多选题You are a network administrator for your company. The design team provides you with the following list of requirements for server disaster recovery：   No more than two sets of tapes can be used to restore to the previous day.  A full backup of each ser

第1题：

第2题：

Your network consists of a single Active Directory domain. The functional level of the domain is Windows Server 2008 R2. All servers run Windows Server 2008 R2.   A corporate security policy requires complex passwords for user accounts that have administrator  privileges. You need to design a strategy that meets the following requirements： èEnsures that administrators use complex passwords   èMinimizes the number of servers required to support the solution What should you include in your design？（）

• A、Implement Network Access Protection （NAP）.
• B、Implement Active Directory Rights Management Services （AD RMS）.
• C、Create a new Password Settings Object （PSO） for administrator accounts.
• D、Create a new child domain in the forest. Move all non-administrator accounts to the new domain.Configure a complex password policy in the root domain.

第3题：

You work as a network administrator in your company. Communication inside the company is ensured by network environments, such as GET VPN, Dynamic Multipoint VPN and Ethernet. Which PIN architecture is applicable in those environments?（）

• A、Campus
• B、Teleworker
• C、Branch
• D、Data center

第4题：

You are the network administrator for your company. The network consists of a single Active Directory domain. The network contains 50 application servers that run Windows Server 2003.   The security configuration of the application servers is not uniform. The application servers were deployed by local administrators who configured the settings for each of the application servers differently based on their knowledge and skills. The application servers are configured with different authentication methods， audit settings， and account policy settings.   The security team recently completed a new network security design. The design includes a baseline configuration for security settings on all servers. The baseline security settings use the Hisecws.inf predefined security template. The design also requires modified settings for servers in an application role. These settings include system service startup requirements， renaming the administrator account， and more stringent account lockout policies. The security team created a security template named Application.inf that contains the modified settings.   You need to plan the deployment of the new security design. You need to ensure that all security settings for the application servers are standardized， and that after the deployment， the security settings on all application servers meet the design requirements.   What should you do？ （）

• A、 Apply the Setup security.inf template first， the Hisecws.inf template next， and then the Application.inf template.
• B、 Apply the Application.inf template and then the Hisecws.inf template.
• C、 Apply the Application.inf template first， the Setup security.inf template next， and then the Hisecws.inf template.
• D、 Apply the Setup security.inf template and then the Application.inf template.

第5题：

You are the network administrator for ExamSheet.net.  You install Windows 2000 Professional on your portable computer. You use a docking station for your portable computer when you are in the office. You install a ISA-based network adapter in your docking station. You insert your computer into the docking station and start the computer. The network adapter is not detected during the startup process. You obtain a disk that contains the supported driver from the network adapter manufacturer. You want to allow Windows 2000 Professional to use the network adapter. What should you do?（）

• A、Restart the computer in the docking station.
• B、Run the Add/Remove Hardware wizard.
• C、Use Device Manager to scan for hardware changes.
• D、Copy the network adapter driver to the Winnt/Driver Cache/i386 folder.
• E、Install the new network adapter driver.

第6题：

You are a network administrator for ExamSheet.net's Windows 2000 network.  Your computer is installed with Windows 2000 Professional. You schedule a task that will copy files from your computer to another computer on the network. You notice that the task is not completing correctly. You manually copy the files from your computer to other computers on the network without any errors. You verify that all of your other tasks are working correctly. You want the task to complete successfully.  What should you do? （）

• A、Start the Remote Procedure Call （RPC） Locater service and configure the service to start automatically.
• B、Start the RunAs service and configure the service to start automatically.
• C、Configure the Task Scheduler service account to use the local Administrator account and password. Restart the service.
• D、Use Scheduled Tasks to configure the task to run under the security context of your account.

第7题：

You are the network administrator for your company. A Windows Server 2003 computer named Router11 is used to connect the network to the Internet. You find out that some computers on the network are infected with a worm， which occasionally sends out traffic to various hosts on the Internet. This traffic always uses a certain source TCP port number.You need to identify which computers are infected with the worm. You need to configure a solution on Router11 that will perform the following two tasks： Detect and identify traffic that is sent by the worm.   Immediately send a notification to a network administrator that the infected computer needs to be repaired.  What should you do？（）

• A、Configure a WMI event trigger.
• B、Configure a Network Monitor capture filter.
• C、Configure a Network Monitor trigger.
• D、Configure a System Monitor alert.

第8题：

You are a network administrator for your company. You currently automate backups of the System State data on the servers in your network by using NTBackup. Your manager instructs you to document the procedure for restoring a server from a backup of the System State data.You need to select the correct method for performing a restoration of a backup of the System State data.What should you do?（）

• A、Run the following command: ntbackup.exe backup /F {"FileName"}
• B、Run the following command: ntbackup.exe backup systemstate /F {"FileName"}
• C、In Control Panel, open System, and configure the Startup and Recovery settings on the Advanced tab.
• D、Use NTBackup interactively.

第9题：

第10题：

第11题：

第12题：

第13题：

You are an administrator of a switched network and your goal is to reduce some of the administrative overhead on your network. You plan on achieving this by configuring a new VLAN for each department in your network. However, you need to share the VLAN information across numerous switches throughout your network. Which of the following would allow you accomplish this?（）

• A、STP
• B、GVRP
• C、SNMP
• D、VTP
• E、DHCP

第14题：

You are the network administrator for passguide.com. Which device will you install in your computer to make wireless connections you and a network?（）

• A、Repeater
• B、Wireless router
• C、Hub
• D、Wireless network adapter

第15题：

You work as the enterprise exchange administrator at TestKing.com. TestKing.com makes use of Microsoft Exchange Server messaging solution. The TestKing.com network consists of a single ActiveDirectory domain named testking.com. TestKing.com is configured to run an exchange 2010 environment.  You are planning to design the installation of numerous Mailbox servers. TestKing.com Service LevelAgreement （SLA） requires the following： * The servers need to support 1，500 concurrent connections to mailboxes.* The servers need to maintain a latency of less than 20 milliseconds. You ensure deployment success you need to ensure that your design comply with the Service LevelAgreement （SLA） of TestKing.com. What should you do？（）

• A、The best option is to use the Exchange Server User Monitor （ExMon） tool to check if your design meets the requirements.
• B、The best option is to use the Exchange Server Load Generator （LoadGen） 2010 tool to check if your design meets the requirements.
• C、The best option is to use the Exchange Server Connectivity Analyzer （ExRCA） tool to check if your design meets the requirements.
• D、The best option is to use the Exchange Server Jetstress 2010 tool to check if you design meets there quirements.

第16题：

You are a network administrator for your company. All domain controllers run Windows Server 2003. The network contains 50 Windows 98 client computers， 300 Windows 2000 Professional computers， and 150 Windows XP Professional computers.   According to the network design specification， the Kerberos version 5 authentication protocol must be used for all client computers on the internal network.   You need to ensure that Kerberos version 5 authentication is used for all client computers on the internal network.   What should you do？  （）

• A、 On each domain controller， disable Server Message Block （SMB） signing and encryption of the secure channel traffic.
• B、 Replace all Windows 98 computers with new Windows XP Professional computers.
• C、 Install the Active Directory Client Extensions software on the Windows 98 computers.
• D、 Upgrade all Windows 98 computers to Windows NT Workstation 4.0.

第17题：

You are the network administrator for Company. Company has recently upgraded its network to a 100Mbps standard and you are now in the process of removing all the old adapter and installing a new Token Ring network adapter into the Windows 2000 Professional computer. On the first computer you install the new hardware and configure the static TCP/IP protocol settings to be the same as they were for the previously installed network adapter. When you restart the computer, however, you cannot access the network. You try to ping your network adapter's TCP/IP address locally. You receive the following error message: "Request timed out." You want to enable the computer to communicate on the new network. What should you do? （）

• A、Enable DHCP in the TCP/IP properties.
• B、Replace the Token Ring network adapter with an Ethernet network adapter.
• C、Configure a different TCP/IP address on the same subnet.
• D、Configure a valid DNS Server in the TCP/IP properties.

第18题：

You are the network administrator for your company. The network consists of a single Active Directory domain. The network contains an application server running Windows Server 2003.   Users report intermittent slow performance when they access the application server throughout the day. You find out that the network interface on the application server is being heavily used during the periods of slow performance. You suspect that a single computer is causing the problem.You need to create a plan to identify the problem computer.   What should you do？（）

• A、 Monitor the performance monitor counters on the application server by using System Monitor.  
• B、 Monitor the network traffic on the application server by using Network Monitor.
• C、 Monitor network statistics on the application server by using Task Manager.
• D、 Run network diagnostics on the application server by using Network Diagnostics.

第19题：

You are the network administrator for your company. The network contains a single Active Directory domain. All computers on the network are members of the domain. All domain controllers run Windows Server 2003.   You are planning a public key infrastructure （PKI）. The PKI design documents for your company specify that certificates that users request to encrypt files must have a validity period of two years.   The validity period of a Basic EFS certificate is one year. In the Certificates Templates console， you attempt to change the validity period for the Basic EFS certificate template. However， the console does not allow you to change the value.  You need to ensure that you can change the value of the validity period of the certificate that users request to encrypt files. What should you do？  （）

• A、 Install an enterprise certification authority （CA） in each domain.
• B、 Assign the Domain Admins group the Allow - Full Control permission for the Basic EFS certificate template.
• C、 Create a duplicate of the Basic EFS certificate template. Enable the new template for issuing certificate authorities.
• D、 Instruct users to connect to the certification authority （CA） Web enrollment pages to request a Basic EFS certificate.

第20题：

第21题：

第22题：

第23题：

第24题：