Il y a plusieurs de façons pour réussir le test Microsoft 070-291, vous pouvez travailler dur et dépenser beaucoup d'argents, ou vous pouvez travailler plus efficacement avec moins temps dépensés.
Maintenant, beaucoup de professionnels IT prennent un même point de vue que le test Microsoft 070-291 est le tremplin à surmonter la pointe de l'Industrie IT. Beaucoup de professionnels IT mettent les yeux au test Certification Microsoft 070-291.
Après une longue attente, les documentations de test Microsoft 070-291 qui combinent tous les efforts des experts de Pas4Test sont finalement sorties. Les documentations de Pass4Test sont bien répandues pendant les candidats. L'outil de formation est réputée par sa haute précision et grade couverture des questions, d'ailleurs, il est bien proche que test réel. Vous pouvez réussir le test Microsoft 070-291 à la première fois.
Code d'Examen: 070-291
Nom d'Examen: Microsoft (Implementing, Managing, and Maintaining a Microsoft Windows Server 2003 Network Infrastructure)
Questions et réponses: 260 Q&As
Le suucès n'est pas loin de vous une fois que vous choisissez le produit de Q&A Microsoft 070-291 de Pass4Test.
Votre vie changera beaucoup après d'obtenir le Certificat de Microsoft 070-291. Tout va améliorer, la vie, le boulot, etc. Après tout, Microsoft 070-291 est un test très important dans la série de test Certification Microsoft. Mais c'est pas facile à réussir le test Microsoft 070-291.
070-291 Démo gratuit à télécharger: http://www.pass4test.fr/070-291.html
NO.1 You are the network administrator for your company.The network consists of a single Active Directory
domain.
The domain contains an organizational unit (OU) named Webservers.The Webservers OU contains the
computer accounts of 12 Windows Server 2003 computers that function as intranet Web servers.A Group
Policy object (GPO) named WebserversPolicy is linked to the Webservers OU.The GPO is used to
configure various settings on
the computers in the OU.A global group named WebserverAdmins is a member of the Administrators local
group on each intranet Web server.
You plan to install a security scanning application on each intranet Web server.The documentation for the
application states that it uses a service account, which must be able to modify the
HKEY_LOCAL_MACHINE\SYSTEM key in the registry of every computer on which the application is
installed.
You create the service account in the domain.The company's written security policy states that service
accounts must be assigned only the minimum rights and permissions that they require to function.
You need to configure the intranet Web servers so that they comply with the installation requirements of
the security scanning application.You also need to comply with the company's security policy.You want to
achieve this goal by using the minimum amount of administrative effort.
What should you do?
A.Add the service account to the WebserverAdmins global group.
B.Configure the required permissions as registry security settings in the WebserversPolicy GPO.
C.Run the regedit.exe command to add the required permissions to the registry of each intranet Web
server.
D.Run the explorer.exe command to modify NTFS permissions on the
Systemroot\System32\Config\System
file.Assign the service account the Allow - Change permission.
E.Configure file system security settings in the WebserversPolicy GPO to modify NTFS permissions on
the
Systemroot\System32\Config\System file.Assign the service account the Allow - Change permission.
Answer: D
Microsoft 070-291 070-291 examen 070-291 examen
NO.2 131.107.12.0/24
Answer
:
2.You are the network administrator for your company.All servers run Windows Server 2003. All servers
are configured with static IP addresses.All client computers run Windows XP Professional.All client
computers are configured as DHCP clients.
The company has a main office and one branch office.The offices are separated by a router.A DHCP
server is deployed in each office.
One of the DHCP servers shuts down unexpectedly.It takes four hours to repair the server.During that
time, several mobile users connect their portable computers to the network and report that they cannot
connect to shared resources on the network.
After the server is repaired, you create a new scope on each DHCP server that includes IP addresses for
the other office.You activate the scopes.
You test the new DHCP configuration by shutting down the DHCP server in the main office.You find out
that the client computers in the main office are not receiving IP addresses from the DHCP server in the
branch office. You need to ensure that when the DHCP server in one office fails, the client computers will
receive a correct IP
address configuration from the DHCP server in the other office.
What are two possible ways to achieve this goal? (Each correct answer presents a complete
solution.Choose two.)
A.Configure the router between the offices to forward BOOTP broadcasts.
B.Configure the DHCP server in each office with a DHCP scope that includes the same IP addresses as
the DHCP server in the other office.Activate the scope.
C.Configure the DHCP server in each office with an additional network adapter.Connect each new
network adapter to the local network.Assign an IP address from the other office's network to each new
network adapter.
D.Install and configure a DHCP relay agent in each office.
Answer: DA
Microsoft examen certification 070-291 certification 070-291
3.You are the network administrator for your company.The network consists of a single Active Directory
domain.All servers run Windows Server 2003.
The network contains a Web server named Server1 that runs IIS 6.0 and hosts a secure Web site.The
Web site is accessible from the intranet, as well as from the Internet.All users must authenticate when
they connect to Server1.
All users on the Internet must use a secure protocol to connect to the Web site.Users on the intranet do
not need to use a secure protocol.
You need verify that all users are using a secure protocol to connect to Server1 from the Internet.
What are two possible ways to achieve this goal? (Each correct answer presents a complete
solution.Choose two.)
A.Monitor the events in the application log on Server1.
B.Monitor the events in the security log on Server1.
C.Monitor the Web server connections on Server1 by using a performance log.
D.Monitor network traffic to Server1 by using Network Monitor.
E.Monitor the IIS logs on Server1.
Answer: ED
Microsoft examen certification 070-291 070-291 certification 070-291 070-291 examen
4.You are the administrator of an Active Directory domain.All servers run Windows Server 2003. All client
computers run Windows XP Professional.All computers are members of the domain.
The Secure Server (Require Security) IPSec policy is assigned to a file server named Server6. The policy
is configured as shown in the exhibit.(Click the Exhibit button.)
Users report that they cannot access shared folders on Server6. Users were able to access shared
folders on
Server6 prior to the implementation of the IPSec policy.
You need to ensure that all client computers in the domain can access the shared folders on Server6. You
must ensure that all communications between client computers and Server6 be encrypted.
What should you do?
A.On Server6, enable the All ICMP Traffic IP Security rule in the properties of the Secure Server (Require
Security) IPSec policy.
B.On Server6, enable the <Dynamic> IP Security rule in the properties of the Secure Server (Require
Security)
IPSec policy.
C.On all client computers, assign the Client (Respond Only) IPSec policy.
D.On all client computers, install an IPSec communication certificate in the local machine store.
Answer: C
certification Microsoft 070-291 examen 070-291 certification 070-291
5.You are a network administrator for your company.The network consists of a single Active Directory
domain.All servers run Windows Server 2003.
The company has a main office and one branch office.The perimeter networks for each office are
configured as shown in the exhibit.(Click the Exhibit button.)
You configure an L2TP/IPSec VPN tunnel between Server1 and Server2. You also configure and assign
an IPSec
policy named RASIPSec that requires secure communications.
You need to ensure that no unsecured traffic from the Internet reaches the internal network through this
VPN.You
also need to ensure that access to the VPN servers from their respective internal networks is not
disrupted. What should you do?
A.Configure input and output L2TP/IPSec packet filters on the internal interfaces of Server1 and Server2.
B.Configure input and output L2TP/IPSec packet filters on the external interfaces of Server1 and Server2.
C.In the properties of RASIPSec, edit the All IP Traffic IP Filter list to include the IP addresses for only
Server1 and Server2.
D.In the properties of RASIPSec, edit the All ICMP Traffic IP Filter list to include the IP addresses for only
Server1 and Server2.
Answer: B
Microsoft examen certification 070-291 certification 070-291 certification 070-291
6.You are the administrator of an Active Directory domain.The network contains a Windows Server 2003
domain controller named Server1.
Users report that they experience intermittent delays when they log on to Server1. Administrators report
that replication attempts between Server1 and other domain controllers are occasionally delayed.
You need to verify the cause of the intermittent connection delays to Server1. You also need to find out
whether the problem is related to a hardware deficiency on Server1. You need to track these delays over
a period of one day.
What should you do first?
A.Run the netdiag /verbose command to perform a network diagnostic test on Server1.
B.Run the replmon command to view the Active Directory replication status on Server1.
C.Use Network Monitor to view the network traffic packet contents between Server1 and all other
computers.
D.Create a System Monitor counter to track the queue lengths on the network adapter on Server1.
Answer: D
certification Microsoft certification 070-291 070-291 examen
NO.3 131.107.10.0/24
NO.4 You are the network administrator for your company.The network consists of a single Active Directory
domain.The domain contains 35 Windows Server 2003 computers; 3,000 Windows XP Professional
computers; and 2,000 Windows 2000 Professional computers.
Windows Server Update Services (WSUS) is installed on a server named Server1. The necessary Group
Policy object (GPO) is configured.
You need to confirm whether all computers in the domain have received all approved updates from
Server1.
What should you do on Server1?
A.Install and configure Urlscan.exe.
B.At the command prompt, type gpresult /scope COMPUTER.
C.Open the WSUS console.Run the Status of Computers report.
D.Open the WSUS console.Run the Synchronization Results report.
Answer: C
certification Microsoft 070-291 070-291 examen certification 070-291
NO.5 Active Screen
You are the network administrator for your company.The network consists of a single Active Directory
domain.The relevant portion of the network is shown in the exhibit.(Click the Exhibit button.)
You need to configure a server named Server1 to use a valid static IP configuration.You need to enable
Server1 to
communicate with all hosts on the network and on the Internet.You want Server1 to query the DNS server
on the local subnet for name resolution.You also want to configure redundancy for name resolution.
What should you do?
To answer, configure the correct options in the dialog box.Drag the appropriate IP address or addresses
and the appropriate subnet mask or masks to the appropriate location or locations in the dialog box.
Answer:
NO.6 You are the administrator of a Windows Server 2003 computer named Server1. Server1 is a domain
member server that has the DNS service installed.
Server1 is configured with two network interfaces named NIC1 and NIC2. Routing is not enabled between
the two network interfaces.NIC1 and NIC2 are configured as shown in the following table.
Resources on the preproduction network segment use the same fully qualified domain names (FQDNs)
as resources in the production network.The TCP/IP properties on client computers in the preproduction
environment are controlled by individual testers.
You need to ensure that the users in the preproduction environment cannot resolve FQDNs from the
production network.You want to accomplish this goal by using the DNS console on Server1.
What should you do?
A.Configure the interfaces properties on Server1 to listen on 192.168.2.10 only.
B.Configure the forwarders on Server1 to refer requests to 192.168.3.2.
C.Configure Server1 to disable recursion.
D.Configure Server1 to disable round robin.
Answer: A
Microsoft 070-291 examen 070-291 examen 070-291 examen certification 070-291
NO.7 You are a network administrator for A.Datum Corporation.The network consists of a single Active
Directory domain named adatum.net.
Users regularly browse the internal network and the Internet from their client computers.All Web and
e-mail hosting for a separate DNS domain named adatum.com is outsourced to an ISP.All name
resolution requests for adatum.com are resolved by the ISP.You have no administrative control over the
DNS servers at the ISP.You
cannot list the contents of adatum.com by using the nslookup command on the DNS servers at the ISP.
A Windows Server 2003 computer named Server1 is configured with a primary zone for adatum.net.All
root hints have been removed from Server1. All client computers refer to this DNS server for name
resolution.
You need to configure DNS resolution to ensure that all client computers can locate and access resources
in adatum.net, adatum.com, and the Internet.
What should you do?
A.Configure a secondary zone for adatum.com on Server1.
B.Configure a primary zone for adatum.com on Server1.
C.Configure conditional forwarding for adatum.com with the IP address of the DNS server at the ISP.
D.Configure simple forwarding with the default settings with the IP address of the DNS server at the ISP.
Answer: D
Microsoft examen 070-291 examen 070-291 examen 070-291 examen
NO.8 Drag drop
You are the network administrator for a Web hosting company.All servers run Windows Server 2003. All
client computers run Windows XP Professional.
Your company is assigned the following IP address ranges by the ISP:
>131.107.10.0 through 131.107.10.255
>131.107.11.0 through 131.107.11.255
The company's data center contains 400 Windows Server 2003 computers and consists of two subnets
named subnet A and subnet B.Subnet A contains 200 servers and uses the 131.107.10.0 network
address.Subnet B also contains 200 servers and uses the 131.107.11.0 network address.All server IP
addresses are assigned by DHCP.All computers in the data center have valid Internet-accessible IP
addresses.
As a result of a corporate acquisition, 200 additional servers will be added to your company's data center
within one month.The new servers will be placed on the network segment that maps to subnet A.The
existing router does not have the capacity for an additional subnet, and the budget does not allow the
purchase of a new router.You will
need to add the additional servers to the existing subnet A.The ISP assigns you the additional IP address
range 131.107.12.0 through 131.107.12.255.
You need to change the IP addressing scheme to accommodate all required servers in subnet A and
subnet B.You are authorized to make any necessary changes.
The diagram in the work area shows the network configuration and the planned number of servers for
each subnet.
Which IP address should be assigned to each subnet?
To answer, drag the appropriate IP address or addresses to the correct locations in the work area.
IP address IP Addresses
1> 131.107.10.0/23
Si vous choisissez notre l'outil formation, Pass4Test peut vous assurer le succès 100% du test Microsoft 070-291. Votre argent sera tout rendu si vous échouez le test.
没有评论:
发表评论