Your company has two domain controllers named DC1 and DC2. DC1 host all domain and forest operations master roles.
DC1 fails.
You need to rebuild DC1 by reinstalling the operating system. Youn also need to rollback all operations master roles to their original state. You perform a metadate cleanup and remove all references of DC1. Which three actions should you perform next()
A.A
B.B
C.C
D.D
E.E
F.F
您可能感兴趣的试卷
你可能感兴趣的试题
A.Change the replication interval for the DEFAULTIPSITELINK object to 9990.
B.Change the cost for the DEFAULTIPSITELINK object to 9990.
C.Make the new attributes in the Active Directory as defunct.
D.Modify the properties in the Active Directory schema for the new attributes.
A.Windows Server 2008
B.Windows Server 2003 Interim mode
C.Windows 2000 Native mode
D.Windows Server 2003 Native mode
A.Remove the Request Certificates permission from the Domain Users group.
B.Remove the Request Certificated permission from the Authenticated Users group.
C.Assign the Allow - Manage CA permission toonly the Security Manager user Account.
D.Assign the Allow - Issue and Manage Certificates permission to only the Security Manger user account
A.Run auditpol.exe.
B.Modify the auditing entry for OUI.
C.Modify the auditing entry for the domain.
D.Create a new Group PolicyObject (GPO). Enable Audit account management policy setting. Link the GPO to OUI.
A.Dsmod
B.Netdom
C.Redirusr
D.Active Directory Domains and Trusts
A.Install and configure an Online Responder.
B.Install and configure an addtional domain controller.
C.Import the Root CA certificate into the Trusted Root Certification Authorities on all client workstations.
D.Import the Issuing CA certificate into the Trusted Root Certification Authorities on all client workstations.
A.Import the new certificate into the Intermediate Certification Store on the Enterprise Root CA server.
B.Import the new certificate into the Intermediate Certification Store on the Enterprise Intermediate CA server.
C.Import the new certificate into the Intermediate Certification Store in the Default Domain Controllers group object.
D.Import the new certificate into the Intermediate Certification Store in the Default Domain group policy object.
A.Run the netsh interface reset command.
B.Run the ipconfig /flushdns command.
C.Run the dnscmd /EnlistDirectoryPartition command.
D.Run the sc stop netlogon command followed by the sc start netlogon command.
A.On the member server, create a stub zone.
B.On the memeber server, create a NS record for each domain controller.
C.On one domain controller, create a conditional forwarder. Configure the conditional forwarder to replicate to all DNS servers in the forest.
D.On one domain controller, create a conditional forwarder. Configure the conditional forwarder to replicate to all DNS servers in the domain.
A.Set the Minimun password age setting to one day.
B.Set the Maximum password age setting to one day.
C.Set the Account lockout duration setting to 5 minutes.
D.Set the Reset account lockout counter after setting to 5 minutes.
E.Set the Account lockout threshold setting to 3 invalid logon attempts.
F.Set the Enforce password history setting to 3 passswords remembered.
最新试题
Your network contains an Active Directory domain. A user named User1 takes a leave of absence for one year. You need to restrict access to the User1 user account while User1 is away. What should you do()
Your network contain 10 domain controller that run Windows Server R2. The network contain a member server that is configured to collect all of events that occur on the domain controllers. Your need to ensure that administrators are notified when a specific event occurs on any of the domain controllers. You want to achive the goal by using the minimum amount effort. What should you do()
Your network contains an Active Directory domain named contoso.com. The domain contains five domain controllers.You add a logoff script to an existing Group Policy object (GPO). You need to verify that each domain controller successfully replicates the updated group policy. Which two objects should you verify on each domain controller()
Your network contains an Active Directory forest. The forest contains an Acitve Directory site for a remote office. The remote site contains a read-only domain controller (RODC). You need to configure the RODC to store only the password of users in the remote site. What should you do()
You create a new Active Directory domain. The functional level of the domain is Windows Server 2008 R2. The domain contains five domain controllers. You need to monitor the replication of the group policy template files. Which tool should you use()
Active Directory Rights Management Services (AD RMS) is deployed on your network. You need to configure AD RMS to use Kerberos authentication. Which two actions should you perform()
Your company has four offices. The network contains a single Active Directory domain. Each office has domain controller. Each office has an organitational unit (OU) that contains the user accounts for the users in that office. In each office, support technicians perform basic troubleshooting for the users in their respective office. You need to ensure that the support technicians can reset the password for the user accounts in their respective office only. The solution must prevent the thechnicians from creating user accounts. What shoul you do()
You install a standalone root certification authority (CA) on a server named Server1. You need to ensure that every computer in the forest has a copy of the root CA certificate installed in the local computer’s Trusted Root Certification Authorities store. Which command should you run on Server1()
You have an enterprise subordinate certification authority (CA). You have a custom certificate template that has a key length of 1,024 bits. The template is enabled for autoenrollment. You increase the template key length to 2,048 bits. You need to ensure that all current certificate holders automatically enroll for a certificate that uses the new template. Which console should you use()
Your network contains an Active Directory forest. The forest contains two domains. You have a standalone root certification authority (CA). On a server in the child domain, you run the Add Roles Wizard and discover that the option to select an enterprise CA is disabled. You need to install an enterprise subordinate CA on the server. What should you use to log on to the new server()