Your company has an Active Directory forest. The company has three locations. Each location
has an organizational unit and a child organizational unit named Sales.
The Sales organizational unit contains all users and computers of the sales department. The company plans to deploy a Microsoft Office 2007 application on all computers within the three Sales organizational units.
You need to ensure that the Office 2007 application is installed only on the computers in the Sales organizational units.
What should you do()
A.Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to assign the application to the c
B.Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to assign the application to the us
C.Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to publish the application to the u
D.Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to assign the application to the co
您可能感兴趣的试卷
你可能感兴趣的试题
Your company has an Active Directory forest. The forest includes organizational units corresponding to the following four locations:
- London - Chicago - New York - Madrid
Each location has a child organizational unit named Sales. The Sales organizational unit contains all the users and computers from the sales department.
The offices in London, Chicago, and New York are connected by T1 connections. The office in Madrid is connected by a 256-Kbps ISDN connection.
You need to install an application on all the computers in the sales department.
Which two actions should you perform()
A.Disable the slow link detection setting in the Group Policy Object (GPO).
B.Configure the slow link detection threshold setting to 1,544 Kbps (T1) in the Group Policy Object (GPO).
C.Create a Group Policy Object (GPO) named OfficeInstall that assigns the application to users. Link the GPO to eac
D.Create a Group Policy Object (GPO) named OfficeInstall that assigns the application to the computers. Link the GP
Your company has an Active Directory forest. Each branch office has an organizational unit and a child organizational unit named Sales.
The Sales organizational unit contains all users and computers of the sales department.
You need to install a Microsoft Office 2007 application only on the computers in the Sales organizational unit.
You create a GPO named SalesApp GPO.
What should you do next()
A.Configure the GPO to assign the application to the computer account. Link the SalesAPP GPO to the domain.
B.Configure the GPO to assign the application to the user account. Link the SalesAPP GPO to the Sales organization
C.Configure the GPO to publish the application to the user account. Link the SalesAPP GPO to the Sales organization
D.Configure the GPO to assign the application to the computer account. Link the SalesAPP GPO to the Sales organiz
Your company has an Active Directory forest that contains client computers that run Windows Vista and Windows XP.
You need to ensure that users are able to install approved application updates on their computers.
Which two actions should you perform()
A.Set up Automatic Updates through Control Panel on the client computers.
B.Create a GPO and link it to the Domain Controllers organizational unit. Configure the GPO to automatically search
C.Create a GPO and link it to the domain. Configure the GPO to direct the client computers to the Windows Server Up
D.Install the Windows Server Update Services (WSUS). Configure the server to search for new updates on the Intern
Your company has an Active Directory domain and an organizational unit. The organizational unit is named Web. You configure and test new security settings for Internet Information Service (IIS) servers on a server named IISServerA.
You need to deploy the new security settings only on the IIS servers that are members of the Web organizational unit.
What should you do()
A.Run secedit /configure /db iis.inf from the command prompt on IISServera, and then run secedit /configure /db web
B.Export the settings on IISServerato create a security template. Import the security template into a GPO and link the
C.Export the settings on IISServerA to create a security template. Run secedit /configure /db webou.inf from the comm
D.Import the hisecws.inf file template into a GPO and link the GPO to the Web organizational unit.
All consultants belong to a global group named TempWorkers.
You place three file servers in a new organizational unit named SecureServers. The three file servers contain confidential data located in shared folders.
You need to record any failed attempts made by the consultants to access the confidential data.
Which two actions should you perform()
A.Create and link a new GPO to the SecureServers organizational unit. Configure the Audit privilege use Failure audi
B.Create and link a new GPO to the SecureServers organizational unit. Configure the Audit object access Failure aud
C.Create and link a new GPO to the SecureServers organizational unit. Configure the Deny access to this computer f
D.On each shared folder on the three file servers, add the three servers to the Auditing tab. Configure the Failed Full control setting in the Auditing Entry dialog box.
E.On each shared folder on the three file servers, add the TempWorkers global group to the Auditing tab. Configure th
Your company has an Active Directory domain. All consultants belong to a global group named TempWorkers. The TempWorkers group is not nested in any other groups.
You move the computer objects of three file servers to a new organizational unit named SecureServers. These file servers contain only confidential data in shared folders.
You need to prevent members of the TempWorkers group from accessing the confidential data on the file servers. You must achieve this goal without affecting access to other domain resources.
What should you do()
A.Create a new GPO and link it to the SecureServers organizational unit. Assign the Deny access to this computer fro
B.Create a new GPO and link it to the domain. Assign the Deny access to this computer from the network user right to
C.Create a new GPO and link it to the domain. Assign the Deny log on locally user right to the TempWorkers global g
D.Create a new GPO and link it to the SecureServers organizational unit. Assign the Deny log on locally user right to
Your company purchases a new application to deploy on 200 computers. The application requires that you modify the registry on each target computer before you install the application.
The registry modifications are in a file that has an .adm extension.
You need to prepare the target computers for the application.
What should you do()
A.Import the .adm file into a new Group Policy Object (GPO). Edit the GPO and link it to an organizational unit that computer.
B.Create a Microsoft Windows PowerShell script to copy the .adm file to the startup folder of each target computer.
C.Create a Microsoft Windows PowerShell script to copy the .adm file to each computer. Run the REDIRUsr CONTAI
D.Create a Microsoft Windows PowerShell script to copy the .adm file to each computer. Run the REDIRCmp CONTA
Your company has an Active Directory forest that contains Windows Server 2008 R2 domain controllers and DNS servers. All client computers run Windows XP SP3.
You need to use your client computers to edit domain-based GPOs by using the ADMX files that are stored in the ADMX central store.
What should you do()
A.Add your account to the Domain Admins group.
B.Upgrade your client computers to Windows 7.
C.Install .NET Framework 3.0 on your client computers.
D.Create a folder on PDC emulator for the domain in the PolicyDefinitions path. Copy the ADMX files to the PolicyDef
Your company has an Active Directory forest. The company has servers that run Windows Server 2008 R2 and client computers that run Windows 7. The domain uses a set of GPO administrative templates that have been approved to support regulatory compliance requirements.
Your partner company has an Active Directory forest that contains a single domain. The company has servers that run Windows Server 2008 R2 and client computers that run Windows 7.
You need to configure your partner company’s domain to use the approved set of administrative templates.
What should you do()
A.Use the Group Policy Management Console (GPMC) utility to back up the GPO to a file. In each site, import the GP
B.Copy the ADMX files from your company’s PDC emulator to the PolicyDefinitions folder on the partner company’s PDC
C.Copy the ADML files from your company’s PDC emulator to the PolicyDefinitions folder on the partner company’s PDC
D.Download the conf.adm, system.adm, wuau.adm, and inetres.adm files from the Microsoft Updates Web site.
Your company has recently acquired a new subsidiary company in Quebec. The Active Directory administrators of the subsidiary company must use the French-language version of the administrative templates.
You create a folder on the PDC emulator for the subsidiary domain in the path %systemroot%\SYSVOL\domain\Policies\PolicyDefinitions\FR.
You need to ensure that the French-language version of the templates is available.
What should you do()
A.Download the Conf.adm, System.adm, Wuau.adm, and Inetres.adm files from the Microsoft Web site. Copy the AD
B.Copy the ADML files from the French local installation media for Windows Server 2008 R2 to the FR folder on the s
C.Copy the Install.WIM file from the French local installation media for Windows Server 2008 R2 to the FR folder on th
D.Copy the ADMX files from the French local installation media for Windows Server 2008 R2 to the FR folder on the s
最新试题
Your network contains an Active Directory domain. The domain contains a group named Group1. The minimum password lenght for the domain is set to six characters. you need to ensure that the passwords for all users in Group1 are at least 10 characters long. All other users must be able to use passwords that are six characters long. What should you do first()
Your network contains an Active Directory domain named contoso.com. The domain contains five domain controllers.You add a logoff script to an existing Group Policy object (GPO). You need to verify that each domain controller successfully replicates the updated group policy. Which two objects should you verify on each domain controller()
Your network contains an Active Directory forest. The forest contains an Acitve Directory site for a remote office. The remote site contains a read-only domain controller (RODC). You need to configure the RODC to store only the password of users in the remote site. What should you do()
You have an enterprise subordinate certification authority (CA). The CA is configured to use a hardware security module. You need to back up Active Directory Certificate Services on the CA. Which command should you run()
Active Directory Rights Management Services (AD RMS) is deployed on your network. You need to configure AD RMS to use Kerberos authentication. Which two actions should you perform()
Your network contains an Active Directory domain that has two sites. You need to identify whether logon scripts are replicated to all domain controllers. Which folder should you verify()
You have an enterprise subordinate certification authority (CA). You have a custom certificate template that has a key length of 1,024 bits. The template is enabled for autoenrollment. You increase the template key length to 2,048 bits. You need to ensure that all current certificate holders automatically enroll for a certificate that uses the new template. Which console should you use()
Your network contains an Active Directory domain that contains five domain controllers. You have a management computer that runs Windows 7. From the Windows 7 computer, you need to view all account logon failures that occur in the domain. The information must be consolidated on one list. Which command should you run on each domain controller()
Your network contains an Active Directory domain named contoso.com. All domain controllers and member servers run Windows Server 2008. All client computer run Windows 7. From a client computer, you create an audit policy by using the Advanced Audit Policy Configuration settings in the Default Domain Policy Group Policy object (GPO). You discover that the audit policy is not applied to the member servers. The audit policy is applied to the client computers. You need to ensure that the audit policy is applied to all member servers and all client computers. What should you do()
Your company has four offices. The network contains a single Active Directory domain. Each office has domain controller. Each office has an organitational unit (OU) that contains the user accounts for the users in that office. In each office, support technicians perform basic troubleshooting for the users in their respective office. You need to ensure that the support technicians can reset the password for the user accounts in their respective office only. The solution must prevent the thechnicians from creating user accounts. What shoul you do()