Microsoft 70-217: Implementing and Administering a Microsoft Windows 2000 Directory
#11. You are the manager of 'Down Under' security company. You have a UNIX DNS server currently and you'd like to implement a Win2K based DNS solution. You need to have the Win2K authorative for the domain and the UNIX box should act as a backup. What do you do? (Choose all that apply).
#12. "G" day Networks has a UNIX based DNS solution. You want to convert it to Win2K based DNS. You setup a primary zone on the Win2K server but is no zone transfer happening.
#13. You are the administrator of your company's network. The network consists of one Windows 2000 domain that spans multiple subnets. You are configuring DNS for host name resolution throughout the network.
You want to accomplish the following goals:
ВЎВ¤ DNS zone transfer traffic will be minimized on the network. ВЎВ¤ Administrative overhead for maintaining DNS zone files will be minimized. ВЎВ¤ Unauthorized host computers will not have records created in the zone. ВЎВ¤ All zone updates will come only from authorized DNS servers. ВЎВ¤ All zone transfer information will be secured as it crosses the network.
You take the following actions:
1 - Create an Active Directory integrated zone. 2 - In the Zone Properties dialog box, set the "Allow Dynamic Updates" option to Yes. 3 - On the Name Servers tab of the Zone Properties dialog box, enter the names and addresses of all DNS servers on the network.
Which results do these actions produce? (Choose all that apply)
#14. You are the administrator of your company's network. The network consists of one Windows 2000 domain that spans multiple subnets. You are configuring DNS for host name resolution throughout the network.
You want to accomplish the following goals:
ВЎВ¤ DNS zone transfer traffic will be minimized on the network. ВЎВ¤ Administrative overhead for maintaining DNS zone files will be minimized. ВЎВ¤ Unauthorized host computers will not have records created in the zone. ВЎВ¤ All zone updates will come only from authorized DNS servers. ВЎВ¤ All zone transfer information will be secured as it crosses the network.
You take the following actions:
1- Create an Active Directory intergraded zone. 2- In the Zone Properties dialog box, set the Allow Dynamic Updates option to "Only Secure Updates". 3- On the Name Servers tab of the Zone Properties dialog box, enter the names and addresses of all DNS servers on the network. 4- Select Allow zone transfers only to servers listed on the network in the Name Servers tab on the Zone Transfers tab of the Zone Properties dialog box.
Which results do these actions produce? (Choose all that apply)
#15. You are administrator of a Windows 2000 domain. The domain has an OU named Trading. You define a logon script for all the users in the Trading OU. The logon script is located at \server2docs radescript.vbs. You want to use a GPO to assign the logon to the users in the Trading OU.
#16. Your company Windows 2000 domain controller contains an Organization Unit (OU) named Shipping. The domain is in the native mode. You want to delegate the control of the Group Policy setting for the Shipping OU to a global group named Help Desk. Members of the Help Desk group need to able to create and edit new GPOs and assign those GPOs to the Shipping OU. You do not want these members to assign GPOs to other OUs.
#17. You want to be able to do the following: Install apps by Add/Remove in Control Panel; Install apps by Start Menu Shortcuts; Install apps by Document Invocation; Re-install apps if missing files:
You do the following: - Create ZAP file - Copy ZAP to shared source dir - Create a GPO - Publish the app
What will this accomplish? (Choose all that apply.)
#19. You are the administrator of your companyВЎВЇs network. The company has two native-mode domains in six sites as shown in the exhibit. (Click the Exhibit button). Each site has one or more domain controllers. Users report that at times of high network usage, authentication and directory searches are extremely slow. You want to improve network performance.
#20. You are the administrator of your company's Windows 2000 network. In the Payroll folder of a file server, you configure auditing to track all file activity. One week later, you are asked to discover if any files in the Payroll folder have been accessed by a user account named CSeeley.
You verify that the audit log contains data for all payroll transaction during the past week. This data includes thousands of transaction events about files accessed by everyone in the company. You want to review only transaction event data for the CSeeley user account.
gen. 0.05
Forum
Master braindump