Download Latest 070-297 dumps from here…
- Saturday, April 19, 2008, 19:04
- Study Guide
- 129 views
- Add a comment
Hello friends iam deepak/23..Recently iam certified in MCSE…….
Click on the following Link to Download Latest 070-297 Testking dumps:
http://www.4shared.com/file/42685779/a00afdae/TestKing_70-297_v19.html
Product DescriptionExam Number/Code: 70-297
Exam Name: MCSE Designing a Microsoft Windows Server 2003 Active Directory and Network Infrastructure
“MCSE Designing a Microsoft Windows Server 2003 Active Directory and Network Infrastructure”, also known as 70-297 exam, is a Microsoft certification. With the complete collection of questions and answers, Pass4sure has assembled to take you through 12 Case Studies to your 70-297 Exam preparation. In the 70-297 exam resources, you will cover every field and category in MCSE helping to ready you for your successful Microsoft Certification.
QUESTION 1
You work as the network administrator at Certkiller .com. The Certkiller .com
network consists of a single Active Directory domain named Certkiller .com. All
servers on the Certkiller .com network run Windows Server 2003 and all client
computers run Windows XP Professional.
The Certkiller .com network contains five domain controllers, ten member servers,
and 1,000 client computers. The OU structure is as follows:
1. All client computers reside in the Clients OU.
2. All member servers reside in the Servers OU.
3. All domain controllers reside in the DomainControllers OU.
The OU structure is illustrated in the following Exhibit.
Actualtests.org – The Power of Knowing
The Certkiller .com written security policy dictates that all logon attempts that use a
local user account on any computer must be logged. To this end you are planning to
employ group policy to implement this requirement, as well as other security related
settings to all computers in the Certkiller .com domain.
You need to ensure that in the event of further changes being made to the security
policy, you are able to redeploy and refresh these settings, as well as to ensure that
you can verify the security settings during periodic audits.
What should you do? (Each correct answer presents part of the solution. Choose
two.)
A. Create a new GPO and link it to the Computers OU.
B. Create an administrative template with the desired settings and import it into the GPO.
C. Create a new GPO and link it to the CLComputers OU.
D. Create an IPSec policy with the desired settings and import it into the GPO.
E. Create a new GPO and link it to the Servers OU.
F. Create a security template with the desired settings and import it into the GPO.
G. Create a new GPO and link it to the DomainControllers OU.
Answer: A, F
Explanation: Security templates are collections of policy settings that can be applied
to a local computer, imported to a GPO, or used to analyze security. You can define
the desired policy settings using the Security Templates
MMC. After the template is configured, you can apply the template to local policy
on a computer or when applying the settings to a collection of users or computers,
import the template into a GPO. Once applied, the security settings can be analyzed
and verified using the Security Configuration and Analysis tool, which is used to is
used to configure a computer with a security template or to compare the current
computer settings with the settings in a security template.
Incorrect Answers:
B: The security settings in this scenario are not configured in an administrative template.
C: The security settings in this scenario should apply to all computers in the domain, not
just the client computers.
D: The security settings in this scenario include settings other than those found in the
IPSec policy.
E: The security settings in this scenario should apply to all computers in the domain, not
just the member servers.
Actualtests.org – The Power of Knowing
G: The security settings in this scenario should apply to all computers in the domain, not
just the domain controllers.
QUESTION 2
You work as the network administrator at Certkiller .com. The Certkiller .com
network consists of a single Active Directory domain named Certkiller .com. All
domain controllers and servers on the Certkiller .com network run Windows Server
2003. Half the client computers run Windows XP Professional and the rest run
Windows NT 4.0 Workstation.
A Certkiller .com database server named Certkiller -DB02 stores confidential data
that is used by all users. Users access a custom financial application named
Ck_phtester1 on Certkiller -DB02 to add, modify, and remove data from a
database named ProcessingDb on the server. To this end it is absolutely essential
that all users must be able to access ProcessingDb on Certkiller -DB02.
The new Certkiller .com written security policy requires all traffic between servers
and client computers to be encrypted if possible. You must configure the IPSec
policy that will enforce the requirements of the new Certkiller .com written security
policy. Your solution must not prevent any client computers from connecting to
Certkiller -DB02 and using ProcessingDb. You do not want to upgrade the
Windows NT 4.0 Workstations to Windows XP Professional.
What should you do? (Each correct answer presents part of the solution. Choose
TWO.)
A. Assign the Server (Request Security) IPSec policy on Certkiller -DB02.
B. Assign the Secure Server (Require Security) IPSec policy on Certkiller -DB02.
C. Assign the Server (Require Security) IPSec policy on all client computers.
D. Assign the Client (Respond Only) IPSec policy on all client computers.
E. Assign the Server (Request Security) IPSec policy on all client computers.
Answer: A, D
Explanation: Because you currently have Windows NT 4.0 Workstation operating
system client computers on the network, you need to configure the Server (Request
Security) IPSec policy for Certkiller -DB02. Windows NT 4.0 Workstation client
computers do not support IPSec. Assigning the Server (Request Security)IPSec
policy for Certkiller -DB02 will result in Certkiller -DB02 requesting IPSec to be
used for data communications. If the other computer supports IPSec, secure data
communication will take place. If the other computer does not support IPSec,
Certkiller -DB02 will still allow unsecured communication with that computer.
Your Windows NT 4.0 Workstation client computers will therefore still be allowed
to establish unsecured data communications to Certkiller -DB02.
The Client (Respond Only) IPSec policy must be assigned to client computers. This will
result in client computers responding to IPSec requests from other computers who
request it. No client computers will initiate secure data communication.
Incorrect Answers:
Actualtests.org – The Power of Knowing
B: Because you currently have Windows NT 4.0 Workstation client computers on
the network, you cannot assign the Secure Server (Require Security) IPSec policy for
Certkiller -DB02. If you do, an unsecure connection will NOT be allowed to be
established from a Windows NT 4.0 Workstation client computer to Certkiller -DB02
because Certkiller -SR02 will only allow secure data communications.
C: You configure the Server (Require Security) IPSec policy and Server (Request
Security) IPSec policy on computers that you want to initiate secure data communication
with other computers.
E: You configure the Server (Require Security) IPSec policy and Server (Request
Security) IPSec policy on computers that you want to initiate secure data communication
with other computers.
QUESTION 3
HOTSPOT
You work as the network administrator at Certkiller .com. The Certkiller .com
network consists of a single Active Directory domain named Certkiller .com. All
domain controllers and servers on the Certkiller .com network run Windows Server
2003. Half the client computers run Windows XP Professional and the rest run
Windows Me. Active Directory client software is installed on all Windows Me client
computers.
All servers are located in an organization unit (OU) named Servers and all client
computers are located in an organization unit (OU) named ClientComputers. The
new Certkiller .com directive states that all data communications between servers and
client computers are to be secured. To this end you create a new Group Policy
Object (GPO) named Secure. The Secure GPO assigns a custom IPSec policy named
Policy1.
The currently configured Filter Action Properties for Policy1 are illustrated in the
Exhibit below:
Exhibit:
Actualtests.org – The Power of Knowing
The Certkiller .com help desk received several calls from users complaining about
connectivity to the servers. You investigate the issue and discover that only
Windows Me users are unable to connect to servers. None of the Windows XP
Professional users reported problems. You thus need to ensure that all users can
access network servers, irrespective of the operating system running on their
respective client computers.
What should you do? To answer, modify the settings on the following dialog box
accordingly.
Answer:
Actualtests.org – The Power of Knowing
Explanation:
Because your legacy Windows Me client computers do not support IPSec, you should
configure your servers to allow unsecured communication with these client computers. If
you update the Filter action to Permit, all traffic will be permitted. If you update the
Filter action to Deny, all traffic will be blocked. Selecting the Session key perfect
forward secrecy (PFS) option will result in even more security being enforced, but will
still prevent Windows Me client computers from connecting to your servers.
Free download:pass4sure Microsoft 070-297
Free download:testking Microsoft 070-297
password:www.certbible.org
High quality IT Certification Training Exam Questions, Study Guides and Practice Tests are in Downloadable PassGuide Testing Engine,Successful for IT Certification or Full Refund for you.Contact Us:Sales@PassGuide.com|
Type |
Exam Bible | New Questions & Answers |
Latest Updated |
Download link |
| All Certbible 's Exam Dumps |
597 |
1 days ago | Available |
PassGuide Training Materials & Practice Tests
About the Author
Free Certification Exam Download has written 10018 stories on this site.
If you have any doubts about legality of content or you have another suspicions, feel free to contact us:CertGuard@Gmail.com
Write a Comment
Gravatars are small images that can show your personality. You can get your gravatar for free today!
