aiotestking uk

70-417 Exam Questions - Online Test


70-417 Premium VCE File

Learn More 100% Pass Guarantee - Dumps Verified - Instant Download
150 Lectures, 20 Hours

Q1. Your network contains an Active Directory forest named contoso.com. The forest contains a single domain. All domain controllers run Windows Server 2012 R2. 

The domain contains two domain controllers. The domain controllers are configured as shown in the following table. 

Active Directory Recycle Bin is enabled. 

You discover that a support technician accidentally removed 100 users from an Active Directory group named Group1 an hour ago. 

You need to restore the membership of Group1. 

What should you do? 

A. Perform an authoritative restore. 

B. Perform a non-authoritative restore. 

C. Recover the items by using Active Directory Recycle Bin. 

D. Apply a virtual machine snapshot to VM1. 

Answer:

Explanation: 

Authoritative restore allows the administrator to recover a domain controller, restore it to a specific point in time, and mark objects in Active Directory as being authoritative with respect to their replication partners. For example, you might need to perform an authoritative restore if an administrator inadvertently deletes an organizational unit containing a large number of users. If you restore the server from tape, the normal replication process would not restore the inadvertently deleted organizational unit. Authoritative restore allows you to mark the organizational unit as authoritative and force the replication process to restore it to all of the other domain controllers in the domain. Incorrect: Not C: A nonauthoritative restore returns the domain controller to its state at the time of backup and then allows normal replication to overwrite that state with any changes that occurred after the backup was taken. After you restore the system state, the domain controller queries its replication partners. The replication partners replicate any changes to the restored domain controller, ensuring that the domain controller has an accurate and updated copy of the Active Directory database. 

Reference: Performing an Authoritative Restore 

What should you do? 

A. Export and import data by using Dsamain. 

B. Apply a virtual machine snapshot to VM1. 

C. Recover the items by using Active Directory Recycle Bin. 

D. Modify the isRecycled attribute of Group1. Answer: A 

Q2. Your network contains an Active Directory domain named contoso.com. The domain contains a server named Server1 that runs Windows Server 2012 R2. 

On a server named Server2, you perform a Server Core Installation of Windows Server 2012 R2. You join Server2 to the contoso.com domain. You need to ensure that you can manage Server2 by using the Computer Management console on Server1. 

What should you do on Server2? 

A. Run the Disable-NetFirewallRulecmdlet. 

B. Run the Enable-NetFirewallRulecmdlet. 

C. Run sconfig.exe and configure the network settings. 

D. Run sconfig.exe and configure remote management. 

Answer:

Explanation: 

As we can see on the following screenshot, Remote Management is enabled by default on a new Server Core installation of 2012 (so we don't have to configure it on Server2) BUT that's not enough as it only enables WinRM-based remote management (and computer management is not WinRM- based of course). To enable the remote management from an MMC (such as server manager, or computer manager), we have to enable exception rules in the Firewall, which can be done, amongst other ways, using Powershell and the Enable-NetFirewallRulecmdlet. 

http://technet.microsoft.com/en-us/library/jj554869.aspx Enable-NetFirewallRule Detailed Description The Enable-NetFirewallRulecmdlet enables a previously disabled firewall rule to be active within the computer or a group policy organizational unit. This cmdlet gets one or more firewall rules to be enabled with the Name parameter (default), the DisplayName parameter, rule properties, or by associated filters or objects. The Enabled parameter for the resulting queried rules is set to True. 

Q3. You have a server named FS1 that runs Windows Server 2012 R2. 

You install the File and Storage Services server role on FS1. 

From Windows Explorer, you view the properties of a shared folder named Share1 and you 

discover that the Classification tab is missing. 

You need to ensure that you can assign classifications to Share1 from Windows Explorer manually. 

What should you do? 

A. Install the Enhanced Storage feature. 

B. From Folder Options, clear Use Sharing Wizard (Recommend). 

C. Install the File Server Resource Manager role service. 

D. From Folder Options, select Show hidden files, folders, and drives. 

Answer:

Q4. Your network contains an Active Directory domain named contoso.com. The domain contains a read-only domain controller (RODC) named RODC1. 

You create a global group named RODC_Admins. 

You need to provide the members of RODC_Admins with the ability to manage the hardware and the software on RODC1. The solution must not provide RODC_Admins with the ability to manage Active Directory objects. 

What should you do? 

A. From Active Directory Users and Computers, configure the Managed By settings of the RODC1 account. 

B. From Windows PowerShell, run the Set-ADAccountControlcmdlet. 

C. From a command prompt, run the dsadd computer command. 

D. From Active Directory Sites and Services, run the Delegation of Control Wizard. 

Answer:

Q5. Your network contains a Windows Server 2012 R2 image named Server12.wim. Server12.wim contains the images shown in the following table. 

Server12.wim is located in C:\. 

You need to enable the Windows Server Migration Tools feature in the Windows Server 2012 R2 Datacenter image. You want to achieve this goal by using the minimum amount of administrative effort. 

Which command should you run first? 

A. imagex.exe /apply c:\server12.wim 4 c:\ 

B. dism.exe /image:c:\server12.wim /enable-feature /featurename:servermigration 

C. imagex.exe /capture c: c:\Server12.wim "windows server 2012 r2 datacenter" 

D. dism.exe /mount-wim /wimfile:c:\Server12.wim /index:4 /mountdir:c:\mount 

Answer:

Explanation: 

This command will mount the image before making any changes. References: http://technet.microsoft.com/en-us/library/cc749447(v=ws.10).aspx http://technet.microsoft.com/en-us/library/dd744382(v=ws.10).aspx 

Q6. Your network contains an Active Directory domain named contoso.com. The domain contains a server named Server1. Server1 runs Windows Server 2012 R2 and has the Hyper-V server role installed. 

On Server1, an administrator creates a virtual machine named VM1. 

A user named User1 is the member of the local Administrators group on Server1. 

User1 attempts to modify the settings of VM1 as shown in the following exhibit. (Click the Exhibit button.) 

You need to ensure that User1 can modify the settings of VM1 by running the Set-Vmcmdlet. 

What should you instruct User1 to do? 

A. Run Windows PowerShell with elevated privileges. 

B. Install the Integration Services on VM1. 

C. Modify the membership of the local Hyper-V Administrators group. 

D. Import the Hyper-V module. 

Answer:

Explanation: You can only use the PowerShell snap-in to modify the VM settings with the 

vmcmdlets when you are an Administrator. 

Thus best practices dictate that User1 run the Powershell with elevated privileges. 

References: 

http://technet.microsoft.com/en-us/library/jj713439.aspx 

Q7. Your network contains two servers named Server1 and Server2. Both servers run Windows Server 2012 R2. On Server1, you create a Data Collector Set (DCS) named Data1. 

You need to export Data1 to Server2. 

What should you do first? 

A. Right-click Data1 and click Save template... 

B. Right-click Data1 and click Export list... 

C. Right-click Data1 and click Data Manager... 

D. Right-click Data1 and click Properties. 

Answer:

Explanation: Exporting Templates To export a Data Collector Set you create as a template for use on other computers, open Windows Performance Monitor, expand Data Collector Sets, right-click the Data Collector Set you want to export, and click Save Template . Select a directory in which to store the XML file and click Save . 

Reference: Create a Data Collector Set from a Template 

Q8. Sometimes its important to remove an RODC from your forest or domain. However, its important that you follow a simple rule whilst removing RODC's. What is this rule? 

A. All RODC's must be detached before removing a final writable domain controller 

B. All writable domain controllers must be removed before RODC's can be detached 

C. Your forest must only consist of RODC's if you want to remove them 

D. There are no rules for removing RODC's 

Answer:

Explanation: 

After researching this and using logic, we need a writable DC for a RODC to exist, therefore we have to remove all RODC's before removing the last writable DC. 

Q9. OTSPOT 

Your network contains an Active Directory domain named contoso.com. The domain contains two servers named Server1 and Server2 that run Windows Server 2012 R2. 

From Server2, you attempt to connect to Server1 by using Computer Management and you receive the following error message: "Computer \\Server1 cannot be found. The network path was not found. " 

From Server1, you successfully connect to Server2 by using Server Manager. 

You need to ensure that you can manage Server1 remotely from Server2 by using Computer Management. 

What should you configure? 

To answer, select the appropriate option in the answer area. 

Answer:  

Q10. OTSPOT 

Your network contains an Active Directory domain named contoso.com. 

You need to identify whether the Company attribute replicates to the global catalog. 

Which part of the Active Directory partition should you view? 

To answer, select the appropriate Active Directory object in the answer area. 

Answer: