You need to enable users from both domains to access resources in both domains
You have a single Active Directory directory service forest with two domains named contoso.com and corp.contoso.com. The domain functional level of each domain is set to Windows 2000 mixed. You need to enable users from both domains to access resources in both domains. What should you do?
Which tool should you choose?
Your company has a single Active Directory directory service domain. Servers in your environment run Windows Server 2003. Client computers run Windows XP or Windows Vista. You plan to create an internal centrally managed security update infrastructure for client computers. You need to choose a security update management tool that supports all the client computers.
Which tool should you choose?
You need to ensure that the AutoEnroll GPO applies to only the Windows Vista client computers
You have a single Active Directory directory service domain. All domain controllers run Windows Server 2003. The sales department uses Windows Vista client computers. The finance department uses Windows XP client computers. All client computers are in the Clients organizational unit (OU). A software restriction policy is linked to the Clients OU. You are planning a new certificate autoenrollment Group Policy object (GPO) named AutoEnroll for the sales department client computers. You need to ensure that the AutoEnroll GPO applies to only the Windows Vista client computers. What should you do?
Which tool should you choose?
Your company has a single Active Directory directory service domain. All servers in your environment run Windows Server 2003. Client computers run Windows XP or Windows Vista. You plan to create a security update scan procedure for client computers. You need to choose a security tool that supports all the client computers.
Which tool should you choose?
You need to enforce strong passwords for administrators who log on to domain controllers
You have a single Active Directory directory service domain. Web servers are located in an organizational unit (OU) named Web. You need to enforce strong passwords for administrators who log on to domain controllers. You must enforce account lockout policy for administrators who log on locally to Web servers. What should you do?
You need to ensure that a specific user can back up the CA and configure the audit parameters on the CA
Your company has a single Active Directory directory service domain. All servers in your environment run Windows Server 2003. You have a stand-alone server that serves as a Stand- alone root certification authority (CA). You need to ensure that a specific user can back up the CA and configure the audit parameters on the CA.
What should you do?
You need to improve user logon times from the corp
Your company has a single Active Directory directory service forest with four domains. The domains are named contoso.com, corp.contoso.com, fabrikam.com, and corp.fabrikam.com. Users in the corp.contoso.com domain frequently access resources that are located in the corp.fabrikam.com domain. You need to improve user logon times from the corp.contoso.com domain to the corp.fabrikam.com domain. What should you do?
Which technology and edition should you choose? (Each correct answer presents part of the solution
Servers in your environment run Windows Server 2003. You plan to configure a highly available file server. You need to choose the appropriate high-availability technology and the minimum Windows Server 2003 edition for this server.
Which technology and edition should you choose? (Each correct answer presents part of the solution. Choose two.)
You need to create the minimum number of trust relationships required for the users in the child1
You are the network administrator for Northwind Traders. The network consists of a single Active Directory forest. The functional level of the forest is Windows Server 2003. The forest consists of a forest root domain named northwindtraders.com and a child domain named child1.northwindtraders.com. The child1.northwindtraders.com domain contains all of the user accounts for the network. Your company acquires a company named Contoso, Ltd. The Contoso, Ltd., network consists of a single Active Directory
forest that contains a forest root domain named contoso.com and a child domain named child1.contoso.com. All domain controllers run Windows 2000 Server. Both domains contain user accounts and resource servers. The domains and existing trust relationships are shown in the exhibit.
You need to create the minimum number of trust relationships required for the users in the child1.northwindtraders.com domain to access resources in both domains in the contoso.com forest. What should you do?
You need to generate a report that compares the current settings of each application server with the required
You are the network administrator for Company. The network consists of a single Active Directory domain named Company.com. The network contains 10 application servers that run Windows Server 2003.
The application servers are accessed from the Company network and from the Internet. The network design requires that the application servers must have specifically configured security settings, including the password policy, audit policies, and security options settings. You create a security template named App.inf that contains the security settings required by the network design. You are concerned that an unauthorized user will modify the configuration and gain access to the application servers. You want to capture any changes made to the security settings of the application servers.
You need to generate a report that compares the current settings of each application server with the required settings every 24 hours.
What should you do?