###BeginCaseStudy###
Testlet 1
Topic 4, A Datum Corporation
Overview
A)
Datum Corporation is an airline catering company that has 8,000 users. A. Datum has three main offices.
The offices are located in Detroit, Chicago, and New York.
Existing Environment
Active Directory Environment
The network contains an Active Directory forest named adatum.com. The forest contains a single domain. All
domain controllers run Windows Server 2012.
Each main office contains two domain controllers. Each office is configured as an Active Directory site.
The functional level of the forest is Windows Server 2012.
Network Infrastructure
The offices connect to each other by using a dedicated WAN link. Only the office in New York and the office in
Detroit connect directly to the Internet. Each office has a firewall.
The public DNS records for A. Datum are configured as shown in the following table.
The external interface for the firewall in the New York office is configured to use an IP address of
131.107.1.200 and to pass inbound traffic on port 25 and port 443 to EX2.
The external interface for the firewall in the Detroit office is configured to use an IP address of 131.107.2.200
and to pass inbound traffic on port 443 to EX4.
The Active Directory site is configured as shown in the Sites exhibit. (Click the Exhibit button.)
Exchange Server Organization
A)
Datum has an Exchange Server 2013 organization that contains two servers. The servers are
configured as shown in the following table.
Each server contains 15 mailbox databases.
Users use the name mail.adatum.com to connect to their mailbox from the Internet. The users use the FQDN of
the servers to connect from the internal network.
AM of the users in the Detroit office have a mailbox hosted on EX2.
The default email address policy contains a single email address format of @adatum.com.
A separate Send connector exists for the Chicago office and the New York office. The local servers in each
office are the only source servers in each Send connector.
The New York office is configured as a hub site. Antimalware filtering is disabled on EX1 and EX2.
Problem Statements
A)
Datum identifies the following issues:
Users in the Detroit office report that sometimes, Microsoft Outlook takes a long time to open.
During a recent storage failure, administrators failed to restore the latest backup and lost all of the email
messages from the previous 48 hours.
Users report that the email messages sent to some Internet domains are not received. Users in the Chicago
office report that some of their email messages generate a non-delivery report (NDR).
The help desk in the New York office reports that its most common Exchange-related task is to restore
email messages that were deleted by users more than 14 days ago. The task requires time-consuming
restore operations by the help desk.
Requirements
Business Requirements
A)
Datum wants to provide users with the ability to access their email from Internet Explorer 10, even when the
users are disconnected from the network. This ability must only be available if the users log on to Outlook Web
Access by using the Private option.
Planned Changes
You plan to deploy three additional Exchange Server 2013 servers. The servers will be configured as shown in
the following table.
After the planned deployment, all of the mailboxes of the Detroit office users will be moved to EX3. All of the
Detroit office users will use the name detroitmail.adatum.com when they connect from the Internet and the
name ex4.adatum.com when they connect from the internal network.
Technical Requirements
A)
Datum identifies the following technical requirements:
All existing and future mailboxes must be limited to 5 GB of storage.
Antimalware and anti-spam filtering must be enabled for the entire Exchange Server organization.If storage for the mailbox database fails, administrators must be able to recover email messages handled by
transport services for to the last five days.
Only the members of a group named Executives must be able to schedule meetings in a room mailbox
named Boardroom. Meeting requests must not be moderated.
All of the servers in the New York office that have the Client Access server role installed must be accessed
by using a load balancing solution that can mark a server as down if a specific URL on the server is
unavailable.
Mailbox Creation Requirements
A)
Datum identifies the following requirements for creating new mailboxes:
All mailboxes must automatically have single item recovery enabled.
All mailboxes must automatically have the Exchange ActiveSync feature disabled.
###EndCaseStudy###
DRAG DROP
You are evaluating the planned deployment of the additional Exchange Server 2013 servers.
You need to meet the technical requirement for installing all of the anti-spam agents and for enabling antimalware filtering.
What should you do? (To answer, drag the appropriate servers to the correct locations. Each server may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.)
Select and Place:
Answer: 
Explanation:
Anti-Spam Agents
http://technet.microsoft.com/en-us/library/bb201691(v=exchg.150).aspx
In Microsoft Exchange Server 2013, the following anti-spam agents are available in the Transport service on
Mailbox servers, but they are not installed by default:
Content Filter agent
Sender ID agent
Sender Filter agent
Recipient Filter agent
Protocol Analysis agent for sender reputation
However, you can install these anti-spam agents on a Mailbox server using a script in the Exchange
Management Shell. Typically, you would install the anti-spam agents on a Mailbox server only when your
organization accepts all incoming mail without any prior anti-spam filtering.
What happens if you install the available anti-spam agents in the Transport service on a Mailbox server, but you
also have other Exchange anti-spam agents operating on the messages before they reach the Mailbox server?
For example, what if you have a Microsoft Exchange 2007 or Exchange 2010 Edge Transport server in the
perimeter network that delivers incoming mail directly to the Transport service on the Mailbox server?
The anti-spam agents on the Mailbox server recognize the anti-spam X-header values that are added to
messages by other Exchange anti-spam agents, and messages that contain these X-headers pass through
without being scanned again. However, recipient look-ups performed by the Recipient Filter agent will occur
again on the Mailbox server.
Anti-malware filtering
By default, malware filtering is enabled in Microsoft Exchange Server 2013. The default anti-malware policy
controls your company-wide malware filtering settings.
As an administrator, you can view and edit, but not delete, the default anti-malware policy so that it is tailored to
best meet the needs of your organization.
For greater granularity, you can also create custom malware filter policies and apply them to specified users,
groups, or domains in your organization. Custom policies always take precedence over the default policy, but
you can change the priority (that is, the running order) of your custom policies.Client Access Servers
The Client Access Server role is simplified to be a stateless server that accepts and authenticates client
connections and acts as a proxy between the clients and the Mailbox server, ensuring that clients can locate
the Mailbox server with the required data.
No data or session state is stored on the Client Access server, and clients can connect to any Client Access
server and even switch Client Access servers during a session (previously, clients using some protocols had to
stay connected to the same server for an entire session), thereby reducing load-balancing complexity. Client
Access servers can be located in different sites from Mailbox servers, which provides flexibility for deployments.
STEPS
SERVERS ON WHICH TO INSTALL ALL OF THE ANTI-SPAM AGENTS
(NOT INSTALLED BY DEFAULT)
1. ANY OF EX1-EX4
2, EXCLUDE EX5
3,
STEPS
SERVERS ON WHICH TO ENABLE ANTIMALWARE FILTERING
1. ANY OF EX1-EX4
2. EXCLUDE EX5
3.
http://zahirshahblog.com/2013/02/05/deploying-and-configuring-exchange-server-2013-step-by-step-part-1-
installing-a-fresh-exchange-server-2013-messaging-organization-in-a-green-field-environment/
Malware protection settings, Exchange 2013 includes a brand-new enhanced feature for malware protection, by
default this feature is enabled on Exchange Mailbox Servers, but if you want you can also disable it.
Anti-Spam Protection: Exchange 2013 Help