Microsoft 70-297 Exam
Exam 70-297: Designing a Windows Server 2003 Active Directory and Network Infrastructure

When you pass the Designing a Windows Server 2003 Active Directory and Network Infrastructure exam, you achieve Microsoft Certified Professional (MCP) status. You also earn credit toward the following certifications:
• Core credit toward Microsoft Certified Systems Engineer (MCSE) on Windows Server 2003 certification.

Exam Topics Include:
• Creating the Conceptual Design by Gathering and Analyzing Business and Technical Requirements
• Creating the Logical Design for an Active Directory Infrastructure
• Creating the Logical Design for a Network Services Infrastructure
• Creating the Physical Design for an Active Directory and Network Infrastructure

QUESTION 1
You work as the network administrator at Certkiller .com. The Certkiller .com
network consists of a single Active Directory domain named Certkiller .com. All
servers on the Certkiller .com network run Windows Server 2003 and all client
computers run Windows XP Professional.
The implementation of security and software updates is your responsibility. You are
currently planning to implement a new security and software update infrastructure
for Certkiller .com. A SUS server named Certkiller -SR18 will be deployed in the
network. Client computers will be configured to download security updates from
Certkiller -SR18.
One of your requirements is to identify security vulnerabilities on all Certkiller .com
client computers. You want to use a solution that will only scan client computers for
security patches that have been authorized and deployed from Certkiller -SR18.
You do not want to scan the client computers for unnecessary information.
Furthermore the CIO requested that you furnish her with a separate security report
of the scan for each client computer. To this end you install Microsoft Baseline
Analyzer (MBSA) on a Windows Server 2003 computer.
What should you do next?
A. On the computer that has MBSA installed, run the mbsacli.exe/ sus command from a
command prompt to scan all client computers.
B. On the computer that has MBSA installed, run the mbsacli.exe/ hf command from a
command prompt to scan all client computers.
C. Modify the mssecure.xml file so that it includes all approved updates.
Run MBSA to scan the client computers.
D. Modify the approvedsecurity.text file so that it includes all approved updates.
Run MBSA to scan the client computers.
Answer: A
Explanation: You can use the MBSA from the command-line to check for missing
security updates and service packs. For computers running Internet Information
Services (IIS) or Microsoft SQL Server; MBSA can scan for a number of security
vulnerabilities. You however want MBSA to check client computers for security
updates that have been approved and implemented by your SUS server
( Certkiller -SR18), therefore, you should use the / sus switch with the SUS server
name to perform only this type of scan. After you install Microsoft Baseline
Analyzer (MBSA) on a Windows Server 2003 computer, you should run the

Actualtests.org – The Power of Knowing
mbsacli.exe/ sus command from a command prompt to scan all client computers. A
separate security report will be generated for each client computer that is scanned.
Incorrect Answers
B: If you want to run a HFNetChk scan to check for missing security updates, then you
would the run the mbsacli.exe/ hf command. This type of scan displays the results in the
command-line window.
C: The mssecure.xml file should be used if you want to check for all updates available
on the Windows Update site. This file cannot be modified.
D: The approvedsecurity.text file is non-existent in the MBSA folder.
QUESTION 2
You work as the network administrator at Certkiller .com. The Certkiller .com
network consists of a single Active Directory domain named Certkiller .com. All
servers on the Certkiller .com network run Windows Server 2003 and all client
computers run Windows XP Professional. The domain operates at a Windows
Server 2003 functional level.
A server named Certkiller -SR07 has Software Update Services (SUS) installed.
You then deployed Certkiller -SR07 in a test lab that has 25 client computers. You
then discover that the official Microsoft Windows Update Web site has new security
updates available. Consequently you download them to Certkiller -SR07 and
deploy them on the 25 client computers in the test lab. Directly after the installation,
many of the client computers in the test lab became unstable.
You need to uninstall the new security updates from all the client computers in the
test lab quickly and efficiently.
What should you do?
A. Uninstall the installed updates using Certkiller -SR07.
B. Uninstall the installed updates using the Add/Remove Programs option in the Control
Panel.
C. Uninstall the installed updates using the Uninstall option.
D. Uninstall the installed updates with a custom script.
Answer: D
Explanation
: The most efficient way to remove security updates from multiple computers is using a
custom script. It will allow you to uninstall security updates from the test lab client
computers with the least amount of administrative effort.
Incorrect answer:
A: You cannot use Certkiller -SR07 to uninstall security updates. A SUS server does
not offer the necessary features to uninstall the security updates from client computers.
B: This is possible to uninstall the security updates by using the Add/Remove Program in
the Control Panel; however, it will require greater administrative effort than is necessary.
C: The Uninstall Update option is not available with the installed updates.

Donwload Free PassGuide Braindumps-The Most Realistic Practice Questions and Answers,Help You Pass any Exams

Actualtests.org – The Power of Knowing
QUESTION 3
You work as a network domain administrator at Certkiller .com. The Certkiller .com
network consists of a single Active Directory domain named Certkiller .com. All
servers on the Certkiller .com network run Windows Server 2003 and all client
computers run Windows XP Professional.
You have been assigned an assistant named Clive Wilson. One morning a security
breach occurred in that an individual has successfully managed to gain
unauthorized access to important business information by exploiting a vulnerability
in the operating system. You thus investigate with the purpose to determine exactly
which vulnerability the intruder exploited. You then discover that there is a security
patch available that is capable of eliminating the vulnerability. You then instruct
Clive Wilson to identify the particular computers on which the security patch
should be installed.
What should you do?
A. Instruct Clive Wilson to use Mbsacli
B. Instruct Clive Wilson to use Secedit
C. Instruct Clive Wilson to use Wmic qfe
D. Instruct Clive Wilson to use Gpupdate
Answer: C
Explanation
: Windows Management Instrumentation (WMI) is used to monitor and manage
computers on a network. Wmic can be used to perform any management task on your
network. The wmic qfe command with the appropriate parameters is used to check
whether a specific Quick Fix Engineering (qfe) solution/patch was installed on targeted
computer/s. Thus this option will assist Amy Wilson in carrying out her task.
Incorrect answers:
A: It is sometimes possible to use mbsacli to check whether a specific update has been
installed on a computer, but MBSA is not the appropriate tool for this purpose. MBSA
works by connecting to the Windows Update Web site or a specified SUS server to get
hold of the list of critical updates that are available on the web site or approved on the
server. This still leaves you with missing information for the purpose of this question.
B: Secedit is used to analyze and configure security settings on a computer. It is not used
for the purposes required in this question.
D: Gpupdate cannot be used to determine whether a specific patch is installed on a
computer and this option will thus not suffice.

Microsoft 70-297

Practice exams in VCE format:

File	Size	Last Modified
Microsoft Actualtests 70-297 v1.0 10 01 2007 123Q By BeCKS.vce	10.93 MB	22-Feb-2007
Microsoft TestKing 70-297 v01 01 2007 by BENAISSA 123q.vce	60.49 MB	12-Aug-2007
Microsoft TestKing 70-297 v19.0 by Pedro 123q.vce	52.83 MB	21-Sep-2005
Microsoft TestKing 70-297 v19.0 includes Glow Errata by Grinderrr.vce	7.25 MB	29-Jun-2007

Files from PDF Store available for converting:

File	Size	Last Modified
Microsoft ActualTests 70-297 v04.26.05.pdf	4.15 MB	25-Oct-2005

Free download:pass4sure Microsoft 70-297
Free download:testking Microsoft 70-297

password:www.certbible.org

High quality IT Certification Training Exam Questions, Study Guides and Practice Tests are in Downloadable PassGuide Testing Engine,Successful for IT Certification or Full Refund for you.Contact Us:Sales@PassGuide.com

Type	Exam Bible	New Questions & Answers	Latest Updated	Download link
PDF	All Certbible 's Exam Dumps	597	1 days ago	Available

PassGuide Training Materials & Practice Tests

• Testking mcse mcdba 70-293 Exam
• Testking mcse mcdba 70-290 exam
• Testking microsoft Mcse 2008 70-649 Exam
• Testking microsoft Mcse 2008 70-236 Exam
• Testking microsoft Mcse 2008 70-620 Exam
• Microsoft 70-284: Passed – with this dump
• mcse testking pass4sure microsoft press book
• free Testking Microsoft 70-284 exams actual test dumps
• free testking examways Microsoft Certification exam
• [offer] Mcse Core Tk 290,291,293,294