默认题库 - MCSE(70-290)

单选题

You are the domain admin for Testking's Active Directory domain. You use a Software Update Services (SUS) server to manage the security updates for all servers that run Windows Server 2003. You need to install three critical security hotfixes from Microsoft. One of the hotfixes cannot be installed in the current production environment because the hotfix causes a custom application to stop responding. You need to install two of the three hotfixes during a maintenance session tomorrow at 2:00 A.M. You need to automate the installation process. What should you do?（）

A. Schedule a task by using Task Scheduler on each server. Set the task to run Wupdmgr.exe at 2:00 a.m.
B. Synchronize the SUS server. Approve only the updates that you want to install. Configure the SUS Group Policy setting to check for updates at 2:00 a.m.
C. On the SUS server, run the wmic qfe command, and the run the net time /setntp:0200 command.
D. On the SUS server, edit the History-approve.xml file to include only the updates that you want to install. The use the AT command to schedule Sus10sp1.exe to run at 2:00 a.m.

查看答案

单选题

You are the network administrator for TestKing. The network contains a Windows Server 2003 computer named testking1, which hosts a critical business application named Salesapp. Testking1 has one disk that contains a single NTFS volume. Five days ago, the System State of testking1 was backed up, and an Automated System Recovery (ASR) backup was created. No additional backups were performed. Subsequently, many changes were made to the Salesapp data files. You apply an update to the application, which requires you to restart testking1. Windows startup terminates with a Stop error. You restart the computer and boot to a floppy disk. A utility on this disk gives you read-only access to the NTFS file system. You discover that one of the .dll files for the Salesapp application is corrupted. The corrupted file is stored in the C.\Windows\System32 folder. You need to restore the corrupted file. You need to avoid losing any changes made to the data files on testking1. What should you do onTestKing1?（）

A. Perform the ASR restore procedure.
B. Restart Windows by using the Last Known Good configuration option.
C. Start the Recovery Console and replace the corrupted .dll file with a copy from the Salesapp CD-RO
D. Reinstall Windows Server 2003. Do not format any volumes.

查看答案

多选题

You are the network administrator for The network consists of a single Active Directory domain named The domain contains Windows Server 2003 computers and Windows XP Professional computers. All confidential company files are stored on a file server named TestKing1. The written company security states that all confidential data must be stored and transmitted in a secure manner. To comply with the security policy, you enable Encrypting File System (EFS) on the confidential files. You also add EFS certificates to the data decryption field (DDF) of the confidential files for the users who need to access them. While performing network monitoring, you notice that the confidential files that are stored on TestKing1 are being transmitted over the network without encryption. You must ensure that encryption is always used when the confidential files on TestKing1 are stored and transmitted over the network. What are two possible ways to accomplish this goal?（） (Each correct answer presents a complete solution. Choose two)

A. Enable offline files for the confidential files that are stored on TestKing1, and select the Encrypt offline files to secure data check box on the client computers of the users who need to access the files.
B. Use IPSec encryption between TestKing1 and the client computers of the users who need to access the confidential files.
C. Use Server Message Block (SMB) signing between TestKing1 and the client computers of the users who need to access the confidential files.
Disable all LM and NTLM authentication methods on TestKing1.
E. Use IIS to publish the confidential files. Enable SSL on the IIS server. Open the files as a Web folder.

查看答案

单选题

You are the network administrator for TestKing. The network consists of a single Active Directory domain. All network servers run Windows Server 2003. Half of the client computers run Windows XP Professional, and the other half run Windows NT 4.0 Workstation. You install Terminal Services on three member servers named Testking1, Testking2, and Testking3. Each server has a single Pentium III 600-Mhz CPU with 512 MB of RAM and a single-channel EIDE disk subsystem. You place all three terminal servers in an organizational unit (OU) named Terminal Server. You link a Group Policy Object (GPO) to the Terminal Server OU. Several days after the installation, users report that the performance of all three terminal servers is unacceptably slow. You discover that each server has at least 50 active sessions at once. You need to improve the performance of all three terminal servers. You must achieve this goal by using the minimum amount of administrative effort, without upgrading any hardware. What should you do?（）

A. Log on to the console of each terminal server. In the RDP-Tcp connection properties, set the Maximum connections option to 35.
B. Edit the GPO to set the Limit number of connections policy to 35.
C. Modify all domain user accounts to set the When a session limit is reached or broken user property to End session.
D. Edit the GPO to enable the Remove Disconnected option from shutdown dialog policy

查看答案

单选题

You are the domain administrator for your company's Active Directory domain. All servers run Windows Server 2003. All client computers run Windows XP Professional and have the latest service pack installed. You manage a server that has Windows Server Update Services (WSUS) installed. The latest updates were synchronized and approved for installation on the client computers. You need to configure the client computers to download and automatically install the approved updates from the WSUS server. What should you do? （）

A. On the client computers, open the System Properties dialog box. On the Automatic Updates tab, configure the client computers to update automatically every day.
B. Create a Group Policy object (GPO) that has the appropriate Automatic Updates settings configured. Apply the GPO to an organizational unit (OU) that includes the client computers.
C. In Active Directory Users and Computers, modify the settings for the client computer accounts. Configure the Managed By property to specify the WSUS server account.
D. Create a local group on the WSUS server. Assign the group the Allow - Read and the Allow - Write permissions for the WSUSContent folder on the WSUS server. Add all the users of the client computers to the local group.

查看答案

单选题

Rate your level of proficiency with creating and managing users, computers, and groups in an ActiveDirectory environment, including troubleshooting computer accounts, user accounts, and userauthentication issues. （）

A. Very High
B. High
C. Moderate
D. Low
E. Very Low

查看答案

单选题

You are the administrator of a Windows Server 2003 computer named Server1. Newly hired employees recently started storing files on Server1. Now users report that Server1 is responding much slower than it did before the additional users were added. You suspect the disk subsystem needs to be upgraded to accommodate the additional user load. You need to confirm whether the disk subsystem on Server1 needs to be upgraded. What should you do?（）

A. Configure a Performance Logs and Alerts alert on the %Free Space counter.
B. Use Device Manager to populate volume settings and examine the properties of the disk drives on Server1
C. Use Event Viewer to examine the system logs and search the system logs for events generated by the disk event source.
D. Use System Monitor to monitor counters based on the PhysicalDisk object.

查看答案

多选题

You are the administrator of a Windows Server 2003 computer named Server1. The hardware vendor for Server1 notifies you that a critical hotfix is available. This hotfix is required for all models of this computer that have a certain network interface card. You need to find out if the network interface card that requires the hotfix is installed in Server1. What are two possible ways to achieve this goal? （）(Each correct answer presents a complete solution. Choose two.)

A. Open Network Connections, and then examine the properties of each connection that is listed.
B. Open the Component Services snap-in, expand Computers, expand My Computer, and then examine the list.
C. Run the netsh interface command, and then examine the list.
D. Open Device Manager, expand Network adapters, and then examine the list

查看答案

单选题

You have a file server named Server1 that runs Windows Server 2003 Service Pack 2 (SP2).You need to implement a backup schedule on Server1 to meet the following requirements:·Everyday, back up all files and folders to disk.·Every Friday, back up all files and folders to tape.·Every Sunday, Tuesday, and Thursday, back up only the files and folders that have changed since theprevious Friday’s backup to tape.Which backup jobs should you create?（）

A. ·a normal backup to disk everyday ·a normal backup to tape on Friday ·a differential backup to tape on Sunday, Tuesday, and Thursday
B. ·a normal backup to disk everyday ·a normal backup to tape on Friday ·an incremental backup to tape on Sunday, Tuesday, and Thursday
C. ·a copy backup to disk everyday ·a normal backup to tape on Friday ·a differential backup to tape on Sunday, Tuesday and, Thursday
D. ·a copy backup to disk everyday ·a normal backup to tape on Friday ·an incremental backup to tape on Sunday, Tuesday and, Thursday

查看答案

单选题

You are the network administrator in the New York office of TestKing. The company network consists of a single Active Directory domain The New York office currently contains one Windows Server 2003 file server named TestKingA. All file servers in the New York office are in an organizational unit (OU) named New York Servers. You have been assigned the Allow - Change permission for a Group Policy object (GPO) named NYServersGPO, which is linked to the New York Servers OU. The written company security policy states that all new servers must be configured with specified predefined security settings when the servers join the domain. These settings differ slightly for the various company offices. You plan to install Windows Sever 2003, on 15 new computers, which all functions as file servers. You will need to configure the specified security settings on the new file servers. TestKingA currently has the specified security settings configured in its local security policy. You need to ensure that the security configuration of the new file servers is identical to that of TestKingA. You export a copy of TestKingA's local security policy settings to a template file. You need to configure the security settings of the new servers, and you want to use the minimum amount of administrative effort. What should you do?（）

A. Use the Security Configuration and Analysis tool on one of the new servers to import the template file.
B. Use the default Domain Security Policy console on one of the new servers to import the template file.
C. Use the Group Policy Editor console to open NYServersGPO and import the template file.
D. Use the default Local Security Policy console on one of the new servers to import the template file.

查看答案