Microsoft Windows Server 2012 Set 11

Your network contains one Active Directory domain named contoso.com. From the Group Policy Management console, you view the details of a Group Policy object (GPO) named GPO1. You need to ensure that the comments field of GPO1 contains a detailed description of GPO1. What should you do?

You have an enterprise certification authority (CA) named CA1. You have a certificate template named UserAutoEnroll that is based on the User certificate template. Domain users are configured to autoenroll for UserAutoEnroll. A user named User1 has an email address defined in Active Directory. A user named User2 does not have an email address defined in Active Directory.You discover that User1 was issued a certificate based on UserAutoEnroll template automatically. A request by user2 for a certificate based on the UserAutoEnroll template fails. You need to ensure that all users can autoenroll for certificated based on the UserAutoEnroll template. Which setting should you configure from the properties on the UserAutoEnroll certificate template?

Note: This question is a part of series of questions that use the same or similar answer choices. An answer choice may be correct for more than one question in the series. Each question is independent of the other questions in this series. Information and details provided in a question apply only to that question. Your network contains one Active Directory forest named contoso.com. The forest contains two child domains and six domain controllers. The domain controllers are configured as shown in the following table. You create a trust between contoso.com and a domain in another forest at a partner company. You need to prevent the sales.contoso.com and the manufacturing.contoso.com names from being used in authentication requests across the forest trust. What should you use?

Note: This question is part of series of questions that use the same or similar answer choices. An answer choice may be correct for more than one question in the series. Each question is independent of the other questions in this series. Information and details provided in a question apply only to that question. Your network contains one Active Directory forest named contoso.com. The forest contains two child domains and six domain controllers. The domain controllers are configured as shown in the following table. You need to prevent administrators from accidentally deleting any of the sites in the forest. What should you use?

Note: This question is part of series of questions that use the same or similar answer choices. An answer choice may be correct for more than one question in the series. Each question is independent of the other questions in this series. Information and details provided in a question apply only to that question. Your network contains one Active Directory forest named contoso.com. The forest contains two child domains and six domain controllers. The domain controllers are configured as shown in the following table. You need ensure that all Active Directory changes are replicated to all of the domain controllers in the forest within 30 minutes. What should you use?

Your network contains one Active Directory forest named contoso.com. The forest contains a single domain. The domain contains the domain controllers is configured as shown in the following table. The replication topology is configured as shown in the following output. You discover that replication between DC1 and DC3 takes a few hours. You need to reduce the amount of time it takes to replicate Active Directory changes between DC1 and DC3. What should you do?

You have a cluster named Cluster1 that contains two nodes. Both nodes run Windows Server 2012 R2. Cluster1 hosts a virtual machine named VM1 that runs Windows Server 2012 R2. You notice that VM1 is marked as being in a critical state in the cluster. You verify that VM1 is functioning correctly. You need to ensure that VM1 is no longer marked as being in a critical state. Which cmdlet should you run?

You network contains one Active Directory domain named adatum.com. The domain contains a DNS server named Server1 that runs Windows Server 2012 R2. All domain computers use Server1 for DNS. You sign adatum.com by using DNSSEC. You need to configure the domain computers to validate DNS responses for adatum.com records. What should you configure in Group Policy?

Note: This question is part of series of questions that use the same or similar answer choices. An answer choice may be correct for more than one question in the series. Each question is independent of the other questions in this series. Information and details provided in a question apply only to that question. Your network contains one Active Directory forest named contoso.com. The forest contains two child domains and six domain controllers. The domain controllers are configured as shown in the following table. You need to enable universal group membership caching for the Europe office and Asia office sites. What should you use?

You have an enterprise certification authority (CA) named CA1. You configure a recovery agent for CA1. On CA1, you create a new certificate template named CertTemplate1, and then you configure CA1 to allow certificates to be requested based on CertTemplate1. You need to ensure that new certificates issued based on CertTemplate1 can be recovered. What should you do?