70-410 Exam Questions - Online Test
70-410 Premium VCE File
150 Lectures, 20 Hours
Q1. HOTSPOT - (Topic 2)
Your network contains an Active Directory domain named contoso.com. The domain
contains a server named Server that runs Windows Server 2012 R2.
You perform a Server Core Installation of Windows Server 2012 R2 on a new server.
You need to ensure that you can add the new server to Server Manager on Server1.
What should you configure on the new server? To answer, select the appropriate setting in
the answer area.
Answer:
Q2. HOTSPOT - (Topic 2)
Your network contains an Active Directory domain named contoso.com. The domain contains 25 servers. All servers run Windows Server 2012 R2.
You need to create a Windows Firewall rule to prevent administrators from using Internet Explorer to access the Internet while they are logged on interactively to the servers. The solution must not prevent administrators from accessing websites on the internal network.
How should you configure the rule?
To answer, select the appropriate options in the answer area.
Answer:
Q3. - (Topic 1)
In an isolated test environment, you deploy a server named Server1 that runs a Server Core Installation of Windows Server 2012 R2. The test environment does not have Active Directory Domain Services (AD DS) installed.
You install the Active Directory Domain Services server role on Server1.
You need to configure Server1 as a domain controller.
Which cmdlet should you run?
A. Install-ADDSDomainController
B. Install-ADDSDomain
C. Install-ADDSForest
D. Install-WindowsFeature
Answer: C
Explanation:
Install-ADDSDomainController – Installs a domain controller in Active Directory. Install-ADDSDomain – Installs a new Active Directory domain configuration. Install-ADDSForest – Installs a new Active Directory forest configuration. Install-WindowsFeature – Installs one or more Windows Server roles, role services, or features on either the local or a specified remote server that is running Windows Server 2012 R2. This cmdlet is equivalent to and replaces Add-WindowsFeature, the cmdlet that was used to install roles, role services, and features.
C:\PS>Install-ADDSForest -DomainName corp.contoso.com -CreateDNSDelegation DomainMode Win2008 - ForestMode Win 2008 R2 -DatabasePath “d:\NTDS” -SysvolPath “d:\SYSVOL” –LogPath “e:\Logs”Installs a new forest named corp.contoso.com, creates a DNS delegation in the contoso.com domain, sets domain functional level to Windows Server 2008 R2 and sets forest functional level to Windows Server 2008,installs the Active Directory database and SYSVOL on the D:\ drive, installs the log files on the E:\ drive and has the server automatically restart after AD DS installation is complete and prompts the user to provide and confirm the Directory Services Restore Mode (DSRM) password.
Q4. - (Topic 3)
Your network contains an Active Directory domain named contoso.com. The domain contains a server named Server1 that runs Windows Server 2012 R2 and has the Web Server (US) server role installed.
Server1 has a web site named Web1. Web1 is configured to use digest authentication.
You need to ensure that a user named User1 can access Web1.
What should you do from Active Directory Users and Computers?
A. From the properties of User1, select Store password using reversible encryption.
B. From the properties of User1, select Use Kerberos DES encryption types for this account.
C. From the properties of Server1, select Trust this computer for delegation to any service (Kerberos only).
D. From the properties of Server1, assign the Allowed to Authenticate permission to User1.
Answer: A
Explanation:
Challenge Handshake Authentication Protocol (CHAP) is a basic level of iSCSI security that is used to authenticate the peer of a connection and is based upon the peers sharing a secret: that secret being a password. To make sure that User1 can connect to the server, you should use Active Directory Users and Computers to store that password.
Q5. - (Topic 3)
You have a server named Server1 that runs a Server Core installation of Windows Server 2012 R2 Standard. You establish a Remote Desktop session to Server1.
You need to identify which task can be performed on Server1 from within the Remote Desktop session.
What should you identify?
A. Install a feature by using Server Manager.
B. Modify the network settings by using Sconfig.
C. Disable services by using Msconfig.
D. Join a domain by using the System Properties.
Answer: B
Explanation:
In Windows Server 2012 R2, you can use the Server Configuration tool (Sconfig.cmd) to configure and manage several common aspects of Server Core installations. You must be a member of the Administrators group to use the tool. Sconfig.cmd is available in the Minimal Server Interface and in Server with a GUI mode.
References: http://technet.microsoft.com/en-us/library/jj647766.aspx Training Guide: Installing and Configuring Windows Server 2012 R2, Chapter 2: Deploying servers, p. 80
Q6. - (Topic 2)
Your network contains an Active Directory domain named adatum.com. The domain contains a member server named Server1 and a domain controller named DC2.All servers run Windows Server 2012 R2.
On DC2, you open Server Manager and you add Server1 as another server to manage.
From Server Manager on DC2, you right-click Server1 as shown in the exhibit. (Click the Exhibit button.)
You need to ensure that when you right-click Server1, you see the option to run the DHCP console.
What should you do?
A. In the domain, add DC2 to the DHCP Administrators group.
B. On Server1, install the Feature Administration Tools
C. On DC2 and Server1, run winrmquickconfig.
D. On DC2, install the Role Administration Tools.
Answer: D
Reference: http://technet.microsoft.com/en-us/library/ee441255(v=ws.10).aspx
Q7. - (Topic 1)
You have a server named Server1 that runs Windows Server 2012 R2.
On Server1, you open Computer Management as shown in the exhibit. (Click the Exhibit button.)
You need to ensure that you can create a 3-TB volume on Disk 1.
What should you do first?
A. Create a storage pool.
B. Convert the disk to a GPT disk.
C. Create a VHD, and then attach the VHD.
D. Convert the disk to a dynamic disk.
Answer: B
Q8. HOTSPOT - (Topic 1)
A printer named Printer1 is configured as shown in the exhibit. (Click the Exhibit button.)
To answer, complete each statement according to the information presented in the exhibit. Each correct selection is worth one point.
Answer:
Q9. - (Topic 1)
Your network contains an Active Directory domain named contoso.com. All servers run Windows Server 2012 R2. A server named Server1 is configured to encrypt all traffic by using IPSec.
You need to ensure that Server1 can respond to ping requests from computers that do not support IPSec.
What should you do?
A. From a command prompt, run netsh set global
autotuninglevel = highlyrestrictedcongestionprovider=none.
B. From a command prompt, run netsh set global autotuninglevel = restricted congestionprovider = ctcp.
C. From Windows Firewall with Advanced Security, allow unicast responses for the Domain Profile.
D. From Windows Firewall with Advanced Security, exempt ICMP from IPSec.
Answer: D
Q10. - (Topic 1)
Your network contains an Active Directory domain named contoso.com.
You log on to a domain controller by using an account named Admin1.Admin1 is a member of the Domain Admins group.
You view the properties of a group named Group1 as shown in the exhibit. (Click the Exhibit button.)
Group1 is located in an organizational unit (OU) named OU1.
You need to ensure that users from Group1 can modify the Security settings of OU1 only.
What should you do from Active Directory Users and Computers?
A. Modify the Managed By settings on OU1.
B. Right-click contoso.com and select Delegate Control.
C. Right-click OU1 and select Delegate Control.
D. Modify the Security settings of Group1.
Answer: C
Explanation:
Delegating control to only the OU will allow the users of Group1 to modify the security settings.
- [2021-New] Microsoft 70-470 Dumps With Update Exam Questions (121-130)
- [2021-New] Microsoft 70-680 Dumps With Update Exam Questions (181-190)
- [2021-New] Microsoft 70-980 Dumps With Update Exam Questions (1-10)
- [2021-New] Microsoft 70-411 Dumps With Update Exam Questions (21-30)
- [2021-New] Microsoft 70-483 Dumps With Update Exam Questions (41-50)
- [2021-New] Microsoft 70-486 Dumps With Update Exam Questions (51-60)
- [2021-New] Microsoft 70-480 Dumps With Update Exam Questions (11-20)
- [2021-New] Microsoft 70-417 Dumps With Update Exam Questions (71-80)
- [2021-New] Microsoft 70-535 Dumps With Update Exam Questions (2-11)
- [2021-New] Microsoft 70-487 Dumps With Update Exam Questions (11-20)