[Free] 2017(Nov) Latesttests Braindumps Microsoft 70-410 Dumps with VCE and PDF Download 231-240

Latesttests 2017 Nov Microsoft Official New Released 70-410
100% Free Download! 100% Pass Guaranteed!
http://www.Latesttests.com/70-410.html

Installing and Configuring Windows Server 2012

Question No: 231 HOTSPOT – (Topic 3)

You have a server named Server1 that runs Windows Server 2012 R2.

Several users are members of the local Administrators group.

You need to ensure that all local administrators receive User Account Control (UAC) prompts when they run a Microsoft Management Console (MMC).

Which settings should you modify from the Local Security Policy? To answer, select the appropriate settings in the answer area.

Latesttests 2017 PDF and VCE

Answer:

Latesttests 2017 PDF and VCE

Explanation:

Latesttests 2017 PDF and VCE

B. UAC Is controlled by local security policy. Computer Configuration\Windows Settings\Security Settings\Local

Policies\Security Option

Question No: 232 – (Topic 3)

Your network contains two servers named Server1 and Server2 that run Windows Server 2012 R2. Server1 is a DHCP server that is configured to have a scope named Scope1.

Server2 is configured to obtain an IP address automatically.

In Scope1, you create a reservation named Res_Server2 for Server2. A technician replaces the network adapter on Server2.

You need to ensure that Server2 can obtain the same IP address. What should you modify on Server1?

  1. The Name Protection settings of Scope1

  2. The MAC address of Res_Server2

  3. The Advanced settings of Res_Server2

  4. The Network Access Protection Settings of Scope1

Answer: B Explanation:

DHCP reservations are given based upon MAC address (at least on IPv4/DHCPv4).

For clients that require a constant IP address, you can either manually configure a static IP address, or assign a reservation on the DHCP server. Reservations are permanent lease assignments that are used to ensure that a specified client on a subnet can always use the same IP address. You can use DHCP reservations for hosts that require a consistent IP address, but do not need to be statically configured. DHCP reservations provide a mechanism by which IP addresses may be permanently assigned to a specific client based on the MAC address of that client. The MAC address of a Windows client can be found running the ipconfig /all command.

For Linux systems the corresponding command is ifconfig -a. Once the MAC address has been identified, the reservation may be configured using either the DHCP console or at the command prompt using the netsh tool.

Media access control (MAC) address authorization functions in the same way as automatic number identification (ANI) authorization, but it is used for wireless clients and clients connecting to your network by using an 802.1X authenticating switch. Since the network adapter was replaced, you need to modify the MAC address on Server1 to ensure that Server2 can obtain the same IP address.

Reference: http://technet.microsoft.com/en-us/library/dd197535(v=WS.10).aspx

Question No: 233 HOTSPOT – (Topic 3)

Your network contains a domain controller named dc5.adatum.com that runs Windows Server 2012 R2.

You discover that you can connect successfully to DC5 over the network, but you receive a request timed out message when you attempt to ping DC5.

You need to configure DC5 to respond to ping request.

Which firewall rule should you modify on DC5? To answer, select the appropriate rule in the answer area.

Latesttests 2017 PDF and VCE

Answer:

Latesttests 2017 PDF and VCE

Question No: 234 – (Topic 3)

You have a print server named Server1.

You install a printer on Server1. You share the printer as Printer1.

You need to configure Printer1 to be available only from 19:00 to 05:00 every day. Which settings from the properties of Printer1 should you modify?

  1. Sharing

  2. Security

  3. Advanced

  4. Device Settings

  5. Ports

Answer: C Explanation:

When navigating to the printer properties, the Properties tab is divided into several different

tabs of which the Advanced tab will give you access to the scheduling where you can configure the availability of the printer.

Reference: http://technet.microsoft.com/en-us/library/cc722526.aspx

Question No: 235 – (Topic 3)

Your network contains an Active Directory domain named contoso.com. The domain contains a domain controller named DC5. DC5 has a Server Core Installation of Windows Server 2012 R2.

You need to uninstall Active Directory from DC5 manually. Which tool should you use?

  1. The dsamain.exe command

  2. The ntdsutil.exe command

  3. The Remove-ADComputer cmdlet

  4. The Remove-WindowsFeature cmdlet

Answer: C Explanation:

The Remove-ADComputer cmdlet removes an Active Directory computer. Example: Remove-ADComputer -Identity quot;FABRIKAM-SRV4quot;

Remove one particular computer.

References:

http://technet.microsoft.com/en-us/library/ee662310.aspx http://support.microsoft.com/kb/216498 http://technet.microsoft.com/en-us/library/ee617250.aspx

Question No: 236 – (Topic 3)

You have a server named Server1 that runs Windows Server 2012 R2.

You try to install the Microsoft .NET Framework 3.5 Features feature on Server1, but the installation fails repeatedly.

You need to ensure that the feature can be installed on Server1. What should you do?

  1. Run the Add-AppxProvisionedPackage cmdlet.

  2. Remove the .NET Framework 4.5 Features feature.

  3. Connect Server1 to the Internet.

  4. Install the Web Server (IIS) server role.

Answer: C Explanation:

The files needed are no longer available on the local Hard drive. We need to connect the server to the Internet.

Important to note that when starting with Windows Server 2012 R2 and Windows 8, the feature files for .NET Framework 3.5 (which includes .NET Framework 2.0 and .NET Framework 3.0) are not available on the local computer by default. The files have been removed. Files for features that have been removed in a Features on Demand configuration, along with feature files for .NET Framework 3.5, are available through Windows Update. By default, if feature files are not available on the destination server that is running Windows Server 2012 R2 R2 Preview or Windows Server 2012 R2, the installation process searches for the missing files by connecting to Windows Update. You can override the default behavior by configuring a Group Policy setting or specifying an alternate source path during installation, whether you are installing by using the Add Roles and Features Wizard GUI or a command line.

References:

Exam Ref 70-410: Installing and Configuring Windows Server 2012 R2, Chapter 2: Configure server roles and Features, p. 117

Training Guide: Installing and Configuring Windows Server 2012 R2, Chapter 2: Deploying servers, p. 80

Question No: 237 – (Topic 3)

Your network contains an Active Directory domain named contoso.com. The domain contains a file server named Server1 that runs Windows Server 2012 R2. Server1 contains a shared folder named Share1. Share1 contains the home folder of each user.

All users have the necessary permissions to access only their home folder.

The users report that when they access Share1, they can see the home folders of all the users.

You need to ensure that the users see only their home folder when they access Share1. What should you do from Server1?

  1. From Windows Explorer, modify the properties of the volume that contains Share1.

  2. From Server Manager, modify the properties of the volume that contains Share1.

  3. From Server Manager, modify the properties of Share1.

  4. From Windows Explorer, modify the properties of Share1.

Answer: C

Question No: 238 – (Topic 3)

Your network contains an Active Directory domain named contoso.com. All servers run Windows Server 2012 R2.

An application named Appl.exe is installed on all client computers. Multiple versions of Appl.exe are installed on different client computers. Appl.exe is digitally signed.

You need to ensure that only the latest version of Appl.exe can run on the client computers. What should you create?

  1. An application control policy packaged app rule

  2. A software restriction policy certificate rule

  3. An application control policy Windows Installer rule

  4. An application control policy executable rule

Answer: D Explanation:

A. A publisher rule for a Packaged app is based on publisher, name and version B. You can create a certificate rule that identifies software and then allows or does not allow the software to run, depending on the security level.

  1. For .msi or .msp

  2. Executable Rules, for .exe and can be based on Publisher, Product name, filename and version. Use Certificate Rules on Windows Executables for Software Restriction Policies This security setting determines if digital certificates are processed when a user or process attempts to run software with an .exe file name extension. This security setting is used to enable or disable certificate rules, a type of software restriction policies rule. With software restriction policies, you can create a certificate rule that will allow or disallow software that is signed by Authenticode to run, based on the digital certificate that is associated with the software. In order for certificate rules to take effect, you must enable this security setting. When certificate rules are enabled, software restriction policies will check a certificate revocation list (CRL) to make sure the software’s certificate and signature are valid. This may decrease performance when start signed programs. You can disable this feature. On Trusted Publishers Properties, clear the Publisher and Timestampcheck boxes.

Question No: 239 – (Topic 3)

Your network contains an Active Directory domain named contoso.com. The domain contains a member server named HVServer1. HVServer1 runs Windows Server 2012 R2 and has the Hyper-V server role installed.

HVServer1 hosts 10 generation 1 virtual machines. All of the virtual machines connect to a virtual switch named Switch1. Switch1 is configured as a private network. All of the virtual machines have the DHCP guard and the router guard settings enabled.

You install the DHCP server role on a virtual machine named Server1. You authorize Server1 as a DHCP server in contoso.com. You create an IP scope.

You discover that the virtual machines connected to Switch1 do not receive IP settings from Server1.

You need to ensure that the virtual machines can use Server1 as a DHCP server. What should you do?

  1. Enable MAC address spoofing on Server1.

  2. Enable single-root I/O visualization (SR-IOV) on Server1.

  3. Disable the DHCP guard on Server1.

  4. Disable the DHCP guard on all of the virtual machines that are DHCP clients.

Answer: C Explanation:

DHCP guard setting

This setting stops the virtual machine from making DHCP offers over this network interface. To be clear – this does not affect the ability to receive a DHCP offer (i.e. if you need to use DHCP to acquire an IP address that will work) it only blocks the ability for the virtual machine to act as a DHCP server.

Question No: 240 – (Topic 3)

Your network contains an Active Directory domain named contoso.com. All user accounts are in an organizational unit (OU) named Employees.

You create a Group Policy object (GPO) named GP1. You link GP1 to the Employees OU. You need to ensure that GP1 does not apply to the members of a group named Managers. What should you configure?

  1. The Security settings of Employees

  2. The WMI filter for GP1

  3. The Block Inheritance option for Employees

  4. The Security settings of GP1

Answer: D Explanation:

  1. Wrong Group

  2. Windows Management Instrumentation (WMI) filters allow you to dynamically determine the scope of Group Policy objects (GPOs) based on attributes of the target computer.

  3. Blocking inheritance prevents Group Policy objects (GPOs) that are linked to higher sites, domains, or organizational units from being automatically inherited by the child-level.

  4. Set Managers to – Members of this security group are exempt from this Group Policy object.

Security settings.

You use the Security Settings extension to set security options for computers and users within the scope of a Group Policy object. You can define local computer, domain, and network security settings.

Figure below shows an example of the security settings that allow everyone to be affected by this GPO except the members of the Management group, who were explicitly denied permission to the GPO by setting the Apply Group Policy ACE to Deny. Note that if a member of the Management group were also a member of a group that had an explicit Allow setting for the Apply Group Policy ACE, the Deny would take precedence and the GPO would not affect the user.

100% Free Download!
Download Free Demo:70-410 Demo PDF
100% Pass Guaranteed!
Download 2017 Latesttests 70-410 Full Exam PDF and VCE

Latesttests ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 Latesttests IT Certification PDF and VCE

Leave a Reply

Your email address will not be published. Required fields are marked *