Your network consists of a single Active Directory Domain. You have a VPN server that runs Windows
Server 2003 Service Pack 2 (SP2).
On the VPN server, you create several remote access policies. You view the properties of an account as shown in the exhibit. (Click the Exhibit button.)
You need to select the Control access through Remote Access Policy remote access permission for User1.
What should you do? ()
A. Add User1 to the Remote Desktop Users group.
B. Enable RADIUS authentication on the VPN server.
C. Raise the functional level of the domain to Windows 2000 native.
D. Select the Store password using reversible encryption option for User1.
您可能感兴趣的试卷
你可能感兴趣的试题
Your network consists of a single Active Directory domain. You have a member server named Server1 that
runs Windows Server 2003 Service Pack 2 (SP2).
You need to track all authentication attempts on Server1.
What should you do?()
A. Enable auditing of logon event events in Server1’s local policy.
B. Enable auditing of logon event events in the Default Domain Controller Policy.
C. Enable auditing of account logon event events in Server1’s local policy.
D. Enable auditing of account logon event events in the Default Domain Controller Policy.
Your network consists of a single Active Directory domain. The domain contains a server named Server1 that runs Windows Server 2003 Service Pack 2 (SP2).
Your company’s security policy states that domain users must be prevented from logging on to Server1 if a domain controller is unavailable.
You disconnect Server1 from the network and discover that you can log on to Server1.
You need to configure Server1 to comply with the company’s security policy.
What should you do on Server1? ()
A. From the local security policy, modify the Security Options.
B. From the local security policy, modify the User Rights Assignment.
C. From Active Directory Users and Computers, modify the properties of the Server1 account.
D. From Active Directory Users and Computers, modify the properties of the Domain Computers group.
You have a stand-alone server named Server1 that runs Windows Server 2003 Service Pack 2 (SP2).
A user named User1 is a member of the Administrators group on Server1.
User1 attempts to log on to Server1 and receives the following error message.
Other members of the Administrators group can log on to Server1.
You need to ensure that User1 can log on to Server1.
What should you do? ()
A. From the properties of the User1 account, modify the Session settings.
B. From the properties of the User1 account, modify Environment settings.
C. From the local security policy on Computer1, modify the Deny log on locally setting.
D. From the local security policy on Server1, modify the Impersonate a client after authentication setting.
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service
Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3).
A user named User1 attempts to log on to a computer named Computer1 and receives the following error
message.
You need to ensure that User1 can log on to Computer1.
What should you do?()
A. From the properties of the User1 account, modify the Log On To setting.
B. From the properties of the User1 account, modify the Logon Hours setting.
C. From the properties of the Computer1 account, modify the Managed By setting.
D. From the local security policy of Computer1, modify the Deny log on locally setting.
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3).
You need to ensure that locked out user accounts remain locked out until an administrator unlocks the accounts.
What should you do? ()
A. In the Default Domain Policy, set the Account lockout duration to 0.
B. In the Default Domain Policy, set the Account lockout duration to 99999.
C. From Active Directory Users and Computers, select the Account is trusted for delegation option for all user accounts.
D. From Active Directory Users and Computers, select the Account is sensitive and cannot be delegated option for all user accounts.
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service
Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3).
You create an account for a new user named User1. User1 reports that when she first attempts to log on to the domain, she receives the following message.
Other users report that they can log on to the domain from User1’s computer.
You need to ensure that User1 can log on to the domain.
What should you do? ()
A. Modify the properties of User1’s account.
B. Modify the properties of the computer account.
C. On User1’s computer, create a local user account.
D. On User1’s computer, modify the local security policy.
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service
Pack 2 (SP2).
You create a new domain user account named User1 and assign the account a password of P@ssw0rd. On the new account, you enable the User must change password at next logon option.
A week later, you discover that User1 is still using the password P@ssw0rd to log on to the domain.
You need to ensure that User1 is forced to use a different password the next time she changes her password.
What should you do first? ()
A. In the Default Domain Policy, select Enforce password history.
B. In the Default Domain Policy, select Passwords must meet complexity requirements.
C. From the User’s account properties, select Account is sensitive and cannot be delegated.
D. From the User’s account properties, select Store password using reversible encryption.
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service
Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3).
A domain user named User1 attempts to log on to a computer named Computer1. After several failed logon
attempts, User1 receives the following error message.
You reset the password for User1 and provide the new password to User1.
You need to ensure that User1 can log on immediately.
What should you do? ()
A. Modify the Account settings for User1.
B. Modify the Session settings for User1.
C. Disable User1 and then enable User1.
D. Disable Computer1 and then enable Computer1.
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service
Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3).
You have an organizational unit (OU) named Accounting. You create a Group Policy object (GPO) and link it to the Accounting OU.
You join a new client computer to the domain.
You discover that the new client computer fails to receive the settings from the new GPO.
You need to ensure that the new GPO is applied to the new computer.
What should you do? ()
A. Move the computer account to the Accounting OU.
B. Modify the Location attribute of the computer account.
C. Modify the Managed By attribute of the computer account.
D. Enable the Trust computer for delegation option on the computer account.
Your network consists of a single Active Directory domain. All network servers run Windows Server 2003
Service Pack 2 (SP2).
You have a computer named ACCT5 that runs Windows XP Professional Service Pack 3 (SP3). Users report that they cannot log onto ACCT5 by using their domain credentials.
You view the properties of the computer account as shown in the exhibit. (Click the Exhibit button.)
You need to need to ensure that users can log on to ACCT5 by using their domain credentials.
What should you do?()
A. At the command prompt, run the Dsrm command.
B. At the command prompt, run the Netdom reset command.
C. From Active Directory Users and Computers, reset the computer account.
D. From Active Directory Users and Computers, enable the computer account.
最新试题
You are the domain administrator for TestKing's Active Directory domain. Allservers run Windows Server 2003. All client computers run Windows XPProfessional.A newly installed server was added to your domain. You need to administer thisserver remotely from your client computer.You need to configure the new server to ensure that it can be administeredremotely.What should you do?()
You are the network administrator for TestKing. The network consists of a singleActive Directory domain. All network servers run Windows Server 2003 and allclient computers run Windows XP Professional.Terminal Services is installed on a member server named Testking1. Currently, 30active terminal server sessions are connected to Testking1. An unforeseen hardwareupgrade will require shutting down the server.You need to provide a two-minute warning about the shutdown to all activeterminal sessions.First, you log on to Testking1 as an administrator.What should you do next?()
You are the network administrator for The network consists of asingle Active Directory domain named All network servers runWindows Server 2003.Confidential files are stored on a member server named TK1. The computer objectfor TK1 resides in an organizational unit (OU) named Confidential. A Group Policyobject (GPO) named GPO1 is linked to the Confidential OU.To audit access to the confidential files, you enable auditing on all private folders onTK1.Several days later, you review the audit logs. You discover that auditing is notsuccessful.You need to ensure that auditing occurs successfully.What should you do?()
You are the network administrator for TestKing. The network consists of a singleActive Directory domain. All servers run Windows Server 2003.The domain contains two domain controllers named Testking1 and Testking2. Youuse a Windows XP Professional client computer named Client1.In Active Directory, the domain administrator creates two new user accountsnamed NetAdmin1 and AdminUser1. The NetAdmin1 account is a member of theDomain Admins global group. The AdminUser1 account is a member of only theUsers local group. You assign the AdminUser1 logon account the Allow log onlocally user right in the Default Domain Controller Group Policy object (GPO).A new written security policy states that user accounts that are member of theDomain Admins global group should not be used to log on to the console of adomain controller. It also states that administrative tasks should be performed byusing the Secondary Logon service.You need to create a new computer account in Active Directory, and you mustcomply with the new company security policy.What should you do?()
You are the network administrator for your company. All network servers runWindows Server 2003.You install and configure Software Update Services (SUS) on a server namedServer1. You configure the following settings:1. Do not use a proxy server for Internet access.2. Synchronize directly from the Microsoft Windows Update servers.3. Automatically approve new versions of previously approved updates.4. Save updates in a local folder.You back up the SUS configuration and schedule a daily synchronization procedurefor Server1.Later the same day, Server1 fails. You use the original names and locations torestore Windows Server 2003, IIS 6.0, and SUS.Now you need to fully restore the SUS configuration, without overwriting any otherdata.What should you do?()
You are the administrator of a Windows Server 2003 computer named Testking1.An application on Testking1 gradually uses more and more memory until it causesTestking1 to stop responding. If you restart the application before it uses theavailable memory, there is no interruption of user services.You need to configure Testking1 to notify you when it encounters a low-memorycondition.What should you do?()
You are the network administrator for TestKing. The network contains a WindowsServer 2003 computer named testking1, which hosts a critical business applicationnamed Salesapp. Testking1 has one disk that contains a single NTFS volume.Five days ago, the System State of testking1 was backed up, and an AutomatedSystem Recovery (ASR) backup was created. No additional backups wereperformed. Subsequently, many changes were made to the Salesapp data files.You apply an update to the application, which requires you to restart testking1.Windows startup terminates with a Stop error. You restart the computer and bootto a floppy disk. A utility on this disk gives you read-only access to the NTFS filesystem. You discover that one of the .dll files for the Salesapp application iscorrupted. The corrupted file is stored in the C.\Windows\System32 folder.You need to restore the corrupted file. You need to avoid losing any changes madeto the data files on testking1.What should you do onTestKing1?()
You are the network administrator for The network consists of asingle Active Directory domain named The domain contains WindowsServer 2003 computers and Windows XP Professional computers.All confidential company files are stored on a file server named TestKing1. Thewritten company security states that all confidential data must be stored andtransmitted in a secure manner. To comply with the security policy, you enableEncrypting File System (EFS) on the confidential files. You also add EFScertificates to the data decryption field (DDF) of the confidential files for the userswho need to access them.While performing network monitoring, you notice that the confidential files that arestored on TestKing1 are being transmitted over the network without encryption.You must ensure that encryption is always used when the confidential files onTestKing1 are stored and transmitted over the network.What are two possible ways to accomplish this goal?() (Each correct answer presentsa complete solution. Choose two)
You are the domain admin for Testking's Active Directory domain. You use aSoftware Update Services (SUS) server to manage the security updates for allservers that run Windows Server 2003.You need to install three critical security hotfixes from Microsoft. One of thehotfixes cannot be installed in the current production environment because thehotfix causes a custom application to stop responding.You need to install two of the three hotfixes during a maintenance session tomorrowat 2:00 A.M. You need to automate the installation process.What should you do?()
You are the administrator of a Windows Server 2003 computer named Testking1.Backups of the System State data of Testking1 occur each day by using the localAdministrator account.A new requirement restricts you from running services by using theAdministrator account. To meet the requirement, you create a new service accountnamed BackupTestking1 to be used for backups. You want this account to have theminimum permissions necessary to perform backups.You need to grant the appropriate permissions to the BackupTestking1 account andto configure the backup job to use the BackupTestking1 account.What should you do?()