Your company has a main office and three branch offices.
Each office has a server that runs Windows Server 2008. The server has the DNS Server role installed.
The branch offices contain client computers that run Windows 2000.
You plan to deploy Active Directory Domain Services (AD DS) on the network.
You need to plan a name resolution solution for the deployment of Active Directory Domain Services (AD DS).
The solution must meet the following requirements:
– Support secure dynamic updates.
– Minimize response times for users connecting to resources anywhere on the network.
What should you include in your plan?

Your network contains servers that run Windows Server 2008 and client computers that run Windows Vista.
All network routers support IPsec connections. Client computers and servers use IPsec to connect through network routers.
You have two servers named Server1 and Server2.
Server1 has Active Directory Certificate Services (AD CS) installed and is configured as a certification authority (CA).
Server2 runs Internet Information Services (IIS).
You need to recommend a certificate solution for the network routers.
The solution must meet the following requirements:
– Use the Simple Certificate Enrollment Protocol (SCEP).
– Enable the routers to automatically request certificates.
What should you recommend implementing?

You are the enterprise administrator for a company named Contoso, Ltd.
The network consists of one Active Directory domain named contoso.com.
You have a Microsoft Exchange Server 2007 organization named Contoso.
All users log on to their computers by using credentials identical to their e-mail addresses.
The company plans to change its name to Adatum Corporation and modify all user e-mail addresses to include a new adatum.com domain name.
You need to enable all users to log on to their computers by using the new domain name. The solution must not disrupt existing applications on the network.
What should you do first?

Your network consists of an Active Directory forest that contains only domain controllers that run Windows Server 2003.
You need to prepare the environment for the implementation of a new Windows Server 2008 domain in the forest.
What should you do?

Your company has one main office and 20 branch offices.
Each office is configured as an Active Directory site.
The network consists of one Active Directory domain.
All servers run Windows Server 2008 and all client computers run Windows Vista.
The main office contains three domain controllers.
You need to deploy one domain controller in each branch office to meet the following requirements:
– Authentication to a main office domain controller must only occur if a local domain controller fails.
– Client computers in the main office must not authenticate to a domain controller in a branch office.
– Client computers in a branch office must not authenticate to a domain controller in another branch office.
– Client computers in each branch office must attempt to authenticate to the domain controller at their local site first.
What should you do first?

Your company has one main office and 10 branch offices. You plan to deploy Active Directory.
You need to recommend a solution to recover Active Directory domain objects in the event of data loss. The solution must ensure that you can recover individually deleted user accounts.
What should you recommend?

Your network consists of one Active Directory domain that contains domain controllers that run Windows Server 2008. The intranet site contains confidential documents.
You need to design an identity and access management policy for the documents to meet the following requirements:
– Record each time a document is accessed.
– Protect confidential documents on the intranet site.
– Place a time limit on access to documents, including documents sent outside the organization.
What should you include in your design?