Which group should you add Admin1 to?
You have a server that runs Windows Server 2003 Service Pack 2 (SP2).
You create a user account named Admin1.
You need to allow Admin1 to restart the server and to manage shared folders.You must minimize the rights assigned to Admin1.
Which group should you add Admin1 to?
What should you do?
Your network contains a Web server named Server1 that runs Windows Server 2003 and Internet Information Server (IIS).Server1 has a server certificate from an Enterprise Certificate Authority (CA) installed.
External users report that when they try to access the Web site from outside the corporate network by using a Web browser, they receive the following warning message: "There is a problem with this Web site’s security certificate.The security certificate presented by this Web site was not issued by a trusted certificate authority."
You find that users on the corporate network do not receive this error.
You need to ensure that external users do not receive the warning message when connecting to Server1.
What should you do?
What should you do on Server2?
Your network consists of a single Active Directory domain.All servers run Windows Server 2003 Service Pack 2 (SP2).
You have two servers named Server1 and Server2. Both servers have Windows Server Update Services (WSUS) 0 installed.
You need to configure WSUS so that Server2 uses Server1 as the upstream server.
What should you do on Server2?
What should you run on Server2?
You have two stand-alone servers named Server1 and Server2. Both servers run Windows Server 2003 Service Pack 2 (SP2).
On Server1, you save the local security policy as a template.
You need to import the template to Server2.
What should you run on Server2?
Which two actions should you perform?
You are the network administrator for your company.The network contains a Windows Server 2003 computer named Server1.
Three administrators are members of the Administrators local group on Server1. Twelve other administrators are members of the Domain Admins group.The Domain Admins group is also a member of the Administrators local group on Server1.
Someone makes an unauthorized change to the HKEY_LOCAL_MACHINESYSTEM key in the registry on Server1, which causes the computer to fail.You fix the problem.
You need to log all attempts to access the HKEY_LOCAL_MACHINESYSTEM key in the registry on Server1.
You decide to enable auditing in the local security policy on Server1.
Which two actions should you perform? (Each correct answer presents part of the solution.Choose two.)
Which command should you run?
Your network consists of a single Active Directory domain.The domain contains a server named Server1 that runs Windows Server 2003 Service Pack 2 (SP2).Server1 requires IPSec to secure incoming network connections.
You need to view the current IPSec connections on Server1.
Which command should you run?
What should you configure on DNS1 server?
You are the network administrator for your company.All network servers run Windows Server 2003 Service Pack 2 (SP2).
You deploy a DNS server named DNS1 that runs Windows Server 2003 SP2.
You need to configure DNS1 to use your ISP’s DNS servers to resolve all Internet queries.Internet name resolution should fail if the ISP’s DNS servers are unavailable.
What should you configure on DNS1 server?
What should you configure?
Your company has two offices.Each office is configured as a separate subnet.
The network contains a single Active Directory domain.All servers run Windows Server 2003 Service Pack 2 (SP2).All client computers run Windows XP Professional Service Pack 3 (SP3).
Users report that they are unable to resolve host names on the Internet.You verify that users can access all servers on both subnets.
You need to ensure that users can resolve names on the Internet.The solution must ensure that users can access resources on the internal network.
What should you configure?
Which type of resource record should you configure?
Your network consists of a single Active Directory domain named contoso.com.All servers run Windows Server 2003 Service Pack 2 (SP2).
You deploy a Web server named Server1. Users access the server by using the URL http://server1.contoso.com.
You need to create a new resource record that will allow users to access the server by using the URL http://www.contoso.com.The solution must prevent the need to modify the new record if the IP address of Server1 changes.
Which type of resource record should you configure?
What should you do?
You are a network administrator for Alpine Ski House.The network consists of a single Active Directory domain named alpineskihouse.com.
Your company acquires a company named Adventure Works.The Adventure Works network consists of a single Active Directory domain named adventure-works.com.
A server named Server32 is a network-management application server in the adventure-works.com domain. Server32 accesses all of the desktop client computers to perform automated software upgrades and hardware inventory. The network-management software on Server32 references desktop computers by unqualified host names, which are resolved to clientname.adventure-works.com by using a DNS server.
You join Server32 to your domain to become server32.alpineskihouse.com. The Server32 IP address is 10.10.90.90
You are gradually migrating all adventure-works.com desktop client computers to your domain to become clientname.alpineskihouse.com.You do not have access to the adventure-works.com DNS server.When Server32 attempts to apply an update to the client computers, the network-management software returns many alerts that say that desktop computers cannot be found.
You want to allow the network-management software on Server32 to resolve unqualified client computer host names in adventure-works.com or alpineskihouse.com, and you want to use the minimum amount of administrative effort.
What should you do?