[Free] 2017(Nov) Latesttests Braindumps Microsoft 70-410 Dumps with VCE and PDF Download 11-20

Latesttests 2017 Nov Microsoft Official New Released 70-410
100% Free Download! 100% Pass Guaranteed!
http://www.Latesttests.com/70-410.html

Installing and Configuring Windows Server 2012

Question No: 11 HOTSPOT – (Topic 1)

Your network contains an Active Directory domain named contoso.com. All domain controllers run Windows Server 2012 R2.

All servers are configured to enforce AppLocker policies. You install a server named Server1.

On Server1, you install an application named App1.exe in a folder located on C:\App1.

You have two domain groups named Group1 and Group2.A user named User1 is a member of Group1 and Group2.

You create a Group Policy object (GPO) named GPO1. You link GPO1 to contoso.com.

You create the executable rules as shown in the exhibit by using the Create Executable Rules wizard. (Click the Exhibit button.)

Latesttests 2017 PDF and VCE

To answer, complete each statement according to the information presented in the exhibit. Each correct selection is worth one point.

Latesttests 2017 PDF and VCE

Latesttests 2017 PDF and VCE

Answer:

Latesttests 2017 PDF and VCE

Question No: 12 – (Topic 1)

Your network contains an Active Directory domain named contoso.com. The domain contains a server named Server1 that runs Windows Server 2012 R2 and has the Remote Access server role installed.

A user named User1 must connect to the network remotely. The client computer of User1 requires Challenge Handshake Authentication Protocol (CHAP) for remote connections. CHAP is enabled on Server1.

You need to ensure that User1 can connect to Server1 and authenticate to the domain. What should you do from Active Directory Users and Computers?

  1. From the properties of User1, select Store password using reversible encryption.

  2. From the properties of Server1, assign the Allowed to Authenticate permission to User1.

  3. From the properties of User1, select Use Kerberos DES encryption types for this account.

  4. From the properties of Server1, select Trust this computer for delegation to any service (Kerberos only).

Answer: A Explanation:

The Store password using reversible encryption policy setting provides support for Applications that use protocols that require the user’s password for authentication. Storing encrypted passwords in a way that irreversible means that the encrypted passwords can be decrypted. A knowledgeable attacker who is able to break this encryption can then log on to network resources by using the compromised account. For this reason, never enable Store password using reversible encryption for all users in the domain unless Application requirements outweigh the need to protect password information. If you use the Challenge Handshake Authentication Protocol (CHAP) through remote access or Internet Authentication Services (IAS), you must enable this policy setting. CHAP is an authentication protocol that is used by remote access and network connections.

Digest Authentication in Internet Information Services (IIS) also requires that you enable this policy setting. If your organization uses CHAP through remote access or IAS, or Digest Authentication in IIS, you must configure this policy setting to Enabled. This presents a security risk when you App1y the setting through Group Policy on a user-by-user basis because it requires the appropriate user account object to be opened in Active Directory Users and Computers.

Question No: 13 – (Topic 1)

Your network contains an Active Directory domain named contoso.com. The domain contains an organizational unit (OU) named OU1.

You need to ensure that when new client computers join the domain, their computer accounts are created in OU1 by default.

What should you do?

  1. From Windows PowerShell, run the Move-ADObjectcmdlet.

  2. From a command prompt, run the redircmp.exe command.

  3. From ADSI Edit, configure the properties of the OU1 object.

  4. From Ldp, configure the properties of the Computers container.

Answer: B Explanation:

Redirects the default container for newly created computers to a specified, target organizational unit (OU) so that newly created computer objects are created in the specific target OU instead of in CN=Computers.

The CN=Computers container is a computer-protected object. For backward compatibility reasons, you cannot (and must not) remove it.

Reference: http://technet.microsoft.com/en-us/library/cc770619.aspx

Question No: 14 – (Topic 1)

Your network contains an Active Directory forest named contoso.com. The forest contains a single domain. The domain contains two domain controllers named DC1 and DC2 that run Windows Server 2012 R2.

The domain contains a user named User1 and a global security group named Group1. You need to modify the SAM account name of Group1.

Which cmdlet should you run?

  1. Add-AdPrincipalGroupMembership

  2. Install-AddsDomainController

  3. Install-WindowsFeature

  4. Install-AddsDomain

  5. Rename-AdObject

  6. Set AdAccountControl

  7. Set-AdGroup

  8. Set-User

Answer: G

Question No: 15 – (Topic 1)

Your network contains an Active Directory domain named contoso.com. The domain contains two servers named Server1 and Server2 that run Windows Server 2012 R2.

You create a security template named Template1 by using the security template snap-in. You need to apply Template1 to Server2.

Which tool should you use?

  1. Security Templates

  2. Computer Management

  3. Security Configuration and Analysis

  4. System Configuration

Answer: C Explanation:

A security policy is a combination of security settings that affect the security on a computer. You can use your local security policy to edit account policies and local policies on your local computer.

  1. Template was already created – Provide standard security option to use in security policies

  2. Needs to be applied at the GP level

  3. Security templates are inactive until imported into a Group Policy object or the SecurityConfiguration and Analysis

  4. Tool to ID windows problems

Question No: 16 – (Topic 1)

Your network contains an Active Directory domain named contoso.com. The domain contains two servers named Server1 and Server2 that run Windows Server 2012 R2. Server1 has the Group Policy Management feature installed. Server2 has the Print and Document Services server role installed.

On Server2, you open Print Management and you deploy a printer named Printer1 by using a Group Policy object (GPO) named GPO1.When you open GPO1 on Server1, you discover that the Deployed Printers node does not appear.

You need to view the Deployed Printers node in GPO1. What should you do?

  1. On Server1, modify the Group Policy filtering options of GPO1.

  2. On a domain controller, create a Group Policy central store.

  3. On Server2, install the Group Policy Management feature.

  4. On Server1, configure the security filtering of GPO1.

Answer: C Explanation:

Pre-Requisites

To use Group Policy for printer deployment you will need to have a Windows Active Directory domain, and this article assumes that your Domain Controller is a Windows 2008 R2 Server. You will also need the Print Services role installed on a server (can be on your DC), and you will be using the Print Management and Group Policy Management consoles to configure the various settings. It’s assumed that you have already followed Part One and have one or more printers shared on your server with the necessary drivers, ready to deploy to your client computers.

Question No: 17 – (Topic 1)

Your network contains an Active Directory domain named contoso.com. The domain contains 100 servers. The servers are contained in an organizational unit (OU) named Servers OU.

You need to create a group named Group1 on all of the servers in the domain. You must ensure that Group1 is added only to the servers.

What should you configure?

  1. a Local Users and Groups preferences setting in a Group Policy linked to the Domain Controllers OU

  2. a Restricted Groups setting in a Group Policy linked to the domain

  3. a Local Users and Groups preferences setting in a Group Policy linked to ServersOU

  4. a Restricted Groups setting in a Group Policy linked to Servers OU

Answer: C Explanation:

  1. This would add the group to the wrong OU

  2. This would affect the whole domain and would effect member of the group

  3. allows you to centrally manage local users and groups on domain member computers and is this is the correct OU for the GPO change

  4. Restricted Groups defines what member or groups should exist as part of a group Why use Group Policy preferences?

Unlike Group Policy settings, which App1y to both local computer policy and Active Directory policy, Group Policy preferences only App1y to Active Directory policy.

You use preferences to configure many areas of the OS, including:

System devices, such as USB ports, floppy drives and removable media Network shares and mapping network shares to drive letters System and user environment variables User and group accounts for the local computer

VPN and dial-up networking connections Printer configuration and mapping

Registry settings, schedule tasks and system services

Settings for Folder Options, Internet Options and Regional and Language Options Settings for power schemes and power management

Start Menu properties and menu items

Question No: 18 – (Topic 1)

Your network contains an Active Directory domain named adatum.com.

You discover that when users join computers to the domain, the computer accounts are created in the Computers container.

You need to ensure that when users join computers to the domain, the computer accounts are automatically created in an organizational unit (OU) named All_Computers.

What should you do?

  1. From a command prompt, run the redircmp.exe command.

  2. From ADSI Edit, configure the properties of the OU1 object.

  3. From Ldp, configure the properties of the Computers container.

  4. From Windows PowerShell, run the Move-ADObject cmdlet.

Answer: A Explanation:

This command redirects the default container for newly created computers to a specified, target organizational unit (OU) so that newly created computer objects are created in the specific target OU instead of in All_Computers.

Reference: http://technet.microsoft.com/en-us/library/cc770619.aspx

Question No: 19 – (Topic 1)

You have virtual machine named VM1.

VM1 uses a fixed size virtual hard disk (VHD) named Disk1.vhD. Disk1.vhd is 200 GB. You shut down VM1.

You need to reduce the size of disk1.vhd.

Which action should you select from the Edit Virtual Hard Disk Wizard?

  1. Merge

  2. Compact

  3. Shrink

  4. Convert

Answer: C

Question No: 20 HOTSPOT – (Topic 1)

Your network contains an Active Directory domain named contoso.com. Domain controllers run either Windows Server 2008 R2 or Windows Server 2012 R2. All client computers run Windows 8.

All computer accounts are located in an organizational unit (OU) named OU1.

You create a Group Policy object (GPO) that contains several AppLocker rules. You link the GPO to OU1.

You need to ensure that the AppLocker rules apply to all of the client computers. What should you configure in the GPO?

To answer, select the appropriate service in the answer area.

Latesttests 2017 PDF and VCE

Answer:

Latesttests 2017 PDF and VCE

Explanation:

Latesttests 2017 PDF and VCE

Configuring the Application Identity will specify where the Group Policy will be applied.

References:

http://www.grouppolicy.biz/2012/08/how-manage-published-a-k-a-metro-apps-in-windows- 8-using-grouppolicy/

Exam Ref: 70-410: Installing and Configuring Windows Server 2012 R2, Chapter 6: Create and manage Group Policy, Objective 6.3: Configure application restriction policies, p.341

100% Free Download!
Download Free Demo:70-410 Demo PDF
100% Pass Guaranteed!
Download 2017 Latesttests 70-410 Full Exam PDF and VCE

Latesttests ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 Latesttests IT Certification PDF and VCE

Leave a Reply

Your email address will not be published. Required fields are marked *