Your network consists of a single Active Directory domain. The domain includes a group named SalesUsers. You have a file server that runs Windows Server 2003 Service Pack 2 (SP2). The server has a folder named CorpData. You share the CorpData folder and assign the Domain Users group the Full Control share permission. In the CorpData folder, you create a folder named Sales. You need to configure security for the Sales folder to meet the following requirements: -Members of the SalesUsers group must be able to read, create, and modify all files and folders. -All other users must be able to view items in the folder. What should you do?

Your network consists of a single Active Directory domain named contoso.com. The functional level of the domain is Windows Server 2003. You have a file server named Server1 that is used to store users' home folders and profiles. On Server1, you create a folder named D:data and share the folder as UserData. You create a new user account named TemplateUser in Active Directory. You need to ensure that each user account you create by copying TemplateUser is configured to have a unique home folder stored in the UserData share. Which home folder path should you specify?

A

D:\\data\\%homedrive%

B

D:\\data\\%username%

C

\\\\server1\\userdata\\%homedrive%

D

\\\\server1\\userdata\\%username%

Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service Pack 2 (SP2). All client computers run Windows XP Service Pack 3 (SP3). You install and configure Microsoft Windows Server Update Services (WSUS) 3.0 on a member server named Server1. You create a new Group Policy Object named GPO1 that enables automatic updating. You link GPO1 to the domain. You need to ensure that each client computer obtains software updates from Server1. What should you do?

A

On each client computer, run Gpupdate \/Force.

B

On each client computer, run wuauclt \/detectnow.

C

From GPO1, configure the Enable client side targeting setting.

D

From GPO1, configure the Specify intranet Microsoft update service location setting.

You are the administrator of a Windows 2000 Server computer named Intra. Intra is a member of an Active Directory domain and hosts an Intranet Web-Ske for your company. Company policy requires that only authenticated users have access to the intranet site. All company users have a user account in the Active Directory domain. You configure directory security for the Web Site to use integrated security. However, you discover that users can access the Web Site without authentication. You need to ensure that only authenticated users can access the web site. What should you do?

A

Install Active Directory on the server

B

Select Basic Authentication check box

C

Clear the Allow Anonymous Connection check box

D

Disable the IUSE_inta user account on Intra

E

Clear the Allow IIS to Control Password check box

Five Lakes Publishing has a Windows 2000 network serving 200 users. A server named User_srv is used to hold users' files. User_srv is configured with a single, large NTFS volume. Every user has a home folder on User_srv. Users can also use a shared folder named IN_PROGRESS to store files for books that are being prepared. The network administrator at Five Lakes Publishing configured disk quotas for the NTFS volume on User_srv. All users have a default limit of 100 MB, and the option to deny space to users who exceed their limit has been enabled. When a user named Amy Jones attempts to save a chapter of a new book to her home folder on the server, she receives the following error message: "The disk is full or too many files are open." What should Amy do to allow this document to be saved?

A

Compress the files in her home folder to save disk space

B

Change the security setting of some of the files in her home folder to grant Full Control permission to a user who has not reached the quota level

C

Move some of the files from her home folder to the IN_PROGRESS shared folder

D

Remove files from her home folder until the total uncompressed file size is less than 100 MB

E

None of above

You are the administrator of Windows 2000 domain and TWO Windows NT domains. The Windows 2000 domains trust each of the Windows NT domains. Each of Windows NT domains trust the Windows 2000 domain. A Windows 2000 domain controller named DC1 is configured to use a highly secure domain controller template. Users in the Windows NT domain report that they cannot access DC1. You need to allow the users of computers in the Windows NT domain to access resources on DC1. What should you do?

A

Apply a less restrictive custom security template to DC1

B

Apply a less restrictive custom policy to Windows NT domain controller

C

Ensure the Windows 2000 domain is configured in the mixed mode

D

Ensure the Windows 2000 domain is configured to run in the native mode

E

None of above

Your network contains 10 domain controllers, 10 member servers, and approximately 1,000 client computers. All the servers run Windows 2000 Server, and all the client computers run Windows 2000 Professional. Two of the domain controllers act as DNS servers. Users of client computers use file sharing to grant access to files stored locally. The network has 10 subnets and uses TCP/IP as the only network protocol. You want to configure the network so that all computers can resolve the addresses of all other computers by using DNS. Client computers must be able to register and resolve addresses if a server fails. How should you configure the DNS servers?

A

Configure one server with a standard primary zone for the domain, and configure at least one server with standard secondary zone

B

Configure one server with a standard primary zone for the domain, and configure at least one server with an Active Directory integrated primary zone

C

Configure one server with an Active directory integrated primary zone for the domain, and configure at least one server with a standard secondary zone

D

Configure at least two servers with Active Directory integrated primary zones for the domain

E

Configure at least two servers with standard primary zones for the domain

You are the administrator of the Windows 2000 Server network shown in the exhibit. Users in the Research group and the Executive group have permission to access the Internet through a Windows 2000 Server computer running Microsoft Proxy Server. These users must enter their proxy server user names and passwords to connect to the proxy server, to the Internet, and to your local intranet server. The users who do not access the Internet do not have user accounts on the proxy server and, therefore, cannot connect to the intranet server. You want all users to be able to connect to the intranet server without entering a separate user name and password. What should you do?

A

Move the intranet server to the client segment of the network

B

Move the proxy server to the server segment of the network

C

Configure each client computer to bypass the proxy server for local addresses

D

Configure each client computer to use port 81 for the proxy server

E

None of above

Your network consists of a single Active Directory domain that contains two domain controllers. Both domain controllers run Windows Server 2003 Service Pack 2 (SP2). Auditing of successful account logon events is enabled on all computers in the domain. You need to identify the last time a specific user logged on to the domain. What should you do?

A

Examine the System Event Log on the user's computer.

B

Examine the System Event Log on both domain controllers.

C

Examine the Security Event Log on both domain controllers.

D

Examine the Application Event Log on the user's computer.

You install a Windows 2000 Server computer on your network. You place several shared folders on a 12-GB primary partition formatted by FAT32. During nine months of continuous operation, the number of users who access the server and their access frequency remains constant. The average size of the files on the server remains approximately constant. After the server runs continuous for nine months, users report that the server does not retrieve files from the shared folders as fast as when you first installed the server. What should you do to resolve the problem?

A

Convert the disk that contains the shared folders to a dynamic disk

B

Convert the partition that contains the shared folders to NTFS

C

Defragment the disk that contains the shared folders

D

Move the paging file to the partition that contains the shared folders

E

None of above

Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service Pack 2 (SP2). You enable auditing for failed logon attempts on all domain controllers. You need to ensure that a record of failed logon attempts is retained for 90 days on all domain controllers. What should you do?

A

From the Security Templates snap in, open the hisecdc template. Modify the Retain System Log setting.

B

From the Security Templates snap in, open the securedc template. Modify the Retain Security Log setting.

C

Open the Default Domain Policy. Modify the Retain System Log setting.

D

Open the Default Domain Controller Policy. Modify the Retain Security Log setting.

Related Questions