You need to prepare a domain controller for cloning
Your network contains an Active Directory domain named contoso.com. All domain controllers run
Windows Server 2012 R2.
On all of the domain controllers, Windows is installed in C:\Windows and the Active Directory
database is located in D:\Windows\NTDS\.
All of the domain controllers have a third-party application installed.
The operating system fails to recognize that the application is compatible with domain controller
cloning.
You verify with the application vendor that the application supports domain controller cloning.
You need to prepare a domain controller for cloning.
What should you do?
You need to ensure that you can view the Delegation tab from the properties of the User1 account
Your network contains an Active Directory domain named contoso.com.
You create a user account named User1. The properties of User1 are shown in the exhibit. (Click the
Exhibit button.)
You plan to use the User1 account as a service account. The service will forward authentication
requests to other servers.
You need to ensure that you can view the Delegation tab from the properties of the User1 account.
What should you do first?
Which naming context should you use?
HOTSPOT
Your network contains an Active Directory forest named contoso.com. The forest contains a single
domain. All domain controllers run Windows Server 2012 R2 and are configured as DNS servers. All
DNS zones are Active Directory-integrated. Active Directory Recycle Bin is enabled.
You need to modify the amount of time deleted objects are retained in the Active Directory Recycle
Bin.
Which naming context should you use? To answer, select the appropriate naming context in the
answer area.
You need to delegate the rights to apply PSO1 to the Active Directory objects in an organizational unit named
Your network contains an Active Directory forest named contoso.com. The forest functional level is
Windows Server 2012 R2. The forest contains a single domain.
You create a Password Settings object (PSO) named PSO1.
You need to delegate the rights to apply PSO1 to the Active Directory objects in an organizational
unit named OU1.
What should you do?
Which three actions should you perform?
Your network contains an Active Directory domain named contoso.com. All servers run Windows
Server 2012 R2. The domain contains two servers. The servers are configured as shown in the
following table.
All client computers run Windows 8 Enterprise.
You plan to deploy Network Access Protection (NAP) by using IPSec enforcement.
A Group Policy object (GPO) named GPO1 is configured to deploy a trusted server group to all of the
client computers.
You need to ensure that the client computers can discover HRA servers automatically.
Which three actions should you perform? (Each correct answer presents part of the solution. Choose
three.)
Which two nodes should you configure from the Network Policy Server console?
HOTSPOT
Your network contains an Active Directory domain named contoso.com. The domain contains a
server named Server1 that has the Network Policy Server server role installed. The domain contains
a server named Server2 that is configured for RADIUS accounting.
Server1 is configured as a VPN server and is configured to forward authentication requests to
Server2.
You need to ensure that only Server2 contains event information about authentication requests
from connections to Server1.
Which two nodes should you configure from the Network Policy Server console?
To answer, select the appropriate two nodes in the answer area.
Which two should you configure on Server3?
Your network contains two Active Directory forests named contoso.com and adatum.com. The
contoso.com forest contains a server named Server1.contoso.com. The adatum.com forest contains
a server named server2. adatum.com. Both servers have the Network Policy Server role service
installed.
The network contains a server named Server3. Server3 is located in the perimeter network and has
the Network Policy Server role service installed.
You plan to configure Server3 as an authentication provider for several VPN servers.
You need to ensure that RADIUS requests received by Server3 for a specific VPN server are always
forwarded to Server1.contoso.com.
Which two should you configure on Server3? (Each correct answer presents part of the solution.
Choose two.)
Which two authentication methods should you identify?
Your network contains an Active Directory domain named contoso.com. The domain contains a
server named Server1 that runs Windows Server 2012 P.2. Server1 has the Network Policy and
Access Services server role installed.
Your company’s security policy requires that certificate-based authentication must be used by some
network services.
You need to identify which Network Policy Server (NPS) authentication methods comply with the
security policy.
Which two authentication methods should you identify? (Each correct answer presents part of the
solution. Choose two.)
You need to ensure that user settings are saved to \\Server1\Users\
Your network contains an Active Directory domain named adatum.com. The domain contains a file
server named Server1 that runs Windows Server 2012 R2.
All client computers run Windows 7.
You need to ensure that user settings are saved to \\Server1\Users\.
What should you do?
Which tool should you use?
Your network contains an Active Directory domain named contoso.com. All domain controllers run
Windows Server 2012 R2.
An organizational unit (OU) named OU1 contains 200 client computers that run Windows 8
Enterprise. A Group Policy object (GPO) named GPO1 is linked to OU1.
You make a change to GPO1.
You need to force all of the computers in OU1 to refresh their Group Policy settings immediately.
The solution must minimize administrative effort.
Which tool should you use?