Which cmdlets should you run?
###BeginCaseStudy###
Case Study: 4
Northwind Traders (A)
Overview
Northwind Traders is a retail company.
The company has offices in Montreal and San Diego. The office in Montreal has 1,000 client
computers. The office in San Diego has 100 computers. The computers in the San Diego
office are often replaced. The offices connect to each other by using a slow WAN link. Each
office connects directly to the Internet.
Existing Environment
Active Directory Environment
The network contains an Active Directory forest named northwindtraders.com. The forest
contains two domains named northwindtraders.com and west.northwindtraders.com. All
servers run Windows Server 2012 R2.
All client computers run Windows 7.
Each office is configured as an Active Directory site. The site in the Montreal office is named
Site1. The site in the San Diego office is named Site2.
The forest contains four domain controllers. The domain controllers are configured as shown
in the following table.
DC1, DC2, and DC3 are writable domain controllers. R0DC1 is read-only domain controller
(RODC). All DNS zones are Active Directory-integrated. All zones replicate to all of the
domain controllers.
All of the computers in the San Diego office are configured to use RODC1 as their only DNS
server.
The northwindtraders.com domain contains a Group Policy object (GPO) named GPO1.
GP01 is applied to all of the users in the Montreal office.
All of the user accounts for the Montreal users are in the northwindtraders.com domain. All
of the user accounts for the San Diego users are in the west.northwindtraders.com domain.
Network Environment
Site1 contains the member servers in the northwindtraders.com domain shown in the
following table.
Server1 connects to SAN storage that supports Offloaded Data Transfer (ODX). All virtual
hard disks (VHDs) are stored on the SAN.
A web application named App1 is installed on Servers.
Server3 has a shared folder that contains sales reports. The sales reports are read
frequently by the users in both offices. The reports are generated automatically once per
week by an enterprise resource planning (ERP) system.
A perimeter network in the Montreal office contains two standalone servers. The servers are
configured as shown in the following table.
The servers in the perimeter network are accessible from the Internet by using a domain
name suffix of public.northwindtraders.com.
Each administrator has a management computer that runs Windows 8.1.
Requirements
Planned Changes
Northwind Traders plans to implement the following changes:
On Server1, create four virtual machines that run Windows Server 2012 R2. The servers will
be configured as shown in the following table.
• Configure IP routing between Site1 and the network services that
Northwind Traders hosts in Windows Azure.
• Place a domain controller for the northwindtraders.com domain in
Windows Azure.
• Upgrade all of the computers in the Montreal office to Windows 8.1.
• Purchase a subscription to Microsoft Office 365.
• Configure a web application proxy on Server6.
• Configure integration between VMM and IPAM.
• Apply GPO1 to all of the San Diego users.
• Connect Site1 to Windows Azure.
Technical Requirements
Northwind Traders must meet the following technical requirements:
• All virtual machines must use ODX.
• Users must be able to access App1 from the Internet.
• GPO1 must not be applied to computers that run Windows 8.1.
• All DNS zones must replicate only to DC1, DC2, and DC3.
• All computers must be able to resolve names by using a local DNS
server.
• If a WAN link fails, users must be able to access all of the sales
reports.
• The credentials for accessing Windows Azure must be permanently
stored.
• The on-premises network must be connected to Windows Azure by
using Server4.
• The administrators must be able to manage Windows Azure by using
Windows PowerShell.
• The number of servers and services deployed in the San Diego office
must be minimized.
• Active Directory queries for the objects in the forest must not generate
WAN traffic, whenever possible.
Security Requirements
Northwind Traders identifies the following security requirements:
• Ensure that all DNS zone data is encrypted when it is replicated.
• Minimize the number of permissions assigned to users and
administrators, whenever possible. Prevent an Active Directory Domain
Services (AD DS) attribute named SSNumber from replicating to Site2.
• Ensure that users can use their northwindtraders.com user account to
access the resources hosted in Office 365.
• Prevent administrators from being required to re-enter their credentials
when they manage Windows Azure from approved management computers.
###EndCaseStudy###
You need to implement a solution for DNS replication.
Which cmdlets should you run?
How should you configure the certificate request?
###BeginCaseStudy###
Case Study: 4
Northwind Traders (A)
Overview
Northwind Traders is a retail company.
The company has offices in Montreal and San Diego. The office in Montreal has 1,000 client
computers. The office in San Diego has 100 computers. The computers in the San Diego
office are often replaced. The offices connect to each other by using a slow WAN link. Each
office connects directly to the Internet.
Existing Environment
Active Directory Environment
The network contains an Active Directory forest named northwindtraders.com. The forest
contains two domains named northwindtraders.com and west.northwindtraders.com. All
servers run Windows Server 2012 R2.
All client computers run Windows 7.
Each office is configured as an Active Directory site. The site in the Montreal office is named
Site1. The site in the San Diego office is named Site2.
The forest contains four domain controllers. The domain controllers are configured as shown
in the following table.
DC1, DC2, and DC3 are writable domain controllers. R0DC1 is read-only domain controller
(RODC). All DNS zones are Active Directory-integrated. All zones replicate to all of the
domain controllers.
All of the computers in the San Diego office are configured to use RODC1 as their only DNS
server.
The northwindtraders.com domain contains a Group Policy object (GPO) named GPO1.
GP01 is applied to all of the users in the Montreal office.
All of the user accounts for the Montreal users are in the northwindtraders.com domain. All
of the user accounts for the San Diego users are in the west.northwindtraders.com domain.
Network Environment
Site1 contains the member servers in the northwindtraders.com domain shown in the
following table.
Server1 connects to SAN storage that supports Offloaded Data Transfer (ODX). All virtual
hard disks (VHDs) are stored on the SAN.
A web application named App1 is installed on Servers.
Server3 has a shared folder that contains sales reports. The sales reports are read
frequently by the users in both offices. The reports are generated automatically once per
week by an enterprise resource planning (ERP) system.
A perimeter network in the Montreal office contains two standalone servers. The servers are
configured as shown in the following table.
The servers in the perimeter network are accessible from the Internet by using a domain
name suffix of public.northwindtraders.com.
Each administrator has a management computer that runs Windows 8.1.
Requirements
Planned Changes
Northwind Traders plans to implement the following changes:
On Server1, create four virtual machines that run Windows Server 2012 R2. The servers will
be configured as shown in the following table.
• Configure IP routing between Site1 and the network services that
Northwind Traders hosts in Windows Azure.
• Place a domain controller for the northwindtraders.com domain in
Windows Azure.
• Upgrade all of the computers in the Montreal office to Windows 8.1.
• Purchase a subscription to Microsoft Office 365.
• Configure a web application proxy on Server6.
• Configure integration between VMM and IPAM.
• Apply GPO1 to all of the San Diego users.
• Connect Site1 to Windows Azure.
Technical Requirements
Northwind Traders must meet the following technical requirements:
• All virtual machines must use ODX.
• Users must be able to access App1 from the Internet.
• GPO1 must not be applied to computers that run Windows 8.1.
• All DNS zones must replicate only to DC1, DC2, and DC3.
• All computers must be able to resolve names by using a local DNS
server.
• If a WAN link fails, users must be able to access all of the sales
reports.
• The credentials for accessing Windows Azure must be permanently
stored.
• The on-premises network must be connected to Windows Azure by
using Server4.
• The administrators must be able to manage Windows Azure by using
Windows PowerShell.
• The number of servers and services deployed in the San Diego office
must be minimized.
• Active Directory queries for the objects in the forest must not generate
WAN traffic, whenever possible.
Security Requirements
Northwind Traders identifies the following security requirements:
• Ensure that all DNS zone data is encrypted when it is replicated.
• Minimize the number of permissions assigned to users and
administrators, whenever possible. Prevent an Active Directory Domain
Services (AD DS) attribute named SSNumber from replicating to Site2.
• Ensure that users can use their northwindtraders.com user account to
access the resources hosted in Office 365.
• Prevent administrators from being required to re-enter their credentials
when they manage Windows Azure from approved management computers.
###EndCaseStudy###
HOTSPOT
You are planning the certificates for Northwind Traders.
You need to identify the certificate configurations required for App1.
How should you configure the certificate request? To answer, select the appropriate options
in the answer area.
What should you recommend?
###BeginCaseStudy###
Case Study: 4
Northwind Traders (A)
Overview
Northwind Traders is a retail company.
The company has offices in Montreal and San Diego. The office in Montreal has 1,000 client
computers. The office in San Diego has 100 computers. The computers in the San Diego
office are often replaced. The offices connect to each other by using a slow WAN link. Each
office connects directly to the Internet.
Existing Environment
Active Directory Environment
The network contains an Active Directory forest named northwindtraders.com. The forest
contains two domains named northwindtraders.com and west.northwindtraders.com. All
servers run Windows Server 2012 R2.
All client computers run Windows 7.
Each office is configured as an Active Directory site. The site in the Montreal office is named
Site1. The site in the San Diego office is named Site2.
The forest contains four domain controllers. The domain controllers are configured as shown
in the following table.
DC1, DC2, and DC3 are writable domain controllers. R0DC1 is read-only domain controller
(RODC). All DNS zones are Active Directory-integrated. All zones replicate to all of the
domain controllers.
All of the computers in the San Diego office are configured to use RODC1 as their only DNS
server.
The northwindtraders.com domain contains a Group Policy object (GPO) named GPO1.
GP01 is applied to all of the users in the Montreal office.
All of the user accounts for the Montreal users are in the northwindtraders.com domain. All
of the user accounts for the San Diego users are in the west.northwindtraders.com domain.
Network Environment
Site1 contains the member servers in the northwindtraders.com domain shown in the
following table.
Server1 connects to SAN storage that supports Offloaded Data Transfer (ODX). All virtual
hard disks (VHDs) are stored on the SAN.
A web application named App1 is installed on Servers.
Server3 has a shared folder that contains sales reports. The sales reports are read
frequently by the users in both offices. The reports are generated automatically once per
week by an enterprise resource planning (ERP) system.
A perimeter network in the Montreal office contains two standalone servers. The servers are
configured as shown in the following table.
The servers in the perimeter network are accessible from the Internet by using a domain
name suffix of public.northwindtraders.com.
Each administrator has a management computer that runs Windows 8.1.
Requirements
Planned Changes
Northwind Traders plans to implement the following changes:
On Server1, create four virtual machines that run Windows Server 2012 R2. The servers will
be configured as shown in the following table.
• Configure IP routing between Site1 and the network services that
Northwind Traders hosts in Windows Azure.
• Place a domain controller for the northwindtraders.com domain in
Windows Azure.
• Upgrade all of the computers in the Montreal office to Windows 8.1.
• Purchase a subscription to Microsoft Office 365.
• Configure a web application proxy on Server6.
• Configure integration between VMM and IPAM.
• Apply GPO1 to all of the San Diego users.
• Connect Site1 to Windows Azure.
Technical Requirements
Northwind Traders must meet the following technical requirements:
• All virtual machines must use ODX.
• Users must be able to access App1 from the Internet.
• GPO1 must not be applied to computers that run Windows 8.1.
• All DNS zones must replicate only to DC1, DC2, and DC3.
• All computers must be able to resolve names by using a local DNS
server.
• If a WAN link fails, users must be able to access all of the sales
reports.
• The credentials for accessing Windows Azure must be permanently
stored.
• The on-premises network must be connected to Windows Azure by
using Server4.
• The administrators must be able to manage Windows Azure by using
Windows PowerShell.
• The number of servers and services deployed in the San Diego office
must be minimized.
• Active Directory queries for the objects in the forest must not generate
WAN traffic, whenever possible.
Security Requirements
Northwind Traders identifies the following security requirements:
• Ensure that all DNS zone data is encrypted when it is replicated.
• Minimize the number of permissions assigned to users and
administrators, whenever possible. Prevent an Active Directory Domain
Services (AD DS) attribute named SSNumber from replicating to Site2.
• Ensure that users can use their northwindtraders.com user account to
access the resources hosted in Office 365.
• Prevent administrators from being required to re-enter their credentials
when they manage Windows Azure from approved management computers.
###EndCaseStudy###
HOTSPOT
You need to recommend a solution for communicating to Windows Azure services.
What should you recommend? To answer, select the appropriate options in the answer area.
You need to implement an IPAM solution
###BeginCaseStudy###
Case Study: 4
Northwind Traders (A)
Overview
Northwind Traders is a retail company.
The company has offices in Montreal and San Diego. The office in Montreal has 1,000 client
computers. The office in San Diego has 100 computers. The computers in the San Diego
office are often replaced. The offices connect to each other by using a slow WAN link. Each
office connects directly to the Internet.
Existing Environment
Active Directory Environment
The network contains an Active Directory forest named northwindtraders.com. The forest
contains two domains named northwindtraders.com and west.northwindtraders.com. All
servers run Windows Server 2012 R2.
All client computers run Windows 7.
Each office is configured as an Active Directory site. The site in the Montreal office is named
Site1. The site in the San Diego office is named Site2.
The forest contains four domain controllers. The domain controllers are configured as shown
in the following table.
DC1, DC2, and DC3 are writable domain controllers. R0DC1 is read-only domain controller
(RODC). All DNS zones are Active Directory-integrated. All zones replicate to all of the
domain controllers.
All of the computers in the San Diego office are configured to use RODC1 as their only DNS
server.
The northwindtraders.com domain contains a Group Policy object (GPO) named GPO1.
GP01 is applied to all of the users in the Montreal office.
All of the user accounts for the Montreal users are in the northwindtraders.com domain. All
of the user accounts for the San Diego users are in the west.northwindtraders.com domain.
Network Environment
Site1 contains the member servers in the northwindtraders.com domain shown in the
following table.
Server1 connects to SAN storage that supports Offloaded Data Transfer (ODX). All virtual
hard disks (VHDs) are stored on the SAN.
A web application named App1 is installed on Servers.
Server3 has a shared folder that contains sales reports. The sales reports are read
frequently by the users in both offices. The reports are generated automatically once per
week by an enterprise resource planning (ERP) system.
A perimeter network in the Montreal office contains two standalone servers. The servers are
configured as shown in the following table.
The servers in the perimeter network are accessible from the Internet by using a domain
name suffix of public.northwindtraders.com.
Each administrator has a management computer that runs Windows 8.1.
Requirements
Planned Changes
Northwind Traders plans to implement the following changes:
On Server1, create four virtual machines that run Windows Server 2012 R2. The servers will
be configured as shown in the following table.
• Configure IP routing between Site1 and the network services that
Northwind Traders hosts in Windows Azure.
• Place a domain controller for the northwindtraders.com domain in
Windows Azure.
• Upgrade all of the computers in the Montreal office to Windows 8.1.
• Purchase a subscription to Microsoft Office 365.
• Configure a web application proxy on Server6.
• Configure integration between VMM and IPAM.
• Apply GPO1 to all of the San Diego users.
• Connect Site1 to Windows Azure.
Technical Requirements
Northwind Traders must meet the following technical requirements:
• All virtual machines must use ODX.
• Users must be able to access App1 from the Internet.
• GPO1 must not be applied to computers that run Windows 8.1.
• All DNS zones must replicate only to DC1, DC2, and DC3.
• All computers must be able to resolve names by using a local DNS
server.
• If a WAN link fails, users must be able to access all of the sales
reports.
• The credentials for accessing Windows Azure must be permanently
stored.
• The on-premises network must be connected to Windows Azure by
using Server4.
• The administrators must be able to manage Windows Azure by using
Windows PowerShell.
• The number of servers and services deployed in the San Diego office
must be minimized.
• Active Directory queries for the objects in the forest must not generate
WAN traffic, whenever possible.
Security Requirements
Northwind Traders identifies the following security requirements:
• Ensure that all DNS zone data is encrypted when it is replicated.
• Minimize the number of permissions assigned to users and
administrators, whenever possible. Prevent an Active Directory Domain
Services (AD DS) attribute named SSNumber from replicating to Site2.
• Ensure that users can use their northwindtraders.com user account to
access the resources hosted in Office 365.
• Prevent administrators from being required to re-enter their credentials
when they manage Windows Azure from approved management computers.
###EndCaseStudy###
HOTSPOT
On Server2, you create a Run As Account named Account1. Account1 is associated to an
Active Directory account named VMMIPAM.
You need to implement an IPAM solution.
What should you do? To answer, select the appropriate configuration for each server in the
answer area.
Which configuration should you include in the recommendation?
###BeginCaseStudy###
Case Study: 5
Contoso, Ltd (B)
Overview
Contoso, Ltd., is a recruiting and staffing company that has offices throughout North
America.
The company has a main office and six branch offices. The main office is located in Miami.
The branch offices are located in New York. Seattle, Los Angeles, Montreal, Toronto, and
Vancouver.
Existing Environment
Network Infrastructure
The network contains one Active Directory domain named contoso.com.
The main office has the following servers:
• One file server that maintains multiples shares
• Two domain controllers configured as DNS servers
• One Windows Server Update Services (WSUS) server
• Two DHCP servers that each have a scope for all of the subnets
• Two servers that have Failover Clustering configured and are used as virtualization
hosts
• One server that has Microsoft SQL Server 2012 installed and maintains a customer
relationship management (CRM) database
Each branch office has the following servers:
• One domain controller configured as a DNS server
• One DHCP server that has a single scope for its respective office
Each office has a single subnet. The network speed of the local area network (LAN) is 1
gigabit per second. All of the offices have a high-speed connection to the Internet. The
offices connect to each other by using VPN appliances.
Current Issues
Users report that it can take a long time to download files from network shares in the main
office.
A root cause analysis identifies that network traffic peaks when the users experience this
issue.
Requirements
Planned Changes
The company plans to implement the following changes:
• Replace all of the domain controllers with new servers that run Windows Server
2012.
• Upgrade the CRM application to use a web-based application that connects to the
current CRM database. The web application will store session data in the memory of
each web server.
• Initially, deploy two front-end web servers to two virtual machines. Additional virtual
web servers will be deployed in the future.
• Monitor the availability of the CRM application and create alerts when the overall
availability is less than 99 percent.
• Implement Microsoft System Center 2012 to manage the new environment.
Business Requirements
The company identifies the following business requirements:
• Minimize hardware costs and software costs whenever possible.
• Minimize the amount of network traffic over the VPN whenever possible.
• Ensure that the users in the branch offices can access files currently on the main
office file server if an Internet link fails.
Technical Requirements
The company identifies the following technical requirements:
• Provide a highly available DHCP solution.
• Maintain a central database that contains the security events from all of the servers.
The database must be encrypted.
• Ensure that an administrator in the main office can manage the approval of Windows
updates and updates to third-party applications for all of the users.
• Ensure that all of the domain controllers have the ReliableTimeSource registry value
in HKEY_LOCAL_MACHINE
\SYSTEM\CurrentControlSet\Services\W32Time\Parameters set to 1, even if an
administrator changes that value manually.
Virtualization Requirements
The company identifies the following virtualization requirements:
• Minimize the number of permissions and privileges assigned to users.
• Ensure that the members of a group named Group2 can add a WSUS server to the
fabric.
• Ensure that a diagram view of the virtualization environment can be generated
dynamically.
• Minimize the amount of administrative effort required to manage the virtualization
environment.
• Prevent the failure of a front-end web server from affecting the availability of the CRM
application.
• Ensure that the members of a group named Group1 can create new virtual machines
in the Los Angeles office only.
• Only create virtual machine templates by using objects that already exist in the
System Center 2012 Virtual Machine Manager (VMM) library.
• On the failover cluster in the main office, apply limited distribution release (LDR)
updates to the virtualization hosts without disrupting the virtual machines hosted on
the virtualization hosts.
###EndCaseStudy###
You need to recommend a solution that manages the security events. The solution must
meet the technical requirements.
Which configuration should you include in the recommendation?
Which user role profile should you select for Group2?
###BeginCaseStudy###
Case Study: 5
Contoso, Ltd (B)
Overview
Contoso, Ltd., is a recruiting and staffing company that has offices throughout North
America.
The company has a main office and six branch offices. The main office is located in Miami.
The branch offices are located in New York. Seattle, Los Angeles, Montreal, Toronto, and
Vancouver.
Existing Environment
Network Infrastructure
The network contains one Active Directory domain named contoso.com.
The main office has the following servers:
• One file server that maintains multiples shares
• Two domain controllers configured as DNS servers
• One Windows Server Update Services (WSUS) server
• Two DHCP servers that each have a scope for all of the subnets
• Two servers that have Failover Clustering configured and are used as virtualization
hosts
• One server that has Microsoft SQL Server 2012 installed and maintains a customer
relationship management (CRM) database
Each branch office has the following servers:
• One domain controller configured as a DNS server
• One DHCP server that has a single scope for its respective office
Each office has a single subnet. The network speed of the local area network (LAN) is 1
gigabit per second. All of the offices have a high-speed connection to the Internet. The
offices connect to each other by using VPN appliances.
Current Issues
Users report that it can take a long time to download files from network shares in the main
office.
A root cause analysis identifies that network traffic peaks when the users experience this
issue.
Requirements
Planned Changes
The company plans to implement the following changes:
• Replace all of the domain controllers with new servers that run Windows Server
2012.
• Upgrade the CRM application to use a web-based application that connects to the
current CRM database. The web application will store session data in the memory of
each web server.
• Initially, deploy two front-end web servers to two virtual machines. Additional virtual
web servers will be deployed in the future.
• Monitor the availability of the CRM application and create alerts when the overall
availability is less than 99 percent.
• Implement Microsoft System Center 2012 to manage the new environment.
Business Requirements
The company identifies the following business requirements:
• Minimize hardware costs and software costs whenever possible.
• Minimize the amount of network traffic over the VPN whenever possible.
• Ensure that the users in the branch offices can access files currently on the main
office file server if an Internet link fails.
Technical Requirements
The company identifies the following technical requirements:
• Provide a highly available DHCP solution.
• Maintain a central database that contains the security events from all of the servers.
The database must be encrypted.
• Ensure that an administrator in the main office can manage the approval of Windows
updates and updates to third-party applications for all of the users.
• Ensure that all of the domain controllers have the ReliableTimeSource registry value
in HKEY_LOCAL_MACHINE
\SYSTEM\CurrentControlSet\Services\W32Time\Parameters set to 1, even if an
administrator changes that value manually.
Virtualization Requirements
The company identifies the following virtualization requirements:
• Minimize the number of permissions and privileges assigned to users.
• Ensure that the members of a group named Group2 can add a WSUS server to the
fabric.
• Ensure that a diagram view of the virtualization environment can be generated
dynamically.
• Minimize the amount of administrative effort required to manage the virtualization
environment.
• Prevent the failure of a front-end web server from affecting the availability of the CRM
application.
• Ensure that the members of a group named Group1 can create new virtual machines
in the Los Angeles office only.
• Only create virtual machine templates by using objects that already exist in the
System Center 2012 Virtual Machine Manager (VMM) library.
• On the failover cluster in the main office, apply limited distribution release (LDR)
updates to the virtualization hosts without disrupting the virtual machines hosted on
the virtualization hosts.
###EndCaseStudy###
You are planning the delegation for the virtualization environment. The delegation must meet
the virtualization requirements.
Which user role profile should you select for Group2?
What should you include in the recommendation?
###BeginCaseStudy###
Case Study: 5
Contoso, Ltd (B)
Overview
Contoso, Ltd., is a recruiting and staffing company that has offices throughout North
America.
The company has a main office and six branch offices. The main office is located in Miami.
The branch offices are located in New York. Seattle, Los Angeles, Montreal, Toronto, and
Vancouver.
Existing Environment
Network Infrastructure
The network contains one Active Directory domain named contoso.com.
The main office has the following servers:
• One file server that maintains multiples shares
• Two domain controllers configured as DNS servers
• One Windows Server Update Services (WSUS) server
• Two DHCP servers that each have a scope for all of the subnets
• Two servers that have Failover Clustering configured and are used as virtualization
hosts
• One server that has Microsoft SQL Server 2012 installed and maintains a customer
relationship management (CRM) database
Each branch office has the following servers:
• One domain controller configured as a DNS server
• One DHCP server that has a single scope for its respective office
Each office has a single subnet. The network speed of the local area network (LAN) is 1
gigabit per second. All of the offices have a high-speed connection to the Internet. The
offices connect to each other by using VPN appliances.
Current Issues
Users report that it can take a long time to download files from network shares in the main
office.
A root cause analysis identifies that network traffic peaks when the users experience this
issue.
Requirements
Planned Changes
The company plans to implement the following changes:
• Replace all of the domain controllers with new servers that run Windows Server
2012.
• Upgrade the CRM application to use a web-based application that connects to the
current CRM database. The web application will store session data in the memory of
each web server.
• Initially, deploy two front-end web servers to two virtual machines. Additional virtual
web servers will be deployed in the future.
• Monitor the availability of the CRM application and create alerts when the overall
availability is less than 99 percent.
• Implement Microsoft System Center 2012 to manage the new environment.
Business Requirements
The company identifies the following business requirements:
• Minimize hardware costs and software costs whenever possible.
• Minimize the amount of network traffic over the VPN whenever possible.
• Ensure that the users in the branch offices can access files currently on the main
office file server if an Internet link fails.
Technical Requirements
The company identifies the following technical requirements:
• Provide a highly available DHCP solution.
• Maintain a central database that contains the security events from all of the servers.
The database must be encrypted.
• Ensure that an administrator in the main office can manage the approval of Windows
updates and updates to third-party applications for all of the users.
• Ensure that all of the domain controllers have the ReliableTimeSource registry value
in HKEY_LOCAL_MACHINE
\SYSTEM\CurrentControlSet\Services\W32Time\Parameters set to 1, even if an
administrator changes that value manually.
Virtualization Requirements
The company identifies the following virtualization requirements:
• Minimize the number of permissions and privileges assigned to users.
• Ensure that the members of a group named Group2 can add a WSUS server to the
fabric.
• Ensure that a diagram view of the virtualization environment can be generated
dynamically.
• Minimize the amount of administrative effort required to manage the virtualization
environment.
• Prevent the failure of a front-end web server from affecting the availability of the CRM
application.
• Ensure that the members of a group named Group1 can create new virtual machines
in the Los Angeles office only.
• Only create virtual machine templates by using objects that already exist in the
System Center 2012 Virtual Machine Manager (VMM) library.
• On the failover cluster in the main office, apply limited distribution release (LDR)
updates to the virtualization hosts without disrupting the virtual machines hosted on
the virtualization hosts.
###EndCaseStudy###
You need to recommend a solution that resolves the current file server issue. The solution
must meet the business requirements.
What should you include in the recommendation?
What should you include in the recommendation?
###BeginCaseStudy###
Case Study: 5
Contoso, Ltd (B)
Overview
Contoso, Ltd., is a recruiting and staffing company that has offices throughout North
America.
The company has a main office and six branch offices. The main office is located in Miami.
The branch offices are located in New York. Seattle, Los Angeles, Montreal, Toronto, and
Vancouver.
Existing Environment
Network Infrastructure
The network contains one Active Directory domain named contoso.com.
The main office has the following servers:
• One file server that maintains multiples shares
• Two domain controllers configured as DNS servers
• One Windows Server Update Services (WSUS) server
• Two DHCP servers that each have a scope for all of the subnets
• Two servers that have Failover Clustering configured and are used as virtualization
hosts
• One server that has Microsoft SQL Server 2012 installed and maintains a customer
relationship management (CRM) database
Each branch office has the following servers:
• One domain controller configured as a DNS server
• One DHCP server that has a single scope for its respective office
Each office has a single subnet. The network speed of the local area network (LAN) is 1
gigabit per second. All of the offices have a high-speed connection to the Internet. The
offices connect to each other by using VPN appliances.
Current Issues
Users report that it can take a long time to download files from network shares in the main
office.
A root cause analysis identifies that network traffic peaks when the users experience this
issue.
Requirements
Planned Changes
The company plans to implement the following changes:
• Replace all of the domain controllers with new servers that run Windows Server
2012.
• Upgrade the CRM application to use a web-based application that connects to the
current CRM database. The web application will store session data in the memory of
each web server.
• Initially, deploy two front-end web servers to two virtual machines. Additional virtual
web servers will be deployed in the future.
• Monitor the availability of the CRM application and create alerts when the overall
availability is less than 99 percent.
• Implement Microsoft System Center 2012 to manage the new environment.
Business Requirements
The company identifies the following business requirements:
• Minimize hardware costs and software costs whenever possible.
• Minimize the amount of network traffic over the VPN whenever possible.
• Ensure that the users in the branch offices can access files currently on the main
office file server if an Internet link fails.
Technical Requirements
The company identifies the following technical requirements:
• Provide a highly available DHCP solution.
• Maintain a central database that contains the security events from all of the servers.
The database must be encrypted.
• Ensure that an administrator in the main office can manage the approval of Windows
updates and updates to third-party applications for all of the users.
• Ensure that all of the domain controllers have the ReliableTimeSource registry value
in HKEY_LOCAL_MACHINE
\SYSTEM\CurrentControlSet\Services\W32Time\Parameters set to 1, even if an
administrator changes that value manually.
Virtualization Requirements
The company identifies the following virtualization requirements:
• Minimize the number of permissions and privileges assigned to users.
• Ensure that the members of a group named Group2 can add a WSUS server to the
fabric.
• Ensure that a diagram view of the virtualization environment can be generated
dynamically.
• Minimize the amount of administrative effort required to manage the virtualization
environment.
• Prevent the failure of a front-end web server from affecting the availability of the CRM
application.
• Ensure that the members of a group named Group1 can create new virtual machines
in the Los Angeles office only.
• Only create virtual machine templates by using objects that already exist in the
System Center 2012 Virtual Machine Manager (VMM) library.
• On the failover cluster in the main office, apply limited distribution release (LDR)
updates to the virtualization hosts without disrupting the virtual machines hosted on
the virtualization hosts.
###EndCaseStudy###
You need to recommend a solution for managing updates. The solution must meet the
technical requirements.
What should you include in the recommendation?
What should you include in the recommendation?
###BeginCaseStudy###
Case Study: 5
Contoso, Ltd (B)
Overview
Contoso, Ltd., is a recruiting and staffing company that has offices throughout North
America.
The company has a main office and six branch offices. The main office is located in Miami.
The branch offices are located in New York. Seattle, Los Angeles, Montreal, Toronto, and
Vancouver.
Existing Environment
Network Infrastructure
The network contains one Active Directory domain named contoso.com.
The main office has the following servers:
• One file server that maintains multiples shares
• Two domain controllers configured as DNS servers
• One Windows Server Update Services (WSUS) server
• Two DHCP servers that each have a scope for all of the subnets
• Two servers that have Failover Clustering configured and are used as virtualization
hosts
• One server that has Microsoft SQL Server 2012 installed and maintains a customer
relationship management (CRM) database
Each branch office has the following servers:
• One domain controller configured as a DNS server
• One DHCP server that has a single scope for its respective office
Each office has a single subnet. The network speed of the local area network (LAN) is 1
gigabit per second. All of the offices have a high-speed connection to the Internet. The
offices connect to each other by using VPN appliances.
Current Issues
Users report that it can take a long time to download files from network shares in the main
office.
A root cause analysis identifies that network traffic peaks when the users experience this
issue.
Requirements
Planned Changes
The company plans to implement the following changes:
• Replace all of the domain controllers with new servers that run Windows Server
2012.
• Upgrade the CRM application to use a web-based application that connects to the
current CRM database. The web application will store session data in the memory of
each web server.
• Initially, deploy two front-end web servers to two virtual machines. Additional virtual
web servers will be deployed in the future.
• Monitor the availability of the CRM application and create alerts when the overall
availability is less than 99 percent.
• Implement Microsoft System Center 2012 to manage the new environment.
Business Requirements
The company identifies the following business requirements:
• Minimize hardware costs and software costs whenever possible.
• Minimize the amount of network traffic over the VPN whenever possible.
• Ensure that the users in the branch offices can access files currently on the main
office file server if an Internet link fails.
Technical Requirements
The company identifies the following technical requirements:
• Provide a highly available DHCP solution.
• Maintain a central database that contains the security events from all of the servers.
The database must be encrypted.
• Ensure that an administrator in the main office can manage the approval of Windows
updates and updates to third-party applications for all of the users.
• Ensure that all of the domain controllers have the ReliableTimeSource registry value
in HKEY_LOCAL_MACHINE
\SYSTEM\CurrentControlSet\Services\W32Time\Parameters set to 1, even if an
administrator changes that value manually.
Virtualization Requirements
The company identifies the following virtualization requirements:
• Minimize the number of permissions and privileges assigned to users.
• Ensure that the members of a group named Group2 can add a WSUS server to the
fabric.
• Ensure that a diagram view of the virtualization environment can be generated
dynamically.
• Minimize the amount of administrative effort required to manage the virtualization
environment.
• Prevent the failure of a front-end web server from affecting the availability of the CRM
application.
• Ensure that the members of a group named Group1 can create new virtual machines
in the Los Angeles office only.
• Only create virtual machine templates by using objects that already exist in the
System Center 2012 Virtual Machine Manager (VMM) library.
• On the failover cluster in the main office, apply limited distribution release (LDR)
updates to the virtualization hosts without disrupting the virtual machines hosted on
the virtualization hosts.
###EndCaseStudy###
You are planning the deployment of System Center 2012 Virtual Machine Manager (VMM).
You need to identify which additional System Center 2012 product is required to meet the
virtualization requirements.
What should you include in the recommendation?
What should you include in the recommendation for each office?
###BeginCaseStudy###
Case Study: 5
Contoso, Ltd (B)
Overview
Contoso, Ltd., is a recruiting and staffing company that has offices throughout North
America.
The company has a main office and six branch offices. The main office is located in Miami.
The branch offices are located in New York. Seattle, Los Angeles, Montreal, Toronto, and
Vancouver.
Existing Environment
Network Infrastructure
The network contains one Active Directory domain named contoso.com.
The main office has the following servers:
• One file server that maintains multiples shares
• Two domain controllers configured as DNS servers
• One Windows Server Update Services (WSUS) server
• Two DHCP servers that each have a scope for all of the subnets
• Two servers that have Failover Clustering configured and are used as virtualization
hosts
• One server that has Microsoft SQL Server 2012 installed and maintains a customer
relationship management (CRM) database
Each branch office has the following servers:
• One domain controller configured as a DNS server
• One DHCP server that has a single scope for its respective office
Each office has a single subnet. The network speed of the local area network (LAN) is 1
gigabit per second. All of the offices have a high-speed connection to the Internet. The
offices connect to each other by using VPN appliances.
Current Issues
Users report that it can take a long time to download files from network shares in the main
office.
A root cause analysis identifies that network traffic peaks when the users experience this
issue.
Requirements
Planned Changes
The company plans to implement the following changes:
• Replace all of the domain controllers with new servers that run Windows Server
2012.
• Upgrade the CRM application to use a web-based application that connects to the
current CRM database. The web application will store session data in the memory of
each web server.
• Initially, deploy two front-end web servers to two virtual machines. Additional virtual
web servers will be deployed in the future.
• Monitor the availability of the CRM application and create alerts when the overall
availability is less than 99 percent.
• Implement Microsoft System Center 2012 to manage the new environment.
Business Requirements
The company identifies the following business requirements:
• Minimize hardware costs and software costs whenever possible.
• Minimize the amount of network traffic over the VPN whenever possible.
• Ensure that the users in the branch offices can access files currently on the main
office file server if an Internet link fails.
Technical Requirements
The company identifies the following technical requirements:
• Provide a highly available DHCP solution.
• Maintain a central database that contains the security events from all of the servers.
The database must be encrypted.
• Ensure that an administrator in the main office can manage the approval of Windows
updates and updates to third-party applications for all of the users.
• Ensure that all of the domain controllers have the ReliableTimeSource registry value
in HKEY_LOCAL_MACHINE
\SYSTEM\CurrentControlSet\Services\W32Time\Parameters set to 1, even if an
administrator changes that value manually.
Virtualization Requirements
The company identifies the following virtualization requirements:
• Minimize the number of permissions and privileges assigned to users.
• Ensure that the members of a group named Group2 can add a WSUS server to the
fabric.
• Ensure that a diagram view of the virtualization environment can be generated
dynamically.
• Minimize the amount of administrative effort required to manage the virtualization
environment.
• Prevent the failure of a front-end web server from affecting the availability of the CRM
application.
• Ensure that the members of a group named Group1 can create new virtual machines
in the Los Angeles office only.
• Only create virtual machine templates by using objects that already exist in the
System Center 2012 Virtual Machine Manager (VMM) library.
• On the failover cluster in the main office, apply limited distribution release (LDR)
updates to the virtualization hosts without disrupting the virtual machines hosted on
the virtualization hosts.
###EndCaseStudy###
You need to recommend a solution that meets the technical requirements for DHCP.
What should you include in the recommendation for each office?