Your network consists of a single Active Directory domain. You have a member server named Server1 that
runs Windows Server 2003 Service Pack 2 (SP2).
You need to track all authentication attempts on Server1.
What should you do?()
A. Enable auditing of logon event events in Server1’s local policy.
B. Enable auditing of logon event events in the Default Domain Controller Policy.
C. Enable auditing of account logon event events in Server1’s local policy.
D. Enable auditing of account logon event events in the Default Domain Controller Policy.
您可能感兴趣的试卷
你可能感兴趣的试题
Your network consists of a single Active Directory domain. The domain contains a server named Server1 that runs Windows Server 2003 Service Pack 2 (SP2).
Your company’s security policy states that domain users must be prevented from logging on to Server1 if a domain controller is unavailable.
You disconnect Server1 from the network and discover that you can log on to Server1.
You need to configure Server1 to comply with the company’s security policy.
What should you do on Server1? ()
A. From the local security policy, modify the Security Options.
B. From the local security policy, modify the User Rights Assignment.
C. From Active Directory Users and Computers, modify the properties of the Server1 account.
D. From Active Directory Users and Computers, modify the properties of the Domain Computers group.
You have a stand-alone server named Server1 that runs Windows Server 2003 Service Pack 2 (SP2).
A user named User1 is a member of the Administrators group on Server1.
User1 attempts to log on to Server1 and receives the following error message.
Other members of the Administrators group can log on to Server1.
You need to ensure that User1 can log on to Server1.
What should you do? ()
A. From the properties of the User1 account, modify the Session settings.
B. From the properties of the User1 account, modify Environment settings.
C. From the local security policy on Computer1, modify the Deny log on locally setting.
D. From the local security policy on Server1, modify the Impersonate a client after authentication setting.
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service
Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3).
A user named User1 attempts to log on to a computer named Computer1 and receives the following error
message.
You need to ensure that User1 can log on to Computer1.
What should you do?()
A. From the properties of the User1 account, modify the Log On To setting.
B. From the properties of the User1 account, modify the Logon Hours setting.
C. From the properties of the Computer1 account, modify the Managed By setting.
D. From the local security policy of Computer1, modify the Deny log on locally setting.
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3).
You need to ensure that locked out user accounts remain locked out until an administrator unlocks the accounts.
What should you do? ()
A. In the Default Domain Policy, set the Account lockout duration to 0.
B. In the Default Domain Policy, set the Account lockout duration to 99999.
C. From Active Directory Users and Computers, select the Account is trusted for delegation option for all user accounts.
D. From Active Directory Users and Computers, select the Account is sensitive and cannot be delegated option for all user accounts.
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service
Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3).
You create an account for a new user named User1. User1 reports that when she first attempts to log on to the domain, she receives the following message.
Other users report that they can log on to the domain from User1’s computer.
You need to ensure that User1 can log on to the domain.
What should you do? ()
A. Modify the properties of User1’s account.
B. Modify the properties of the computer account.
C. On User1’s computer, create a local user account.
D. On User1’s computer, modify the local security policy.
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service
Pack 2 (SP2).
You create a new domain user account named User1 and assign the account a password of P@ssw0rd. On the new account, you enable the User must change password at next logon option.
A week later, you discover that User1 is still using the password P@ssw0rd to log on to the domain.
You need to ensure that User1 is forced to use a different password the next time she changes her password.
What should you do first? ()
A. In the Default Domain Policy, select Enforce password history.
B. In the Default Domain Policy, select Passwords must meet complexity requirements.
C. From the User’s account properties, select Account is sensitive and cannot be delegated.
D. From the User’s account properties, select Store password using reversible encryption.
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service
Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3).
A domain user named User1 attempts to log on to a computer named Computer1. After several failed logon
attempts, User1 receives the following error message.
You reset the password for User1 and provide the new password to User1.
You need to ensure that User1 can log on immediately.
What should you do? ()
A. Modify the Account settings for User1.
B. Modify the Session settings for User1.
C. Disable User1 and then enable User1.
D. Disable Computer1 and then enable Computer1.
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service
Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3).
You have an organizational unit (OU) named Accounting. You create a Group Policy object (GPO) and link it to the Accounting OU.
You join a new client computer to the domain.
You discover that the new client computer fails to receive the settings from the new GPO.
You need to ensure that the new GPO is applied to the new computer.
What should you do? ()
A. Move the computer account to the Accounting OU.
B. Modify the Location attribute of the computer account.
C. Modify the Managed By attribute of the computer account.
D. Enable the Trust computer for delegation option on the computer account.
Your network consists of a single Active Directory domain. All network servers run Windows Server 2003
Service Pack 2 (SP2).
You have a computer named ACCT5 that runs Windows XP Professional Service Pack 3 (SP3). Users report that they cannot log onto ACCT5 by using their domain credentials.
You view the properties of the computer account as shown in the exhibit. (Click the Exhibit button.)
You need to need to ensure that users can log on to ACCT5 by using their domain credentials.
What should you do?()
A. At the command prompt, run the Dsrm command.
B. At the command prompt, run the Netdom reset command.
C. From Active Directory Users and Computers, reset the computer account.
D. From Active Directory Users and Computers, enable the computer account.
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service Pack 2 (SP2).
You restore the system state on a member server.
You attempt to log on to the server and receive the following error message: “The system cannot log you on to this domain because the system’s computer account in its primary domain is missing or the password on that account is incorrect.”
You need to ensure that you can successfully log on to the domain from the server.
What should you do on the server? ()
A. Modify the password policy.
B. Run the Dsrm.exe command.
C. Restart the Netlogon service.
D. Run the Netdom.exe reset command.
最新试题
You are the network administrator for The network consists of asingle DNS domain named.You replace a UNIX server with a Windows Server 2003 computer namedTestKing1.TestKing1 is the DNS server and start authority (SOA) for testking.com. A UNIXserver named TestKing2 is the mail server for testking.com.You receive reports that Internet users cannot send e-mail to the testking.comdomain. The host addresses are shown in the following window.You need to ensure that Internet users can send e-mail to the testking.com domain.What should you do?()
You are the network administrator for The network consists of a single Active Directory domain named All network servers run Windows Server 2003, and all client computers run Windows XP Professional.You are required to implement a backup strategy for all five servers on the network. You use the Backup Utility to schedule nightly backup jobs. You create a domain user account named BackupSvc, and add it to the local Backup Operators group on all file servers. The scheduled backup jobs will use BackupSvc to log on to the network Nightly backups occur successfully for six weeks. Then, nightly backups fail on all servers. When you examine the event log of one server, you discover that thepassword for BackupSvc is expired. You reset the password and select the Password never expires option for BackupSvc.The next day, you discover that the previous night's backup failed on all file servers.You need to ensure that the next night's backup is successful.Which two actions should you perform? (Each correct answer presents part of thesolution.() Choose two)
You are the network administrator for TestKing. The network contains a WindowsServer 2003 computer named Testking1.You back up the data folders on Testking1 by using the following schedule:1. Normal backup every Monday.2. Incremental backups every Tuesday, Wednesday, Thursday, and Friday.After the backup on Friday is completed, a user accidentally deletes a file from adata folder on Server1. The user reports that he modified the file in the past week,but he does not know which day he modified the file. You do not know when the filewas last backed up.You need to restore the latest copy of the file as quickly as possible.What should you do?()
You are the network administrator for The network consists of asingle Active Directory domain named The domain contains WindowsServer 2003 computers and Windows XP Professional computers.All confidential company files are stored on a file server named TestKing1. Thewritten company security states that all confidential data must be stored andtransmitted in a secure manner. To comply with the security policy, you enableEncrypting File System (EFS) on the confidential files. You also add EFScertificates to the data decryption field (DDF) of the confidential files for the userswho need to access them.While performing network monitoring, you notice that the confidential files that arestored on TestKing1 are being transmitted over the network without encryption.You must ensure that encryption is always used when the confidential files onTestKing1 are stored and transmitted over the network.What are two possible ways to accomplish this goal?() (Each correct answer presentsa complete solution. Choose two)
You are the network administrator for TestKing. Your network consists of a singleActive Directory domain. You manage a Terminal Server farm that includes fiveterminal servers and a Terminal Services Licensing server named testking9. Allservers run Windows 2000 Server. There are 2,500 users who log on to the terminalservers to access a custom human resource (HR) application.You install Windows Server 2003 on a new server named testking10. Testking10 isconfigured with all default settings enabled. You install Terminal Services and theHR application on testking10. You instruct some users to access the HR applicationon testking10.Four months later, users report that they can no longer establish Terminal Servicessessions to testking10. You verify that users can connect to the other terminalservers in your Terminal Server farm.You need to ensure that users can run the HR application on all terminal servers onthe network.What should you do?()
You are the network administrator for your company. All network servers runWindows Server 2003.You install and configure Software Update Services (SUS) on a server namedServer1. You configure the following settings:1. Do not use a proxy server for Internet access.2. Synchronize directly from the Microsoft Windows Update servers.3. Automatically approve new versions of previously approved updates.4. Save updates in a local folder.You back up the SUS configuration and schedule a daily synchronization procedurefor Server1.Later the same day, Server1 fails. You use the original names and locations torestore Windows Server 2003, IIS 6.0, and SUS.Now you need to fully restore the SUS configuration, without overwriting any otherdata.What should you do?()
You are the network administrator for Test King. The network consists of a singleActive Directory domain named The domain contains WindowsServer 2003 computers and Windows XP Professional computers.The Default Domain Policy has been modified by importing a security template file,which contain several security settings.A server named TestKing1 cannot run a program that us functioning on othersimilarly configured servers. You need to find out whether additional securitysettings have been added to the local security policy on TestKing1.To troubleshoot, you want to use a tool to compare the current security settings onTestKing1 against the security template file in order to automatically identify anysettings that might have been added to the local security policy.Which tool should you run on TestKing1?()
You are the network administrator for your company. All network servers runWindows Server 2003. All client computers run Windows XP Professional.A member server named Server1 is located at a branch office that does not permitthe use of Remote Desktop Protocol. Another administrator uses the Backup utilityto create a scheduled backup job on Server1. The backup job performs a normalbackup of an application server.The application server is removed from the network.You need to use a client computer to remove the backup job from Server1. Youcannot travel to the branch office.What should you do?()
You are the network administrator for TestKing. The network consists of a singleActive Directory domain that contains five member servers running Windows 2000Server. All five servers have CD-ROM drives and floppy disk drives.You purchase a new computer that has a CD-RW drive. This computer does notcurrently have a floppy disk drive, but you plan to install one eventually.You install and configure Windows Server 2003 and Recovery Console on the newcomputer. You configure it as a member server named Testking6.Now you need to ensure that Testking6 can be restored in the event of an operatingsystem failure.Which two actions should you perform? ()(Each correct answer presents part of thesolution. Choose two.)
You are the network administrator for You administer a Windows Server 2003 computer named TestKing2. User profiles are stored on TestKing2.A user named Sandra reports that she accidentally deleted a folder namedTestKingStuff from her user profile. She needs to have her TestKingStuff folderrestored. Other users are accessing TestKing2, and you do not want to negativelyaffect their work. You locate the latest backup that contains the files that you needto restore.You need to restore Sandra's TestKingStuff folder. You want to achieve this goal byusing the minimum amount of administrative effort.What should you do?()