默认题库 - MCSE(70-298)

单选题

You need to design a permission structure for registry objects that enables the legacy application at the resorts to run. Your solution must comply with the written security policy. What should you do？（）

A. Create a GPLink the GPO to the OUs that contain computer accounts for computers that run the legacy application， Use the GPO to give the Domain Users security group full control on the partitions of the registry that the legacy application uses
B. Create a GPLink the GPO to the OUs that contain computer accounts for computers that run the legacy application. Use the GPO to give the Domain Users security group full control on the HKEY_USERS partition of the registry
Create a GPLink the GPO to the OUs that contain computer accounts for computers that run the Legacy application. Use the GPO to make all users who require access to the application members of Local Administrators group on each computer
D. Create a GPLink the GPO to the OUs that contain computer accounts for computers that run the Legacy application. Use the GPO to give all users who require access to the application full control for the Ntuser.dat file

查看答案

单选题

You need to design a Security strategy for the wireless network at all resort locations.What should you do？（）

A. Connect the wireless access points to a dedicated subnet. Allow the subnet direct access to the Internet，but not to the company network.Require company users to establish a VPN to access company resources
B. Install Internet Authentication Service （IAS） on a domain controller.Configure the wireless access points to require IEEE 802.1x authentication
C. Establish IPSec policies on all company servers to request encryption from all computers that connect from the wireless IP networks
D. Configure all wireless access points to require the Wired Equivalent Privacy （WEP） protocol for all connections. Use a Group Policy object （GPO） to distribute the WEP keys to all computers in the domai

查看答案

单选题

You need to design a strategy to ensure that all servers are in compliance with the business requirements for maintaining security patches. What should you do？（）

A. Log on to a domain controller and run the Resultant Set of Policy wizard in planning mode on the domain
B. Log on to each server and run Security Configuration and Analysis to analyze the security settings by using a custom security template
Create a logon script to run the secedit command to analyze all servers in the domain
D. Run the Microsoft Baseline Security Analyzer （MBSA） on a server to scan for Windows vulnerabilities on all servers in the domai

查看答案

单选题

You need to design a method of communication between the IT and HR departments. Your solution must meet business requirements. What should you do？（）

A. Design a custom IPSec policy to implement Encapsulating Security Payload （ESP） for all IP traffic Design the IPSec policy to use certificate-based authentication between the two departments’ computers
B. Design a customer IPSec policy to implement Authentication Header （AH） for all IP traffic. Desing the IPSec policy to use preshared key authentication between the two departments’ computers
C. Design a customer IPSec policy to implement Encapsulating Payload （ESP） for all IP traffic. Desing the IPSec policy to use preshared key authentication between the two departments’ computers
Design a customer IPSec policy to implement Authentication Header （AH） for all IP traffic. Desing the IPSec policy to use certificate-based authentication between the two departments’ computer

查看答案

单选题

You need to improve the company’s security patch management process. Your solution must meet existing business requirements and it cannot increase the number of employees or unnecessarily increase ongoing administrative effort. What should you do？（）

A. Provide all users with the ability to access and use the Windows Update Web site
B. Upgrade all client computers to either Windows 2000 Professional or Windows XP Professional. Implement Software Update Services （SUS）
C. Upgrade all client computers to either Windows 2000 Professional or Windows XP Professional.Make all users members of the Power Users group on their client computers
D. Install the Active Directory Client Extensions on all Windows 95， Windows 98， and Windows NT Workstation 4.0 computers. Manually download all security patches to a Distributed File System （DFS） replica. Instruct all users to use the DFS replica to install security patches
E. Install the Active Directory Client Extensions on all Windows 95， Windows 98， and Windows NT Workstation 4.0 computers. Install a Software Update Services （SUS） server and make all users local administrators on their client computer

查看答案

单选题

You need to design a method to protect traffic on the wireless network. Your solution must meet the requirements of the chief security officer. What should you do？（）

A. Configure the wireless access points in Denver and Dallas to filter unauthorized Media Access Control （MAC） addresses
B. Configure the wireless network connection properties for all computers in Denver and in Dallas to use the same network name that the wireless access points use
Create a GPO and link it to the Denver OU and to the Dallas OCreate a wireless network policy and configure it to use Windows to configure wireless network settings for the Denver and the Dallas networks
D. Create a GPO and link it to the Denver OU and to the Dallas OCreate a wireless network policy and enable data encryption and dynamic key assignments for the Denver and Dallas network

查看答案

单选题

You need to design an audit strategy for Southbridge Video. Your solution must meet business requirements.What should you do？（）

A. Create a new security template that enables the Audit account logon events policy for successful and failed attempts. Create a new GPO， and link it to the domain. Import the new security template into the new GPO
B. Create a new security template that enables the Audit account logon events policy for successful and failed attempts. Create a new GPO， and link it to the Domain Controllers OImport the new security template into the new GPO
Create a new security template that enables the Audit logon events policy for successful and failed attempts. Create a new GPO， and link it to the Domain Controllers OImport the new security template into the new GPO
D. Create a new security template that enables the Audit logon events policy for successful and failed attempts. Create a new GPO， and link it to the domain. Import the new security template into the new GPO

查看答案

单选题

单位时间内传送二进制数码的位数称为（）。

A. 停止位
B. 校验位
C. 数据位
D. 波特率

查看答案

单选题

You need to design an access control strategy for the Payment folder for the Sales Managers group. What should you do？（）

A. Use IPSec in transport mode
B. Use Encrypting File System （EFS） over Web Distributed Authoring and Versioning （WebDAV）
C. Use PEAP-EAP-TLS
D. Use Encrypting File System （EFS） remote encryptio

查看答案

多选题

You need to design a remote access solution for the mobile sales users in the litwareinc.com domain. Which two actions should you perform？（）

A. Configure autoenrollment for user certificates and computer certificates
B. Configure Web enrollment for user certificates and computer certificates
Configure a Certificate Services hierarchy in the litwareinc.com domain
D. Configure qualified subordination between the litwareinc.com and the contoso.com domains
E. Configure PEAP authentication on the remote access server

查看答案