70-680 Exam
Top Tips Of 70-680 pdf
All It all professionals know this Microsoft 70-680 review and aspire to include in which key demanding official certifications. This can be the leading cost official certifications with Microsoft that is certainly favorite worldwide. You will discover the preferred occupation that you regarded with growing Microsoft 70-680 ensure that you passing for that official certifications. This specific 70-680 review inquiries and answers go over the whole review plans and get ended up looked at regarding their precision, consequently, ensuring a person achievement with your official certifications review.
2021 Mar 70-680 free practice questions
Q281. - (Topic 6)
A company has Windows 7 Enterprise computers that use BitLocker drive encryption on operating system drives.
You need to configure multi-factor authentication before client computers are booted into Windows.
On each client computer, what should you do?
A. Require the use of a startup key.
B. Implement fingerprint authentication.
C. Implement a Dynamic Password Policy.
D. Implement a Dynamic Access Control policy.
E. Configure a TPM PIN.
Answer: E
Explanation: BitLocker supports multifactor authentication for operating system drives. If you enable BitLocker on a computer that has a TPM version 1.2, you can use additional forms of authentication with the TPM protection. BitLocker offers the option to lock the normal boot process until the user supplies a personal identification number (PIN) or inserts a USB device (such as a flash drive) that contains a BitLocker startup key, or both the PIN and the USB device can be required. These additional security measures provide multifactor authentication and help ensure that the computer will not start or resume from hibernation until the correct authentication method is presented.
Q282. - (Topic 1)
Which Windows Setup configuration pass applies settings to Windows 7 before Windows Welcome starts?
A. oobeSystem
B. auditSystem
C. specialize
D. offlineServicing
Answer: A
Q283. - (Topic 3)
You have a computer that runs Windows 7. You need to ensure that all users are required to enter a username and password when uninstalling applications from the computer. What should you do from Local Group Policy Editor?
A. Configure a software restriction policy.
B. Modify the Add or Remove Programs settings.
C. Configure an AppLocker Windows Installer rule.
D. Modify the User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode setting.
Answer: D
Q284. - (Topic 4)
Your company office network includes a file server that has Windows Server 2008 R2 installed and client computers that have Windows 7 Enterprise installed. The computers are members of an Active Directory domain. The file server has the BrachCache features installed.
All client computers have Windows Firewall along with Advanced Security enabled for all network profiles.
You need to ensure that client computers can access cached files stored on the file server.
What should you do?
A. Run the Netsh branchcache set service mode=HOSTEDSERVER client authentication=NONE command
B. Configure firewall exception rules for multicast traffic, inbound and outbound traffic for local UDP port 3702, and inbound and outbound trafficfor local TCP port 80.
C. Create a Group Policy that sets Hash Publication for BranchCache as disabled.
D. Run the netsh branchcache set service mode=DISTRIBUTED command.
E. Create a Group Policy object and configure the Set percentage of disk space used for client computer cache option.
F. Check permisions.
G. Run the netsh branchcache set service mode=HOSTEDCLIENT command.
H. Create a Group Policy object and enable the Set BranchCache Hosted Cache mode policy.
I. Configure firewall exception rules for inbound and outbound traffic for local TCP port 80 and for inbound and outbound traffic for local TCP port 8443.
Answer: G
Q285. - (Topic 2)
You have a computer that runs Windows 7. Multiple users log on to the computer. The computer has five removable devices.
You need to ensure that users can only access removable devices that have been previously installed on the computer.
What should you modify in the Local Group Policy?
A. Enable the Prevent redirection of USB devices setting.
B. Enable the Prevent installation of removable devices setting.
C. Disable the WPD Devices: Deny read access setting.
D. Disable the Allow administrators to override Device Installation Restriction policies setting.
Answer: B
Explanation:
Prevent installation of removable devices This policy setting allows you to prevent Windows from installing removable devices. A device is considered removable when the driver for the device to which it is connected indicates that the device is removable. For example, a Universal Serial Bus (USB) device is reported to be removable by the drivers for the USB hub to which the device is connected. This policy setting takes precedence over any other policy setting that allows Windows to install a device. If you enable this policy setting, Windows is prevented from installing removable devices and existing removable devices cannot have their drivers updated. If you enable this policy setting on a remote desktop server, the policy setting affects redirection of removable devices from a remote desktop client to the remote desktop server. If you disable or do not configure this policy setting, Windows can install and update device drivers for removable devices as allowed or prevented by other policy settings. NOT Prevent redirection of USB devicesThis policy setting prevents redirection of USB devices. If you enable this setting, an alternate driver for USB devices cannot be loaded. If you disable or do not configure this setting, an alternate driver for USB devices can be loaded.
Update 70-680 exam question:
Q286. - (Topic 5)
You use a computer that has Windows 7 SP1 installed to access your company's internal website. The website requires a secure connection. The certificate is a self-signed Secure Socket Layer (SSL).
You attempt to connect to the internal website. You receive the following error message:
"There is a problem with this website's security certificate."
You need to be able to connect to the internal website successfully.
What should you do?
A. From Internet Explorer, add the website to the Local Intranet zone.
B. From Certificate Manager, import the website's certificate into your Intermediate Certification Authorities store.
C. From Certificate Manager, import the website's certificate into your computer's Personal store.
D. From Internet Explorer, add the website to the Trusted Sites zone.
Answer: C
Q287. - (Topic 3)
You have two computers named Computer1 and Computer2 that run Windows 7.
You connect from Computer1 to Computer2 by using Remote Desktop.
You discover that you cannot copy any files between the computers during the Remote Desktop session.
You need to ensure that you can copy files between the computers during the Remote Desktop session.
What should you do?
A. On Computer1, open Windows Firewall and allow file and printer sharing.
B. On Computer2, open Windows Firewall and allow file and printer sharing.
C. On Computer1, open Remote Desktop Connection and configure the Local devices and resources setting.
D. On Computer2, open Remote Desktop Connection and configure the Local devices and resources setting.
Answer: C
Explanation:
How can I use my devices and resources in a Remote Desktop session? Redirecting a device on your computer makes it available for use in a Remote Desktop session. If you have a recent version of Remote Desktop, you can redirect most devices, including printers, smart cards, serial ports, drives, Plug and Play devices, media players based on the Media Transfer Protocol (MTP), and digital cameras based on the Picture Transfer Protocol (PTP). Some USB devices can be redirected, and you can also redirect your Clipboard.
Q288. - (Topic 3)
You have a computer that runs Windows 7.
You have an application control policy on the computer.
You discover that the policy is not enforced on the computer.
You open the Services snap-in as shown in the exhibit. (Click the Exhibit button.)
You need to enforce the application control policy on the computer.
What should you do?
A. Set the Application Identity service Startup Type to Automatic and start the service.
B. Set the Application Information service Startup Type to Automatic and start the service.
C. Set the Application Management service Startup Type to Automatic and start the service.
D. Set the Application Experience service Startup Type to Automatic and start the service.
Answer: A
Explanation:
Application Identity service AppLocker relies upon the Application Identity Service being active. When you install Windows 7, the startup type of this service is set to Manual. When testing AppLocker, you should keep the startup type as Manual in case you configure rules incorrectly. In that event, you can just reboot the computer and the AppLocker rules will no longer be in effect. Only when you are sure that your policies are applied correctly should you set the startup type of the Application Identity Service to Automatic. You should take great care in testing AppLocker rules because it is possible to lock down a computer running Windows 7 to such an extent that the computer becomes unusable. AppLocker policies are sometimes called application control policies
Q289. - (Topic 4)
A company has a server running Windows Server 2008 R2, with Windows Deployment Services (WDS), the Microsoft Deployment Toolkit (MDT), and the Windows Automated Installation Kit (WAIK) set up. The company also has client computers running Windows 7 Enterprise.
You need to remove some files from a virtual hard disk on a client computer.
What should you do first?
A. use Sysprep with an answer file and set the PersistAHDeviceinstalls option in the answer file to True.
B. Run the BCDEdit /delete command.
C. Run the Start/w ocsetup command.
D. Use Sysprep with an answer file and set the UpdateinstalledDriversoption in the answer file to Yes.
E. Run the Dism command with the /Add-Driver option.
F. Add a boot image and create a capture image in WDS.
G. Run the PEImg /Prepcommand.
H. Run the ImageX command with the /Mount parameter.
I. Run the Dism command with the /Mount-Wim option.
J. Use Sysprep with an answer file and set the UpdateInstalledDriversoption in the answer file to No.
K. Run the Dism command with the /Add-Package option.
L. Run the DiskPart command and the Attach command option.
M. Use Sysprep with an answer file and set the PersistAllDeviceInstalls option in the answer file to False.
Answer: L
Explanation:
DiskPart.exe and managing Virtual Hard Disks (VHDs) in Windows 7 In Windows 7, new commands have been added in DiskPart to allow for the creation and management of Virtual Hard Disks (.vhd files). The DiskPart VHD management commands have been provided below in 2 sections – commonly used commands with examples and other commands. It is assumed in each of the examples that DiskPart.exe has already been launched in an elevated command prompt.
Creating a VHD
The example below creates a 20GB dynamically expanding VHD called "test.vhd" and places it in the root of the C: drive. Note that the type parameter is optional and the default type is fixed. create vdisk file=c:\test.vhd maximum=20000 type=expandable
Attaching a VHD
The following example shows how to select and attach the VHD. It also provides steps for partitioning, formatting and assigning a drive letter to the attached VHD.
select vdisk file=c:\test.vhd
attach vdisk
create partition primary
format fs=ntfs label="Test VHD" quick
assign letter=v
Detaching the VHD
To detach (i.e. unmount) the VHD, use the following example:
select vdisk file=c:\test.vhd
detach vdisk
Q290. - (Topic 1)
You have a computer that runs Windows 7.
You need to modify the file extensions that are associated to Internet Explorer.
What should you do?
A. From Internet Explorer, click Tools and then click Manage Add-ons.
B. From Control Panel, open Default Programs and then click Set Associations.
C. From the local Group Policy, expand Computer Configuration and then click Software Settings.
D. From Window Explorer, right-click %programfiles%\Internet Explorer\iexplore.exe and then click Properties.
Answer: B