What should you do?
Your company has two main offices in Denver and Chicago and four branch offices in New York, Miami, Seattle, and San Francisco.
Each office is configured as an Active Directory site. Site links are configured as shown in the exhibit.
The network consists of one Active Directory forest.
All domain controllers run Windows Server 2003.
Each main office has four domain controllers. Each branch office has one domain controller. The Bridge all site links option is disabled.
You need to prepare the environment to install a read-only domain controller (RODC) in each branch office. The solution must be achieved by upgrading the minimum number of domain controllers.
What should you do?
Exhibit:
Which NAP enforcement method should you use?
Your network consists of one Active Directory domain and one IP subnet. All servers run Windows Server 2008. All client computers run Windows Vista.
The servers are configured as shown in the following table:
All network switches used for client connections are unmanaged. Some users connect to the local area network (LAN) from client computers that are joined to a workgroup. Some client computers do not have the latest Microsoft updates installed.
You need to recommend a Network Access Protection (NAP) solution to protect the network.
The solution must meet the following requirements:
– Only computers that are joined to the domain must be able to connect to servers in the domain.
– Only computers that have the latest Microsoft updates installed must be able to connect to servers in the domain.
Which NAP enforcement method should you use?
What should you include in your plan?
Your network consists of one Active Directory domain. The domain contains servers that run Windows Server 2008.
The servers are configured as shown in the following table:
Server2 and Server3 are configured as RADIUS clients.
You need to plan a solution to manage all VPN connections to the network.
The solution must meet the following requirements:
– Specify the allowed VPN connection protocols.
– Specify the allowed VPN client authentication mechanisms.
– Specify VPN client access rights based on group membership.
What should you include in your plan?
What should you do?
Your network consists of one Active Directory domain and one IP subnet.
All servers run Windows Server 2008. All client computers run Windows Vista, Windows XP Professional, and Windows 2000 Professional.
The servers are configured as shown in the following table:
Server2 is configured to support Network Access Protection (NAP) by using IPsec, DHCP, and 802.1x enforcement methods.
Users from a partner company have computers that are not joined to the domain. The computers successfully connect to the network.
You need to ensure that only computers that are joined to the domain can access network resources on the domain.
What should you do?
What should you recommend?
Your network consists of one Active Directory domain. The domain contains servers that run Windows Server 2008.
The relevant servers are configured as shown in the following table:
All client computers run Windows Vista. You plan to deploy two Java-based applications on all client computers.
The two applications each require a different version of the Java Runtime Environment (JRE).
After testing, you notice that the two JREs prevent the applications from running on the same computer.
You need to recommend a solution that enables the two Java-based applications to run on all client computers.
What should you recommend?
What should you do?
Your network consists of one Windows Server 2008 domain.
The network contains portable computers.
You configure a server that runs Windows Server 2008 as a Routing and Remote Access Service (RRAS) server.
Users connect remotely to the network through a virtual private network (VPN) connection to the RRAS server from both company-issued portable computers and non- company-issued computers.
The relevant portion of the network is shown in the following diagram:
You need to prepare the environment to secure remote access to the network.
The solution must meet the following requirements:
– Only computers that have Windows Firewall enabled can connect remotely.
– Only computers that have the most up-to-date antivirus definitions can connect remotely.
– Only computers that run Windows Vista and have the most up-to-date updates can connect remotely.
What should you do?
What should you do?
Your network consists of one Active Directory domain. The domain contains servers that run Windows Server 2008.
The relevant servers are configured as shown in the following table:
Your company has a department named Sales.
All users in the Sales department have desktop computers that run Windows Vista Enterprise Edition.
All users in the Sales department run an application named Application1 that is compatible only with Windows 95.
To run Application1, each user in the Sales department has a second desktop computer that runs Windows 95.
The Windows 95 computers must be removed from the network.
You use the Microsoft Application Compatibility Toolkit (ACT) 5.0 to test Application1. The test confirms that the application runs only on Windows 95 computers and must be redeveloped to be compatible with Windows Vista or Windows Server 2008.
You need to recommend a solution that will enable you to remove the Windows 95 computers. Users in the Sales department must be able to continue running Application1.
What should you do?
What should you do?
Your network consists of one Active Directory domain. The domain contains four servers that run Windows Server 2008.
The relevant servers are configured as shown in the following table:
Your company has a department named Sales.
All client computers in the Sales department run Windows Vista and use an application named Application1.
Application1 uses a dynamic-link library (DLL) named Salesapp.dll.
You plan to deploy a new application named Application2 that uses a different version of Salesapp.dll.
During testing, administrators report that Application2 causes Application1 to fail when both applications run on the same computer.
You need to ensure that users can run both applications successfully on the same computer. The solution must enable users that use portable computers to run both applications when they are disconnected from the network.
What should you do?
Which connection should you enable on Server1?
Your network consists of one Active Directory domain. The domain contains servers that run Windows Server 2008.
The servers are configured as shown in the following table:
All client computers run Windows Vista Service Pack 1 (SP1).
Remote domain users at a customer site report that they can access Server2 from the Internet by using the URL https://portal.contoso.com.
They also report that a firewall at the customer site prevents all other outbound connections.
You need to implement a solution to enable remote users to access files on Server3 from a VPN connection.
Which connection should you enable on Server1?
Which NAP enforcement method should you use?
Your network consists of a single IP subnet.
All servers and client computers connect to managed switches.
All servers run Windows Server 2008.
All client computers run Windows Vista.
The servers on the network are configured as shown in the following table:
You need to prepare the Network Access Protection (NAP) environment to meet the following requirements:
– Computers that have the required Microsoft updates installed must be able to access all computers on the network.
– Network switches must first allow client computers to communicate to only Server1 and Server2 when the computers connect to the network.
Which NAP enforcement method should you use?