Microsoft-PRO Windows Server 2008, Enterprise Administrator Set 3

Your network contains a server that runs Windows Server 2008. You install Microsoft Office 2007 on the server. You need to recommend an update management solution for the server. The solution must ensure that all operating system, security updates, drivers, and Office updates are installed on the server. What should you recommend?

Your company has one main office and 10 branch offices. The network consists of one Active Directory domain. All domain controllers run Windows Server 2008 and are located in the main office. You plan to deploy one Windows Server 2008 domain controller in each branch office. You need to recommend a security solution for the branch office domain controllers. The solution must prevent unauthorized users from copying the Active Directory database from a branch office domain controller by starting the server from an alternate startup disk. What should you recommend on each branch office domain controller?

Your company named Contoso and another company named Fabrikam establish a partnership. The Contoso network consists of one Active Directory domain named contoso.com. File servers are installed on the contoso.com domain. All file servers run Windows Server 2008. The Fabrikam network consists of one Active Directory forest named fabrikam.com. You need to plan a solution to enable Fabrikam users to access resources on the file servers. The solution must meet the following requirements: - Ensure that Fabrikam users can access resources only on the file servers. - Ensure that Contoso users are denied access to Fabrikam resources. What should you do first?

Your network consists of one Active Directory domain that contains domain controllers that run Windows Server 2008. The intranet site contains confidential documents. You need to design an identity and access management policy for the documents to meet the following requirements: - Record each time a document is accessed. - Protect confidential documents on the intranet site. - Place a time limit on access to documents, including documents sent outside the organization. What should you include in your design?

Your company has one main office and 10 branch offices. You plan to deploy Active Directory. You need to recommend a solution to recover Active Directory domain objects in the event of data loss. The solution must ensure that you can recover individually deleted user accounts. What should you recommend?

Your network contains a six-node Microsoft Clustering Service (MSCS) cluster that has a shared quorum. Each of the six nodes runs Windows Server 2003. You need to recommend a solution to transition the cluster to Windows Server 2008. The solution must maintain the availability of cluster services during the transition. What should you recommend?

Your company has one main office and 20 branch offices. Each office is configured as an Active Directory site. The network consists of one Active Directory domain. All servers run Windows Server 2008 and all client computers run Windows Vista. The main office contains three domain controllers. You need to deploy one domain controller in each branch office to meet the following requirements: - Authentication to a main office domain controller must only occur if a local domain controller fails. - Client computers in the main office must not authenticate to a domain controller in a branch office. - Client computers in a branch office must not authenticate to a domain controller in another branch office. - Client computers in each branch office must attempt to authenticate to the domain controller at their local site first. What should you do first?

You are the enterprise administrator for a company named Contoso, Ltd. Contoso acquires a company named Fabrikam, Inc. Contoso and Fabrikam each have one Active Directory forest that contains two domains. All domain controllers run Windows Server 2008. You need to migrate the Fabrikam domain resources to the Contoso forest. What should you do?

Your company has a main office and 10 branch offices. The network consists of one Active Directory domain. All domain controllers run Windows Server 2008 and are located in the main office. You plan to deploy one Windows Server 2008 domain controller in each branch office. You are concerned that the branch offices will fail to provide adequate security for the new domain controllers. You need to recommend a security solution to meet the following requirements: - Prevent any unauthorized user from accessing user passwords when the server is running. - Prevent any unauthorized user from accessing user passwords either locally or over the network on each branch office domain controller. Which configuration should you recommend for each branch office domain controller?

Your network consists of two Active Directory forests. The Active Directory forests are configured as shown in the following table: The servers in both forests run Windows Server 2008. A forest trust exists between the fabrikam.com forest and the contoso.com forest. Fabrikam.com has a server named server1.fabrikam.com. Contoso.com has a global group named ContosoSales. Users in the ContosoSales global group access an application on server1.fabrikam.com. You discover that users from other groups in the contoso.com domain can log on to servers in the fabrikam.com domain. You need to implement an authentication solution to meet the following requirements: - Users in the ContosoSales global group must be able to access server1.fabrikam.com. - Users in the ContosoSales global group must be denied access to all other servers in the fabrikam.com forest. - All other users in the contoso.com domain must be able to access only resources in the contoso.com forest. What should you do?