rule is configured with a security level of Unrestricted.
The client computers on the network are attacked by a worm that is distributed by e-mail messages
received over the Internet.The worm detects the presence of Inventory.exe on a computer, then starts a
new instance of the application in the security context of the logged-on user.The worm exploits a bug in
the application to cause the
computer to fail.
You need to ensure that Inventory.exe cannot be started by the worm, while still allowing the application to
run as a service.
What should you do?
A.In the computer settings section of the Default Domain Policy GPO, configure a software restriction
policy that contains a zone rule for the Internet zone.Configure the zone rule with a security level of
Disallowed.
B.In the user settings section of the Default Domain Policy GPO, configure a software restriction policy
that contains a zone rule for the Internet zone.Configure the zone rule with a security level of Disallowed.
C.In the user settings section of the Default Domain Policy GPO, configure a software restriction policy
that
contains a hash rule for the Inventory.exe application.Configure the hash rule with a security level of
Disallowed.
D.In the computer settings section of the Default Domain Policy GPO, modify the existing software
restriction policy hash rule for the Inventory.exe application so that the hash rule has a security level of
Disallowed.
Answer: D
Microsoft examen 70-291 examen 70-291 examen 70-291 examen
NO.6 131.107.11.0/24
NO.7 131.107.12.0/23
NO.8 Drag drop
You are the network administrator for a Web hosting company.All servers run Windows Server 2003. All
client computers run Windows XP Professional.
Your company is assigned the following IP address ranges by the ISP:
>131.107.10.0 through 131.107.10.255
>131.107.11.0 through 131.107.11.255
The company's data center contains 400 Windows Server 2003 computers and consists of two subnets
named subnet A and subnet B.Subnet A contains 200 servers and uses the 131.107.10.0 network
address.Subnet B also contains 200 servers and uses the 131.107.11.0 network address.All server IP
addresses are assigned by DHCP.All computers in the data center have valid Internet-accessible IP
addresses.
As a result of a corporate acquisition, 200 additional servers will be added to your company's data center
within one month.The new servers will be placed on the network segment that maps to subnet A.The
existing router does not have the capacity for an additional subnet, and the budget does not allow the
purchase of a new router.You will
need to add the additional servers to the existing subnet A.The ISP assigns you the additional IP address
range 131.107.12.0 through 131.107.12.255.
You need to change the IP addressing scheme to accommodate all required servers in subnet A and
subnet B.You are authorized to make any necessary changes.
The diagram in the work area shows the network configuration and the planned number of servers for
each subnet.
Which IP address should be assigned to each subnet?
To answer, drag the appropriate IP address or addresses to the correct locations in the work area.
IP address IP Addresses
1> 131.107.10.0/23
没有评论:
发表评论