QUESTION 101
Your network contains an Active Directory domain named contoso.com. The domain contains
servers that run either Windows Server 2008 R2 or Windows Server 2012. All client computers on
the internal network are joined to the domain. Some users establish VPN connections to the
network by using Windows computers that do not belong to the domain. All client computers
receive IP addresses by using DHCP. You need to recommend a Network Access Protection (NAP)
enforcement method to meet the following requirements:
Verify whether the client computers have up-to-date antivirus software.
Provides a warning to users who have virus definitions that are out-of-date.
Ensure that client computers that have out-of-date virus definitions can connect to the
network.
Which NAP enforcement method should you recommend?
A. VPN
B. DHCP
C. IPsec
D. 802.1x
Correct Answer: B
QUESTION 102
Your network contains multiple servers that run Windows Server 2012. All client computers run
Windows 8. You need to recommend a centralized solution to download the latest antivirus
definitions for Windows Defender. What should you include in the recommendation?
A. Microsoft System Center 2012 Endpoint Protection
B. Network Access Protection (NAP)
C. Microsoft System Center Essentials
D. Windows Server Update Services (WSUS)
Correct Answer: D
QUESTION 103
Your network contains an Active Directory domain named contoso.com. The domain contains
three VLANs. The VLANs are configured as shown in the following table.
All client computers run either Windows 7 or Windows 8. The corporate security policy states
that all of the client computers must have the latest security updates installed. You need to
implement a solution to ensure that only the client computers that have all of the required
security updates installed can connect to VLAN 1. The solution must ensure that all other client
computers connect to VLAN 3. Which Network Access Protection (NAP) enforcement method
should you implement?
A. VPN
B. DHCP
C. IPsec
D. 802.1x
Correct Answer: D
QUESTION 104
Your company has a main office and a branch office. The network contains an Active Directory
domain named contoso.com. The domain contains three domain controllers.
The domain controllers are configured as shown in the following table.
The domain contains two global groups.
The groups are configured as shown in the following table.
You need to ensure that the RODC is configured to meet the following requirements:
Cache passwords for all of the members of Branch1Users.
Prevent the caching of passwords for the members of Helpdesk.
What should you do?
A. Create a Password Settings object (PSO) for the Helpdesk group.
B. Install the BranchCache feature on RODC1.
C. Modify the password replication policy of RODC1.
D. Modify the delegation settings of RODC1.
Correct Answer: C
QUESTION 105
Your company has a main office, ten regional datacenters; and 100 branch offices. You are
designing the site topology for an Active Directory forest named contoso.com. The forest will
contain the following servers:
In each regional datacenter and in the main office, a domain controller that runs Windows
Server.
In each branch office, a file server that runs Windows Server 2012.
You have a shared folder that is accessed by using the path \contoso.comsharessoftware. The
folder will be replicated to a local file server in each branch office by using Distributed File System
(DFS) replication. You need to recommend an Active Directory site design to meet the following
requirements:
Ensure that users in the branch offices will be authenticated by a domain controller in the
closest regional datacenter.
Ensure that users automatically connect to the closest file server when they access
\contoso.comsharessoftware.
How many Active Directory sites should you recommend?
A. 1
B. 10
C. 11
D. 111
Correct Answer: D
QUESTION 106
Your network contains an Active Directory domain named contoso.com. The domain contains an
IP Address Management (IPAM) server. You plan to delegate the administration of IPAM as shown
in the following table.
You need to recommend which IPAM security group must be used for each department. The
solution must minimize the number of permissions assigned to each group. What should you
recommend?
To answer, drag the appropriate group to the correct department in the answer area. Each group
may be used once, more than once, or not at all. Additionally, you may need to drag the split bar
between panes or scroll to view content.
Select and Place:
Correct Answer:
QUESTION 107
Your network contains an Active Directory domain named contoso.com. You plan to implement
multiple DHCP servers. An administrator named Admin1 will authorize the DHCP servers. You
need to ensure that Admin1 can authorize the planned DHCP servers. To which container should
you assign Admin1 permissions?
To answer, select the appropriate node in the answer area.
Point and Shoot:
Correct Answer:
QUESTION 108
Your network contains an Active Directory forest named contoso.com. Your company merges
with another company that has an Active Directory forest named litwareinc.com. Each forest has
one domain. You establish a two-way forest trust between the forests. The network contains
three servers. The servers are configured as shown in the following table.
You confirm that the client computers in each forest can resolve the names of the client
computers in both forests. On dc1.litwareinc.com, you create a zone named GlobalNames. You
need to recommend changes in both forests to ensure that the users in both forests can resolve
single-label names by using the GlobalNames zone in litwareinc.com. Which changes should you
recommend?
To answer, drag the appropriate configuration to the correct server in the answer area. Each
configuration may be used once, more than once, or not at all. Additionally, you may need to
drag the split bar between panes or scroll to view content.
Select and Place:
Correct Answer:
QUESTION 109
Your network contains an Active Directory forest named corp.contoso.com. All servers run
Windows Server 2012. The network has a perimeter network that contains servers that are
accessed from the Internet by using the contoso.com namespace. The network contains four DNS
servers. The servers are configured as shown in the following table.
All of the client computers on the perimeter network use Server1 and Server2 for name
resolution. You plan to add DNS servers to the corp.contoso.com domain. You need to ensure
that the client computers automatically use the additional name servers. The solution must
ensure that only computers on the perimeter network can resolve names in the
corp.contoso.com domain. Which DNS configuration should you implement on Server1 and
Server2?
To answer, drag the appropriate DNS configuration to the correct location in the answer area.
Each DNS configuration may be used once, more than once, or not at all. Additionally, you may
need to drag the split bar between panes or scroll to view content.
Select and Place:
Correct Answer:
QUESTION 110
Your network contains an Active Directory domain named contoso.com. The domain contains a
server named Server1 that runs Windows Server 2012. Server1 resides in the perimeter network
and has the Remote Access server role installed. Some users have laptop computers that run
Windows 7 and are joined to the domain. Some users work from home by using their home
computers. The home computers run either Windows XP, Windows Vista/ Windows 7, or
Windows 8. You need to configure the computers for remote access. Which three actions should
you perform?
To answer, move the three appropriate actions from the list of actions to the answer area and
arrange them in the correct order.
Select and Place:
Correct Answer:
70-410 Dumps VCE PDF
70-411 Dumps VCE PDF
70-412 Dumps VCE PDF
70-413 Dumps VCE PDF
70-414 Dumps VCE PDF
70-417 Dumps VCE PDF
70-461 Dumps VCE PDF
70-462 Dumps VCE PDF
70-463 Dumps VCE PDF
70-464 Dumps VCE PDF
70-465 Dumps VCE PDF
70-480 Dumps VCE PDF
70-483 Dumps VCE PDF
70-486 Dumps VCE PDF
70-487 Dumps VCE PDF