Highest Quality of 70-680 test preparation materials and practice for Microsoft certification for candidates, Real Success Guaranteed with Updated 70-680 pdf dumps vce Materials. 100% PASS TS:Windows 7,Configuring exam Today!
Q231. - (Topic 2)
You have a computer that runs Windows 7 and Windows Internet Explorer 8. You discover that your browsing history is sent to a third-party advertising content provider. You need to prevent the browsing history from being sent only to that specific content provider. What should you do?
A. Enable InPrivate Filtering and click Automatically block.
B. Add the Web site for the content provider to the Restricted sites zone.
C. Enable InPrivate Filtering and select the Choose content to block or allow option.
D. View the privacy policy for the Web site and enable the Never allow this site to use cookies option.
Answer: C
Q232. - (Topic 4)
You administer a computer that has Windows 7 and Internet Explorer 8 installed.
You discover that two users have installed a new toolbar in to their browsers. The toolbar is using an unapproved search engine.
You need to prevent the users from using the unapproved search engine.
What should you do?
A. From Program and Features in the Control Panel, uninstall the toolbar.
B. From Internet Explorer, delete the browsing history and all locally stored files.
C. Start Internet Explorer in InPrivate Browsing session.
D. From an elevated command prompt, run %systemdrive%\Program files\Internet Explorer\iecleanup.exe
Answer: A
Q233. - (Topic 2)
A user telephones your help desk. She has just accidentally deleted a file she was working on earlier that day.
You have configured her computer to carry out backups every evening, and you installed a new graphics driver two days ago.
How should you advise the user to retrieve her file?
A. Open the Backup And Restore console and restore the file from backup.
B. Use the Restore Previous Versions feature to restore the file.
C. Open her Recycle Bin, right-click the file, and choose Restore.
D. Perform a system restore.
Answer: C
Q234. - (Topic 2)
You have a computer that runs windows 7.
You have a third-party application.
You need to ensure that only a specific version of the application runs on the computer.
You have the application vendor's digital signature.
What should you do?
A. From Application Control Policies, configure a path rule.
B. From Application Control Policies, configure a publisher rule.
C. From Software Restriction policies, configure a path rule.
D. From Software Restriction policies, configure a certificate rule.
Answer: B
Explanation:
AppLocker Application Control Policies AppLocker is a feature new to Windows 7 that is available only in the Enterprise and Ultimate editions of the product. AppLocker policies are conceptually similar to Software Restriction Policies, though AppLocker policies have several advantages, such as the ability to be applied to specific user or group accounts and the ability to apply to all future versions of a product. As you learned earlier in this chapter, hash rules apply only to a specific version of an application and must be recalculated whenever you apply software updates to that application. AppLocker policies are located in the Computer Configuration\Windows Settings\ Security Settings \Application Control Policies node of a standard Windows 7 or Windows Server 2008 R2 GPO. AppLocker relies upon the Application Identity Service being active. When you install Windows 7, the startup type of this service is set to Manual. When testing AppLocker, you should keep the startup type as Manual in case you configure rules incorrectly. In that event, you can just reboot the computer and the AppLocker rules will no longer be in effect. Only when you are sure that your policies are applied correctly should you set the startup type of the Application Identity Service to Automatic. You should take great care in testing AppLocker rules because it is possible to lock down a computer running Windows 7 to such an extent that the computer becomes unusable. AppLocker policies are sometimes called application control policies. AppLocker Application Control Policies - Publisher Rules Publisher rules in AppLocker work on the basis of the code-signing certificate used by the file's publisher. Unlike a Software Restriction Policy certificate rule, it is not necessary to obtain a certificate to use a publisher rule because the details of the digital signature are extracted from a reference application file. If a file has no digital signature, you cannot restrict or allow it using AppLocker publisher rules. Publisher rules allow you more flexibility than hash rules because you can specify not only a specific version of a file but also all future versions of that file. This means that you do not have to re-create publisher rules each time you apply a software update because the existing rule remains valid. You can also allow only a specific version of a file by setting the Exactly option.AppLocker Application Control Policies - Path RulesAppLocker path rules work in a similar way to Software Restriction Policy path rules. Path rules let you specify a folder, in which case the path rule applies to the entire contents of the folder, including subfolders, and the path to a specific file. The advantage of path rules is that they are easy to create. The disadvantage of path rules is that they are the least secure form of AppLocker rules. An attacker can subvert a path rule if they copy an executable file into a folder covered by a path rule or overwrite a file that is specified by a path rule. Path rules are only as effective as the file and folder permissions applied on the computer.
Software Restriction Policies Software Restriction Policies is a technology available to clients running Windows 7 that is available in Windows XP, Windows Vista, Windows Server 2003, and Windows Server 2008. You manage Software Restriction Policies through Group Policy. You can find Software Restriction Policies in the Computer Configuration \Windows Settings\Security Settings\Software Restriction Policies node of a group policy. When you use Software Restriction Policies, you use the Unrestricted setting to allow an application to execute and the Disallowed setting to block an application from executing. You can achieve many of the same application restriction objectives with Software Restriction Policies that you can with AppLocker policies. The advantage of Software Restriction Policies over AppLocker policies is that Software Restriction Policies can apply to computers running Windows XP and Windows Vista, as well as to computers running Windows 7 editions that do not support AppLocker. The disadvantage of Software Restriction Policies is that all rules must be created manually because there are no built-in wizards to simplify the process of rule creation.Software Restriction Policies - Path Rules Path rules, allow you to specify a file, folder, or registry key as the target of a Software Restriction Policy. The more specific a path rule is, the higher its precedence. For example, if you have a path rule that sets the file C: \Program files\Application\App.exe to Unrestricted and one that sets the folder C:\Program files\Application to Disallowed, the more specific rule takes precedence and the application can execute. Wildcards can be used in path rules, so it is possible to have a path rule that specifies C:\Program files\Application\*.exe. Wildcard rules are less specific than rules that use a file's full path. The drawback of path rules is that they rely on files and folders remaining in place. For example, if you created a path rule to block the application C:\Apps\Filesharing.exe, an attacker could execute the same application by moving it to another directory or renaming it something other than Filesharing.exe. Path rules work only when the file and folder permissions of the underlying operating system do not allow files to be moved and renamed. Software Restriction Policies - Certificate Rules Certificate rules use a code-signed software publisher's certificate to identify applications signed by that publisher. Certificate rules allow multiple applications to be the target of a single rule that is as secure as a hash rule. It is not necessary to modify a certificate rule in the event that a software update is released by the vendor because the updated application will still be signed using the vendor's signing certificate. To configure a certificate rule, you need to obtain a certificate from the vendor. Certificate rules impose a performance burden on computers on which they are applied because the certificate's validity must be checked before the application can execute. Another disadvantage of certificate rules is that they apply to all applications from a vendor. If you want to allow only 1 application from a vendor to execute but the vendor has 20 applications available, you are better off using a different type of Software Restriction Policy because otherwise users can execute any of those other 20 applications.
Q235. - (Topic 3)
You need to reduce the amount of space currently being used to store system restore points.
What should you do?
A. Run Disk Cleanup.
B. Run Msconfig.exe.
C. Configure disk quotas.
D. Configure Windows Backup.
Answer: A
Explanation:
Shadow info:
Shadow copies are automatically saved as part of a restore point. If system protection is enabled, Windows 7 automatically creates shadow copies of files that have been modified since the last restore point was created. By default, new restore points are created every seven days or whenever a significant system change (such as a driver or application installation) occurs.
NOT Disk Quota:Does not directly affect size of System Restore Points.
Q236. DRAG DROP - (Topic 5)
Windows 7 client computers in your company network are assigned IP addresses manually or by using DHCP.
Recent changes have been made to a DHCP Server scope. Desktops that have manually assigned IP addresses are reporting that they can no longer connect to the Internet.
You need to ensure that all client computers receive IP address and DNS servers' addresses from the DHCP server.
Which commands should you run? (To answer, move the appropriate commands from the list of commands to the answer area and arrange them in the correct order.)
Answer:
Q237. - (Topic 4)
You administer client computers that have Windows 7 Enterprise installed.
A server names Server1 has an IP address of 10.10.4.46. The server accepts Remote Desktop connections at a custom port 10876.
You need to connect to the server from a client computer by using Remote Desktop.
What should you do?
A. From an elevated command prompt, run mstsc.exe /v:server1:10876
B. From an elevated command prompt, run msts.exe 10.10.4.56 port:10876
C. From an elevated command prompt, run msts.exe Server1 port:10876
D. From the Advanced tab of your remote Desktop connection, configure the IP address and port of Server1 as the RD Gateway Server
Answer: A
Explanation:
http://windows.microsoft.com/en-us/windows-vista/Use-command-line-parameters-with-Remote-Desktop-Connection
Use command line parameters with Remote Desktop Connection
Instead of starting Remote Desktop Connection from the Start menu, you can start it from the search box in this version of Windows, from the Run dialog box, or from a command line. With these methods, you can use additional command line parameters to control how
Remote Desktop Connection looks or behaves.
To start Remote Desktop from the Run dialog box, follow these steps:
Click the Start button , click All Programs, click Accessories, and then click Run.
In the Open box, type mstsc.
Type a space, followed by any additional parameters that you want to use.
The following table lists the parameters you can use.
Command line syntax for Remote Desktop Connection
Syntax
mstsc [<connection file>] [/v:<server[:port]>] [/admin] [/f[ullscreen]] [/w:<width>]
[/h:<height>] [/public] | [/span] [/edit "connection file"] [/migrate] [/?]
Command line parameters for Remote Desktop Connection ParameterDescription
Q238. - (Topic 6)
Your laptop has a 400 GB drive and currently reserves, by default, 2% (8 GB) for shadow copies.
You need to reserve more space for previous versions of files.
What should you do?
A. From System Properties, System Protection, expand the Max Usage to 20 GB.
B. From System Properties, System Protection, turn off system protection.
C. From Disk Properties, change the Quota Settings from 8 GB to 20 GB.
D. From an elevated command prompt, run vssadmin add shadowstorage /for=c: /on = c: /maxsize = 20gb.
Answer: A
Explanation: Control Panel->System and Security. >System [Properties]->System Protection->Configure
Q239. - (Topic 5)
You have a computer that runs a 32-bit version of Windows 7 Home Premium. The computer has a single partition on a single hard disk drive.
You want to test a 64-bit version of Windows 7 Ultimate. You configure the computer for a dual boot with previously installed Windows 7 Home Premium.
You need to configure the computer to support the dual boot.
What should you do?
A. Reinstall Windows 7 Home Premium 32 bit as a 64-bit version.
B. Start Windows 7 Home Premium. Create and mount a new Windows Imaging Format (WIM) file with Windows 7 Ultimate files.
C. Shrink the existing partition and create a new partition to start Windows 7 Ultimate.
D. Install Virtual PC into Windows 7 Home Premium.
Answer: C
Explanation: Easily Shrink a Volume on a Windows 7 Disk The Windows 7 Disk Management tool provides a simple interface for managing partitions and volumes. There is an easy way to shrink a volume to free up space so you can create a new partition on your disk.
Q240. - (Topic 1)
You have a computer that runs Windows 7.
You need to view the processes that currently generate network activity.
What should you do?
A. Open Resource Monitor and click the Network tab.
B. Open Windows Task Manager and click the Networking tab.
C. Open Event Viewer and examine the NetworkProfile Operational log.
D. Open Performance Monitor and add all the counters for network interface.
Answer: A
Explanation:
Resource Monitor Windows 7 offers an enhanced version of the Resource Monitor tool. Windows 7 Resource Monitor allows you to view information about hardware and software resource use in real time. You can filter the results according to the processes or services that you want to monitor. You can also use Resource Monitor to start, stop, suspend, and resume processes and services, and to troubleshoot unresponsive applications. You can start Resource Monitor from the Processes tab of Task Manager or by entering resmon in the Search box on the Start menu. To identify the network address that a process is connected to, click the Network tab and then click the title bar of TCP Connections to expand the table. Locate the process whose network connection you want to identify. You can then determine the Remote Address and Remote Port columns to see which network address and port the process is connected to.