PrepAway - Latest Free Exam Questions & Answers

What should you deploy?

A company has Active Directory Domain Services (AD DS) domain controllers that run on Windows Server
2012 R2 servers. There are two forests, and each has a single domain. There is a two-way forest trust between
the forests. The company uses Hyper-V for server visualization. The Hyper-V environment contains the HyperV host servers as shown in the following table:

You prepare to deploy System Center 2012 R2 Data Protection Manager (DPM) to back up the Hyper-V
environment. The deployment must meet the followingrequirements:
ensure that all Hyper-V servers can be backed up from a minimum of two DPM servers
minimize the total number of DPM servers
You need to deploy DPM to the environment.
What should you deploy?

PrepAway - Latest Free Exam Questions & Answers

A.
four DPM servers in the internal network and two DPM servers in the perimeter network

B.
two DPM servers in the internal network and one DPM server in the perimeter network

C.
two DPM servers in the internal network only

D.
two DPM servers in the internal network and two DPM servers in the perimeter network

35 Comments on “What should you deploy?

    1. Peter says:

      In my opinion “Internal Networks” are clue. All machines must be backuped by two DPM servers. From definition of Internal Network “Internal virtual networks are used where you want to allow communications between
      •Virtual machine to virtual machine on the same physical server
      •Virtual machine to parent partition (and visa-versa)”
      In each internal network you need 2 DPM servers totaly 4.




      0



      0
  4. mlndsk says:

    IMHO D

    DPM can protect servers and workstations across domains within a forest that has a
    two-way trust relationship with the domain that the DPM server is located in. If there is not a two-way trust across domains, you must have a separate DPM server for each domain.

    DPM supports data protection across forests as long as you establish a forest-level, two-way trust between the separate forests. To set up a forest-level trust relationship, both domains must be in Windows Server 2008 forest mode.




    0



    0
  5. KameX says:

    I believe the answer is C

    I believe that just 2 DPM servers is the minimum number of servers that can take care of all the hosts and with this scenario, please read the following regarding certificates between DPM servers:

    DPM 2012 brings certificate-based authentication to bear on the following workloads: File Server, Hyper-V and SQL Server in both standalone and clustered configurations. You can also use certificate-based authentication on a secondary DPM 2012 server for disaster recovery to protect data sources in a non-trusted domain when the primary DPM 2012 server fails. The two DPM 2012 servers need to be in the same or trusted domains. The only data sources that support certificate-based protection that are missing from this lineup are Exchange, SharePoint and Bare-Metal Recovery/System State.

    http://technet.microsoft.com/en-us/magazine/jj554308.aspx




    0



    0
    1. Namhar says:

      You use certificates to communicate with perimeter servers and open FW ports to these hyper-v hosts.

      DPM can now backup such hosts which are in untrusted domains or workgroups using certificates




      0



      0
  10. Matt says:

    The answer is c: Two DPM servers (total).

    Network requirements – http://technet.microsoft.com/en-us/library/hh758176.aspx

    The following are the network requirements for System Center 2012 – Data Protection Manager (DPM):
    DPM must be installed on a 64-bit computer that is located in a Windows Server 2012, Windows Server 2008 R2, Windows Server 2008, or Windows Server 2003 Active Directory domain.

    DPM can protect servers and workstations across domains within a forest that has a two-way trust relationship with the domain that the DPM server is located in. If there is not a two-way trust across domains, you can protect the computers using DPM’s support for computers in workgroups or untrusted domains. For more information, see Managing Protected Computers in Workgroups and Untrusted Domains.

    DPM supports data protection across forests as long as you establish a forest-level, two-way trust between the separate forests. To set up a forest-level trust relationship, both domains must be in Windows Server 2012, Windows Server 2008 R2, Windows Server 2008, or Windows Server 2003 forest mode.

    If you are protecting data over a wide area network (WAN), there is a minimum network bandwidth requirement of 512 kilobits per second (Kbps).

    DPM does not support disjointed namespaces.




    0



    0
    1. RR says:

      How does this relate to question 5 where you need to implement a minimum DPM servers for backup ?
      The answer should be 1 server there, but this is not listed. Only difference with question 5 is the type of authentication is mentioned ; kerberos internally, certificate for perimeter




      0



      0
  13. mark86 says:

    I think that the best answer is B and I explain why:

    1) here http://technet.microsoft.com/en-us/library/hh916530.aspx it is written that

    “DPM supports protecting DPM SERVERS THAT ARE IN UNTRUSTED DOMAINS if the primary and secondary DPM servers are in domains that trust each other or if they are in the same domain”.

    So there must be at least one DPM Server in the untrusted domain in order for the two DPM servers in the internal network to protect it.

    2) here http://technet.microsoft.com/en-us/library/hh757954.aspx it is written that

    “Restrictions: Protection of perimeter network (DMZ) machines is not supported in DPM.”

    So there must be another DPM Server in the untrusted domain in order for the two DPM servers in the internal network to protect it.




    0



    0
    1. Arie says:

      I agree with “mark86”; I believe that the correct answer is B. VMs in the perimeter network cannot be protected by DPM from the internal network directly. Only a DPM server in the perimeter network can be protected by a DPM server on the internal network, so you need one DPM server in the perimeter network and two DPM servers in the internal network.




      0



      0
  14. Aseem says:

    DPM supports data protection across forests as long as you establish a forest-level, two-way trust between the separate forests. – So we need only 2 DPM servers for the hosts in the internal networks.

    And since it also supports certificates so the requirement of putting DPM server(s) in the perimeter network gets nullified.

    So C should be the correct answer here. I haven’t studied anything about DPM so not 100% sure.




    0



    0
  15. Menaz says:

    Has everybody forgotten that Contoso and Fabrikam are in INTERNAL networks? So there is only communication possible between the VM’s and the host itself! When a DPM-server is placed inside this internal network, it cannot communicate outside of it’s own network. So when you place a DPM-server inside the Contoso-network, it cannot backup Fabrikam or the DMZ and the other way around.

    So per network we need at least 1 DPM-server because the DPM-server does not have connection to other networks. And the question states that at least 2 DPM-servers must be used per Hyper-v host. So 2 DPM-servers per network, that’s answer A.




    0



    0
  16. RR says:

    Is the question correct ? Two forests with each one domain ; ext.contoso.com looks like a subdomain of contoso.com. That’s 2 domains in the contoso forest and one in fabrikam.com. Or is ext.contoso.com a workgroup ?




    0



    0

Leave a Reply