Your network contains a file server named Server1 that runs Windows Server 2003 Service Pack 2
(SP2). Server1 is configured as shown in the following table.
A user named User1 belongs to the Helpdesk group and the Support group.
You need to configure security to meet the following requirements:
·Prevent User1 from changing files and folders in the Apps share.
·Allow User1 to open and run applications in the Apps share.
What should you do? ()
A. On the Apps share, assign User1 the Read share permission.
B. On the Apps folder, deny User1 the Write NTFS permission.
C. On the Apps folder, deny User1 the Modify NTFS permission.
D. On the Apps folder, assign User1 the Read & Execute NTFS permission.
您可能感兴趣的试卷
你可能感兴趣的试题
Your network contains a file server named Server1 that runs Windows Server 2003 Service Pack 2
(SP2).
Server 1 is configured as shown in the following table.
You need to configure security to meet the following requirements:
·Enable members of the Sales group to create, modify, and delete files and folders in the Sales folder.
·Enable members of the Marketing group to create, modify, and delete files and folders in the Marketing
folder.
·Prevent users from modifying permissions when they access the shared files.
What should you do?()
A. Change the share permission on Userdata to Authenticated Users: Change.
B. Change the NTFS permission on Userdata to Authenticated Users: Modify.
C. Change the NTFS permission on Marketing to Marketing-group: Write. Change the NTFS permission on Sales to Sales-group: Write.
D. Remove the Userdata share. Share Sales and assign the Sales-Group group Full Control share permission. Share Marketing and assign the Marketing-Group group Full Control share permission.
Your company has a main office and a branch office. Your network consists of a single Active Directory
domain. All domain controllers are in the main office. The offices connect to one another by using a wide
area network (WAN) link.
The branch office has a computer named Server1 that runs Windows Server 2003 Service Pack 2 (SP2).
A domain user named User1 reports that he cannot log on to Server1 when the WAN link is unavailable.
He reports that he can log on to Server1 when the WAN link is available.
You need to ensure that User1 can log on to Server1 by using his domain account when the WAN link is unavailable.
What should you do? ()
A. Modify the Default Domain Policy.
B. Modify the Default Domain Controller Policy.
C. Add User1 to the Domain Admins group in the domain.
D. Add User1 to the local Administrators group on Server1.
You have a stand-alone file server that runs Windows Server 2003 Service Pack 2 (SP2).
You create an account named Admin1 and add it to the Power Users group.
You attempt to log on to the server by using the Admin1 account and receive the following message: “Thelocal policy of this system does not permit you to log on interactively.”
You review the security settings as shown in the exhibit. (Click the Exhibit button.)
You need to ensure that the Admin1 account can log on to the console of the server.
What should you do? ()
A. Add the Admin1 account to the Administrators group.
B. Add the Admin1 account to the Allow log on locally policy.
C. Remove the Admin1 account from the Users group.
D. Remove the Users group from the Deny log on locally policy.
You have a stand-alone server that runs Windows Server 2003 Service Pack 2 (SP2).
You attempt to log on to the server by using the Administrator account and receive the following error
message.
You need to log on to the server by using the Administrator account.
What should you do first? ()
A. Restart the server in Safe mode.
B. Restart the server by using the Last Known Good Configuration option.
C. Log on to another stand-alone server as an Administrator.
D. Log on to the server by using an account that is a member of the Power Users group.
Your network consists of a single Active Directory Domain. You have a VPN server that runs Windows
Server 2003 Service Pack 2 (SP2).
On the VPN server, you create several remote access policies. You view the properties of an account as
shown in the exhibit. (Click the Exhibit button.)
You need to select the Control access through Remote Access Policy remote access permission for
User1.
What should you do? ()
A. Add User1 to the Remote Desktop Users group.
B. Enable RADIUS authentication on the VPN server.
C. Raise the functional level of the domain to Windows 2000 native.
D. Select the Store password using reversible encryption option for User1.
Your network consists of a single Active Directory domain. You have a member server named Server1
that runs Windows Server 2003 Service Pack 2 (SP2).
You need to track all authentication attempts on Server1.
What should you do? ()
A. Enable auditing of logon event events in Server1’s local policy.
B. Enable auditing of logon event events in the Default Domain Controller Policy.
C. Enable auditing of account logon event events in Server1’s local policy.
D. Enable auditing of account logon event events in the Default Domain Controller Policy.
Your network consists of a single Active Directory domain. The domain contains a server named
Server1 that runs Windows Server 2003 Service Pack 2 (SP2).
Your company’s security policy states that domain users must be prevented from logging on to Server1 if
a domain controller is unavailable.
You disconnect Server1 from the network and discover that you can log on to Server1.
You need to configure Server1 to comply with the company’s security policy.
What should you do on Server1?()
A. From the local security policy, modify the Security Options.
B. From the local security policy, modify the User Rights Assignment.
C. From Active Directory Users and Computers, modify the properties of the Server1 account.
D. From Active Directory Users and Computers, modify the properties of the Domain Computers group.
Your network consists of a single Active Directory domain. All servers run Windows Server 2003
Service Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3).
A user named User1 attempts to log on to a computer named Computer1 and receives the following error
message.
You need to ensure that User1 can log on to Computer1.
What should you do? ()
A. From the properties of the User1 account, modify the Log On To setting.
B. From the properties of the User1 account, modify the Logon Hours setting.
C. From the properties of the Computer1 account, modify the Managed By setting.
D. From the local security policy of Computer1, modify the Deny log on locally setting.
A. In the Default Domain Policy, set the Account lockout duration to 0.
B. In the Default Domain Policy, set the Account lockout duration to 99999.
C. From Active Directory Users and Computers, select the Account is trusted for delegation option for all user accounts.
D. From Active Directory Users and Computers, select the Account is sensitive and cannot be delegated option for all user accounts.
. Your network consists of a single Active Directory domain. All servers run Windows Server 2003
Service Pack 2 (SP2).
You create a new domain user account named User1 and assign the account a password of P@ssw0rd.
On the new account, you enable the User must change password at next logon option.
A week later, you discover that User1 is still using the password P@ssw0rd to log on to the domain.
You need to ensure that User1 is forced to use a different password the next time she changes her
password.
What should you do first? ()
A. In the Default Domain Policy, select Enforce password history.
B. In the Default Domain Policy, select Passwords must meet complexity requirements.
C. From the User’s account properties, select Account is sensitive and cannot be delegated.
D. From the User’s account properties, select Store password using reversible encryption.
最新试题
You are the network administrator for The network consists of a single Active Directory domain named All network servers run Windows Server 2003, and all client computers run Windows XP Professional.You are required to implement a backup strategy for all five servers on the network. You use the Backup Utility to schedule nightly backup jobs. You create a domain user account named BackupSvc, and add it to the local Backup Operators group on all file servers. The scheduled backup jobs will use BackupSvc to log on to the network Nightly backups occur successfully for six weeks. Then, nightly backups fail on all servers. When you examine the event log of one server, you discover that thepassword for BackupSvc is expired. You reset the password and select the Password never expires option for BackupSvc.The next day, you discover that the previous night's backup failed on all file servers.You need to ensure that the next night's backup is successful.Which two actions should you perform? (Each correct answer presents part of thesolution.() Choose two)
You are the network administrator for The network consists of asingle Active Directory domain named All network servers runWindows Server 2003.Confidential files are stored on a member server named TK1. The computer objectfor TK1 resides in an organizational unit (OU) named Confidential. A Group Policyobject (GPO) named GPO1 is linked to the Confidential OU.To audit access to the confidential files, you enable auditing on all private folders onTK1.Several days later, you review the audit logs. You discover that auditing is notsuccessful.You need to ensure that auditing occurs successfully.What should you do?()
You are the network administrator for The network consists of asingle Active Directory domain named The domain contains WindowsServer 2003 computers and Windows XP Professional computers.All confidential company files are stored on a file server named TestKing1. Thewritten company security states that all confidential data must be stored andtransmitted in a secure manner. To comply with the security policy, you enableEncrypting File System (EFS) on the confidential files. You also add EFScertificates to the data decryption field (DDF) of the confidential files for the userswho need to access them.While performing network monitoring, you notice that the confidential files that arestored on TestKing1 are being transmitted over the network without encryption.You must ensure that encryption is always used when the confidential files onTestKing1 are stored and transmitted over the network.What are two possible ways to accomplish this goal?() (Each correct answer presentsa complete solution. Choose two)
You are the network administrator for Test King. All network servers run WindowsServer 2003.You perform a full backup of the network every Monday. You perform incrementalbackups on Tuesday, Wednesday, Thursday, and Friday. Backups are alwaysperformed at 1:00 A.M.On Friday afternoon, a user accidentally deletes a file.You need to restore the file.What should you do?()
You are the network administrator for TestKing. You manage a Windows Server2003 computer named TestKing4 that functions as an application server.TestKing4 will be used for development during the next 30 days. You need to backup all data on TestKing4 every day for the next 30 days.You need to automate the backups of TestKing4 to meet these businessrequirements. You want to achieve this goal by using the minimum amount ofadministrative effort.What should you do?()
You are the network administrator for The network consists of asingle Active Directory domain named All domain controllers runWindows Server 2003, and all client computers run Windows XP Professional. Eachdomain server has a locally attached tape device.You need to back up each domain controller. Your backup process must fulfil thefollowing requirements:a. System recovery must be possible in the event of server failure.b. The system configuration and all current dynamic disk configurations must bebacked up.c. Other data partitions do not need to be backed up.What should you do?()
You are the network administrator for your company. All network servers runWindows Server 2003.You install and configure Software Update Services (SUS) on a server namedServer1. You configure the following settings:1. Do not use a proxy server for Internet access.2. Synchronize directly from the Microsoft Windows Update servers.3. Automatically approve new versions of previously approved updates.4. Save updates in a local folder.You back up the SUS configuration and schedule a daily synchronization procedurefor Server1.Later the same day, Server1 fails. You use the original names and locations torestore Windows Server 2003, IIS 6.0, and SUS.Now you need to fully restore the SUS configuration, without overwriting any otherdata.What should you do?()
You are the network administrator for All network severs runWindows Server 2003. Business hours are 9:00 A.M. to 5:00 P.M., Monday throughFridayA file server named TestKingB is configured to create a shadow copy every morningat 1:00 A.M. TestKingB hosts several shared folders. One shared folder has theconfiguration shown in the following table.For several months, users frequently access both databases in TestKingOrders. OneMonday morning, a user tells you that she needs to edit Receivables.mdb as itexisted at 5:00 P.M. on the previous Thursday.You need to modify TestKingB to enable the appropriate editing. You must ensurethat other users can continue to access current data without interruption.First, you map a drive to \\TestKingB\TestKingOrders.Which two additional actions should you perform? ()(Each correct answer presentspart of the solution. Choose two)
You are the network administrator for The network consists of a single Active Directory domain named.You configure a new Windows Server 2003 file server named TestKingSrv1.You restore user files from a tape backup, and you create a logon script that maps driveletters to shared files on TestKingSrv1.Users report that they cannot access TestKingSrv1 through the drive mappings youcreated. Users also report that TestKingSrv1 does not appear in My NetworkPlaces.You log on to TestKingSrv1 and confirm that the files are present and that theNTFS permissions and share permissions are correct. You cannot access anynetwork resources. You run the ipconfig command and see the following output.You need to configure the TCP/IP properties on TestKingSrv1 to resolve theproblem.What should you do?()
You are the network administrator for TestKing. The network consists of a singleActive Directory domain.A member server named Testking1 runs Windows Server 2003 and SoftwareUpdate Services (SUS). You perform a full backup of Testking1 every night.Testking1 fails unexpectedly and cannot be restarted. As a result, automatic updatesare no longer distributed within the domain.You need to restore the functionality of Testking1.First, you install Windows Server 2003 on a new computer and configure it as amember server. You name the new computer Testking1 and install all IIScomponents that were installed on the original Testking1. Then you install SUS andobtain the most recent successful backup of the original Testking1.Which two additional actions should you perform?() (Each correct answer presentspart of the solution. Choose two.)