getcertified4sure.com

70-980 Exam

Advanced Guide: exam 70 980



Your success in Microsoft exam 70 980 is our sole target and we develop all our 70 980 pdf braindumps in a way that facilitates the attainment of this target. Not only is our 70 980 pdf study material the best you can find, it is also the most detailed and the most updated. 70 980 pdf Practice Exams for Microsoft 70 980 dump are written to the highest standards of technical accuracy.

Q141. - (Topic 9) 

Your network contains an Active Directory domain named contoso.com. The domain contains three VLANs. The VLANs are configured as shown in the following table. 

All client computers run either Windows 7 or Windows 8. 

The corporate security policy states that all of the client computers must have the latest security updates installed. You need to implement a solution to ensure that only the client computers that have all of 

the required security updates installed can connect to VLAN 1. The solution must ensure 

that all other client computers connect to VLAN 3. 

Solution: You implement the IPsec enforcement method. 

Does this meet the goal? 

A. Yes 

B. No 

Answer:


Q142. - (Topic 9) 

Your network contains an Active Directory forest named contoso.com. The forest contains one domain. 

Your company plans to open a new division named Division1. A group named Division1Admins will administer users and groups for Division1. 

You identify the following requirements for Division1: 

All Division1 users must have a complex password that is 14 characters. 

Division1Admins must be able to manage the user accounts for Division1. 

Division1Admins must be able to create groups, and then delete the groups that they create. 

Division1Admins must be able to reset user passwords and force a password change at the next logon for all Division1 users. 

You need to recommend changes to the forest to support the Division1 requirements. 

What should you recommend? 

More than one answer choice may achieve the goal. Select the BEST answer. 

A. In the forest create a new organizational unit (OU) named Division1 and delegate permissions for the OU to the Division1Admins group. Move all of the Division1 user accounts to the new OU. Create a fine-grained password policy for the Division1 users. 

B. Create a new child domain named divisionl.contoso.com. Move all of the Division1 user accounts to the new domain. Add the Division1Admin members to the Domain Admins group. Configure the password policy in a Group Policy object (GPO). 

C. Create a new forest. Migrate all of the Division1 user objects to the new forest and add the Division1Admins members to the Enterprise Admins group. Configure the password policy in a Group Policy object (GPO). 

D. In the forest create a new organizational unit (OU) named Division1 and add Division1Admins to the Managed By attribute of the new OU. Move the Division1 user objects to the new OU. Create a fine-grained password policy for the Division1 users. 

Answer:


Q143. - (Topic 10) 

Your network contains a Hyper-V cluster named Cluster1. 

You install Microsoft System Center 2012 Virtual Machine Manager (VMM). 

You create a user account for another administrator named User1. 

You plan to provide User1 with the ability to manage only the virtual machines that User1 

creates. 

You need to identify what must be created before you delegate the required permissions. 

What should you identify? 

A. A service template 

B. A Delegated Administrator 

C. A cloud 

D. A host group 

Answer:


Q144. - (Topic 3) 

You need to recommend a Group Policy strategy to support the company's planned changes. 

What should you include in the recommendation? 

A. Link a Group Policy object (GPO) to the AllComputers OU in each domain. 

B. Link a Group Policy object (GPO) to litwareinc.com and configure filtering. 

C. Link a Group Policy object (GPO) to each domain. 

D. Link a Group Policy object (GPO) to the Boston site. 

Answer:

Explanation: 

D:\Documents and Settings\useralbo\Desktop\1.jpg 


Q145. - (Topic 10) 

Your network contains five Active Directory forests. 

You plan to protect the resources in one of the forests by using Active Directory Rights 

Management Services (AD RMS). 

Users in all of the forests will access the protected resources. 

You need to identify the minimum number of AD RMS clusters required for the planned 

deployment. 

What should you identify? 

A. Five root clusters 

B. Five licensing clusters 

C. One licensing cluster and five root clusters 

D. One root cluster and five licensing clusters 

Answer:


Q146. DRAG DROP - (Topic 9) 

Your network contains an Active Directory domain named contoso.com. The domain contains an IP Address Management (IPAM) server. 

You plan to delegate the administration of IPAM as shown in the following table. 

You need to recommend which IPAM security group must be used for each department. The solution must minimize the number of permissions assigned to each group. 

What should you recommend? 

To answer, drag the appropriate group to the correct department in the answer area. Each group may be used once, more than once, or not at all. Additionally, you may need to drag the split bar between panes or scroll to view content. 

Answer: 


Q147. DRAG DROP - (Topic 4) 

You need to recommend a solution for managing Windows Azure. 

Which three actions should you recommend performing in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order. 

Answer: 


Q148. - (Topic 10) 

Your network contains an Active Directory domain named contoso.com. 

The corporate security policy states that when new user accounts, computer accounts, and contacts are added to an organizational unit (OU) named Secure, the addition must be audited. 

You need to recommend an auditing solution to meet the security policy. 

What should you include in the recommendation? (Each answer presents part of the solution. Choose all that apply.) 

A. From the Default Domain Controllers Policy, enable the Audit directory services setting. 

B. Create a new Group Policy object (GPO) that is linked to the Secure OU, and then modify the Audit directory services setting. 

C. From the Secure OU, modify the Auditing settings. 

D. From the Default Domain Controllers Policy, enable the Audit object access setting. 

E. From the Secure OU, modify the Permissions settings. 

F. Create a new Group Policy object (GPO) that is linked to the Secure OU, and then modify the Audit object access setting. 

Answer: A,C 

Explanation: 

Creating a New Object: Resulting in multiple Event ID 5137 entries containing all attributes provided explicitly by the security principal that invoked the operation (but not those automatically generated by the system). Note that similar information also gets recorded if audit of User Account Management or Directory Service Access is enabled. 


Q149. DRAG DROP - (Topic 10) 

Your network contains an Active Directory domain named contoso.com. The domain contains four servers named Server1, Server2, Server3 and Server4 that run Windows Server 2012. 

Server1 and Server2 are configured as file servers and are part of a failover cluster named Cluster1. Server3 and Server4 have Microsoft SQL Server 2012 installed and are part of a failover cluster named Cluster2. 

You add a disk named Disk1 to the nodes in Cluster1. Disk1 will be used to store the data files and log files used by SQL Server 2012. 

You need to configure the environment so that access to Disk1 remains available when a node on Cluster1 fails over or fails back. 

Which three actions should you perform? 

To answer, move the three appropriate actions from the list of actions to the answer area and arrange them in the correct order. 

Answer: 


Q150. - (Topic 9) 

Your network contains an Active Directory forest that has two domains named contoso.com and europe.contoso.com. The forest contains five servers. The servers are configured as shown in the following table. 

You plan to manage the DHCP settings and the DNS settings centrally by using IP Address Management (IPAM). 

You need to ensure that you can use IPAM to manage the DHCP and DNS settings in both domains. The solution must use the minimum amount of administrative effort. 

What should you do? 

A. Upgrade DCE1 and DCE2 to Windows Server 2012, and then install the IP Address Management (IPAM) Server feature. Run the Set-IpamConfiguration cmdlet for each domain. 

B. Upgrade DCE1 and DCE2 to Windows Server 2012, and then install the IP Address Management (IPAM) Server feature. Run the Invoke-IpamGpoProvisioning cmdlet for each domain. 

C. Upgrade DC1 and DC2 to Windows Server 2012, and then install the IP Address Management (IPAM) Server feature. Run the Invoke-IpamGpoProvisioning cmdlet for each domain. 

D. Upgrade DC1 and DC2 to Windows Server 2012, and then install the IP Address Management (IPAM) Server feature. Run the Set-IpamConfiguration cmdlet for each domain. 

Answer:

Explanation: Invoke-IpamGpoProvisioning Creates and links group policies in the specified domain for provisioning required access settings on the servers managed by the computer running the IP Address Management (IPAM) server. http://technet.microsoft.com/en-us/library/jj553805.aspx 

Set-IpamConfiguration Sets the configuration for the computer running the IP Address Management (IPAM) server, including the TCP port number over which the computer running the IPAM Remote Server Administration Tools (RSAT) client connects with the computer running the IPAM server. http://technet.microsoft.com/en-us/library/jj590816.aspx 


© Copyright Getcertified4sure.com. examcollectionuk.com
All other trademarks and copyrights are the property of their respective owners.
All rights reserved.