Your network contains an Active Directory domain named contoso.com. The functional level of the forest and
the domain is Windows Server 2008 R2.
The domain contains the servers configured as shown in the following table:

All servers run Windows Server 2016. All client computers run Windows 10.
You have an organizational unit (OU) named Marketing that contains the computers in the marketing
department.
You have an OU named Finance that contains the computers in the finance department.
You have an OU named AppServers that contains application servers.
A Group Policy object (GPO) named GP1 is linked to the Marketing OU. A GPO named GP2 is linked to the
AppServers OU.
You install Windows Defender on Nano1.
You need to disable SMB 1.0 on Server2. What should you do?

Your company has an accounting department.
The network contains an Active Directory domain named contoso.com. The domain contains 10 servers.
You deploy a new server named Server11 that runs Windows Server 2016.
Server11 will host several network applications and network shares used by the accounting department.
You need to recommend a solution for Server11 that meets the following requirements:
-Protects Server11 from address spoofing and session hijacking
-Allows only the computers in We accounting department to connect to Server11
What should you recommend implementing?

You have a server named Server1 that runs Windows Server 2016.
You need to identity whether any connection security rules are configured on Server1.
Which cmdlet should you use?

You have a server named Server1 that runs Windows Server 2016.
You need to identify whether ICMP traffic is exempt from IPsec on Server1.
Which cmdlet should you use?

You have a server named Server1 that runs Windows Server 2016.
You need to identify whether IPsec tunnel authorization is configured on Server1.
Which cmdlet should you use?

You have a server named Server1 that runs Windows Server 2016.
You need to view all of the inbound rules on Server1.
Which cmdlet should you use?

Your network contains an Active Directory domain named contoso.com.
You are deploying Microsoft Advanced Threat Analytics (ATA) to the domain.
You install the ATA Center on server named Server1 and the on a server named Server2.
You need to ensure that Server2 can collect NTLM authentication events.
What should you configure?

Your network contains an Active Directory domain named contoso.com. The domain contains a server named
Server1.
Server1 is configured as shown in the following table:

You plan to create a pilot deployment of Microsoft Advanced Threat Analytics (ATA). What should you do first?

Your network contains two Active Directory forests named contoso.com and adatum.com.
Contoso.com contains a Hyper-V host named Server1.
Server1 is the member of a group named HyperHosts.
Adatum.com contains a server named Server2 that is configured for Admin-trusted attestation.
Server1 and Server2 run Windows Server 2016.
Contoso.com trusts adatum.com.
You plan to deploy shielded virtual machines to Server1. Which component should you install and which cmdlet
should you run on Server1?

You plan to deploy three encrypted virtual machines that use Secure Boot. The virtual machines will be
configured as shown in the following table:

How should you protect each virtual machine? Choose Three.