Microsoft 70-410 Exam Practice Test Instant Access

Question 1

Your network contains a production Active Directory forest named contoso.com and a test Active Directory forest named contoso.test. A trust relationship does not exist between the forests.

In the contoso.test domain, you create a backup of a Group Policy object (GPO) named GPO1.

You transfer the backup of GPO1 to a domain controller in the contoso.com domain.

You need to create a GPO in contoso.com based on the settings of GPO1.You must achieve this goal by using the minimum amount of Administrative effort.

What should you do?

AFrom Windows PowerShell, run the Copy-GPO cmdlet and the Restore-GPO cmdlet.

BFrom Windows PowerShell, run the Get-GPO cmdlet and the Copy-GPO cmdlet.

CFrom Group Policy Management, create a new GPO. Right-click the new GPO, and then click Import Settings.

DFrom Group Policy Management, create a new starter GPO. Right-click the new starter GPO, and then click Restore from Backup.

Answer : C

References:

https://technet.microsoft.com/en-us/library/dn789193(v=ws.11).aspx

Question 2

You have a server named Server1 that runs Windows Server 2012 R2.

You need to create a virtual hard disk (VHD) named Disk1.vhdx on Server1.

Which two tools can you use to achieve the goal? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

Athe New-VirtualDisk cmdlet

Bthe New-VHD cmdlet

Cthe Disk Management console

Dthe diskpart.exe command

Ethe Server Manager console

Answer : D

You can create a VHD from either the Disk Management snap-in or the command line (diskpart).

From the DiskPart command-line tool at an elevated command prompt, run the create vdisk command and specify the file (to name the file) and maximum (to set the maximum size in megabytes) parameters. The following code demonstrates how to create a VHD file at C:\vdisks\disk1.vdh with a maximum file size of 16 GB (or 16,000 MB).

DiskPart

Microsoft DiskPart version 6.1.7100

On computer: WIN7

DISKPART> create vdisk file='C:\vdisks\disk1.vhd' maximum=16000

Question 3

Your network contains an Active Directory domain. You deploy two servers named Server1 and Server2 that run Windows Server 2012 R2 to the domain.

You sign in to Server1.

From Server1, you need to add the DNS Server role to Server2 by using the Server Manager console.

What should you do first?

AOn Server2, add Server1 to Server Manager.

BOn Server1, add Server2 to Server Manager.

COn Server1, run Enable-PSRemoting in Windows PowerShell.

DOn Server2, run Enable-PSRemoting in Windows PowerShell.

Answer : B

References:

https://docs.microsoft.com/en-us/windows-server/administration/server-manager/add-servers-to-server-manager

http://www.tomsitpro.com/articles/configure-dns-windows-server-2012,2-793.html

Question 4

You have a server named Server1 that runs a Server Core installation of Windows Server 2012 R2 Standard. You establish a remote management session to Server1.

You need to identify which task can be performed on Server1 from within the Remote management session.

Which tasks can you perform?

AInstall a feature by using Server Manager.

BModify the network settings by using Sconfig.

CDisable services by using Msconfig.

DJoin a domain by using the System Properties.

Answer : C

In Windows Server 2012 R2, you can use the Server Configuration tool (Sconfig.cmd) to configure and manage several common aspects of Server Core installations. You must be a member of the Administrators group to use the tool. Sconfig.cmd is available in the Minimal Server Interface and in Server with a GUI mode.

Question 5

Your network contains an Active Directory domain named adatum.com. The network contains a member server that runs Windows Server 2012 R2. You log on the member server by using the built-in domain Administrator account.

When you run the Active Directory Administrator Center and attempt to move an Organizational unit (OU) named OU-01, you receive an Access Denied message.

The permissions for OU-01 are shown in the exhibit.

You need to ensure that you can move OU-01.

ALog on to a domain controller by using an account that is a member of the Domain Admin group.

BAdd the administrator account to the MAnaged by Property of OU-01.

CRemove the Everyone access control list (ACL) of OU-01.

DLog on to a domain controller by using an account that is a member of the Enterprise Admins group.

Answer : A

Question 6

Your network contains one Active Directory forest named contoso.com. The forest contains two child domains named east.contoso.com and west.contoso.com.

Your user account is a member of the Domain Admins group in all of the domains. The account is not a member of any other groups.

The contoso.com domain contains a Group Policy object (GPO) named DesktopGPO. DesktopGPO is applied to the following containers.

An organizational unit (OU) named ALLUsers in contoso.com

An OU named Marketing in east.contoso.com

The east.contoso.com domain

The contoso.com domain

A site named Corporate

You delete DesktopGPO.

You need to identify which Group Policy links must be removed manually.

Which three GPO links should you identify? Each correct answer presents part of the solution.

Aa site named Corporate

Bthe AllUsers OU in contoso.com

Cthe contoso.com domain

Dthe east.contoso.com domain

Ethe Marketing OU in east.contoso.com

Answer : A, D, E

When you delete a GPO, Group Policy Management attempts to delete all links to that GPO in the domain of the GPO. However, to delete a link to a GPO, you must have permission to link Group Policy objects for the organizational unit or domain. If you do not have rights to delete a link, the GPO will be deleted, but the link will remain. Links from other domains and sites are not deleted. The link to a deleted GPO appears in Group Policy Management as Not Found.

https://technet.microsoft.com/en-us/library/cc776678(v=ws.10).aspx

Question 7

Your network contains an Active Directory domain named contoso.com. The domain contains two standalone servers named Serverl and Server2 that are located in a perimeter network. Both servers run the default installation of Windows Server 2012 R2.

You need to manage Serverl remotely from Server2.

What should you do?

AFrom Server2, add Server1 to the list of TrustedHosts.

BFrom Server2, install a self-signed certificate.

CFrom Server1, add Server2 to the list of TrustedHosts.

DFrom Server1, install a self-signed certificate

Answer : C

For remote connections in a Workgroup to Workgroup/Domain scenario, the remote computer (here Server2) must be added to the trusted hosts list on the source computer (here Server1). To do this, run the following command on the source computer in a Command Prompt window that is opened with elevated user rights.

winrm set winrm/config/client @{TrustedHosts='RemoteComputerName'}

Note: TrustedHosts is a setting on the local computer that defines one or more computers that are trusted when establishing remoting sessions using WinRM from the local computer using either ENTER-PSSESSION or INVOKE-COMMAND.

https://technet.microsoft.com/en-us/library/dd759202.aspx

Microsoft 70-410 Installing and Configuring Windows Server Exam Practice Test