[Jan 2017] trainsignal 70-642

★ Pass on Your First TRY ★ 100% Money Back Guarantee ★ Realistic Practice Exam Questions

Free Instant Download NEW 70-642 Exam Dumps (PDF & VCE):
Available on: https://www.certleader.com/70-642-dumps.html


Actualtests.com presents the actual high-quality and trustworthy Microsoft Microsoft simulation tests. We are sure you will acquire through the Microsoft 70-642 genuine exam with Actualtestss useful preparation materials. Or perhaps you will acquire full refund. The experts make certain that the Microsoft 70-642 exam questions tend to be precise, accurate, and logical which will cause you to succeed in the actual Microsoft exam.

2017 Jan questions on 70-642 exam:

Q91. - (Topic 2) 

Your network contains a server named Server1 that runs Windows Server 2008 R2. The disks on Server1 are configured as shown in the following table. 

You run the Backup Once wizard and discover that the option for Full Server backup is unavailable. You need to ensure that you can run a full server backup of Server1. 

What should you do? 

A. Take Disk 1 offline. 

B. Take Disk 2 offline. 

C. Run the Set-WBPolicy cmdlet. 

D. Run Windows Server Backup as an Administrator. 

Answer:


Q92. - (Topic 2) 

Your network contains a server named Server1 that runs Windows Server 2008 R2. Server1 is located in a branch office. You discover that users cannot obtain cached documents from Server1. 

The BranchCache configuration on Server1 is shown in the exhibit. (Click the Exhibit button.) 

You need to ensure that Server1 hosts cached content for client computers in the branch office. 

What should you do? 

A. Enable Peer Discovery firewall rules. 

B. Set the Startup Type of the BranchCache service to Automatic, and then start the service. 

C. At the command prompt, run netsh.exe branchcache set service mode=DISTRIBUTED. 

D. At the command prompt, run netsh.exe branchcache set service mode=HOSTEDCLIENT. 

Answer:


Q93. - (Topic 3) 

Your company has multiple DNS servers in the main office. 

You plan to install DNS on a member server in a branch office. 

You need to ensure that the DNS server in the branch office is able to query any DNS server in the main office, and you need to limit the number of DNS records that are transferred to the DNS server in the branch office. 

What should you do? 

A. Configure a secondary zone on the DNS server in the branch office. 

B. Configure a stub zone on the DNS server in the branch office. 

C. Configure a stub zone on the DNS server in the main office. 

D. Configure a primary zone on the DNS server in the branch office. 

Answer:

Explanation: 

A stub zone is a copy of a zone that contains only those resource records necessary to identify the authoritative Domain Name System (DNS) servers for that zone. A stub zone is used to resolve names between separate DNS namespaces. This type of resolution may be necessary when a corporate merger requires that the DNS servers for two separate DNS namespaces resolve names for clients in both namespaces. A stub zone consists of: 

-The start of authority (SOA) resource record, name server (NS) resource records, and the glue A resource records for the delegated zone. 

-The IP address of one or more master servers that can be used to update the stub zone. http://technet.microsoft.com/en-us/library/cc779197(v=ws.10).aspx 


Q94. - (Topic 4) 

Your network contains a server named Server1 that runs Windows Server 2008 R2 Service Pack 1 (SP1). 

A user named Admin1 opens Event Viewer on Server1 as shown in the exhibit. (Click the Exhibit button.) 

Admin1 can view the events in the Application log and the System log. 

You need to ensure that Admin1 can view the events in the Security log. 

What should you do? 

A. From a command prompt, run net start eventsystem. 

B. From the Local Group Policy Editor, modify the User Rights Assignment. 

C. From the Local Group Policy Editor, modify the Security Options. 

D. From a command prompt, run net start eventlog. 

Answer:


Q95. - (Topic 2) 

Your company has a main office and a branch office. 

The network contains two servers named Server1 and Server2 that run Windows Server 2008 R2. Server1 is located in the main office. Server2 is located in the branch office. 

You have a domain-based namespace named \\\\contoso.com\\DFS1. Server1 is configured as the namespace server for \\\\contoso.com\\DFS1. 

\\\\contoso.com\\DFS1 has a folder named Folder1. The folder targets for Folder1 are \\\\Server1\\Folder1 and \\\\Server2\\Folder1. 

Users in the main office report that they view different content in Folder1 than users in the branch office. You need to ensure that the content in Folder1 is identical for all of the users. 

What should you do? 

A. Create a new replication group. 

B. Configure Server2 as a namespace server. 

C. From Server2, run dfsutil.exe cache domain. 

D. From Server2, run dfsutil.exe root forcesync \\\\contoso.com\\DFS1. 

Answer:


Avant-garde exam 70-642 windows server 2008 network infrastructure configuring:

Q96. - (Topic 3) 

Your company has a server named SRV1 that runs Windows Server 2008 R2. The default Print Services server role is installed on SRV1. 

The company wants to centralize printing on SRV1 for both UNIX and Windows users. You need to provide support to the UNIX users who print on SRV1. 

What are two possible ways to achieve this goal? (Each correct answer presents a complete solution. Choose two.) 

A. Install the Internet Printing role service on SRV1. 

B. Install the Line Printer Daemon (LPD) Services role service on SRV1. 

C. Configure the printers on SRV1 to use Line Printer Remote printing. 

D. Install the File Services server role on SRV1 and activate the Services for Network File System role service. 

Answer: A,B 

Explanation: 

Line Printer Daemon (LPD) - A service on a print server that receives print jobs from Line Printer Remote (LPR) tools that are running on client computers. Internet Printing Protocol (IPP) - The protocol that uses the Hypertext Transfer Protocol (HTTP) to send print jobs to printers throughout the world. http://technet.microsoft.com/en-us/library/cc783789(v=ws.10).aspx 


Q97. - (Topic 3) 

Your corporate network has a member server named RAS1 that runs Windows Server 2008 R2. You configure RAS1 to use the Routing and Remote Access Services (RRAS). 

The company's remote access policy allows members of the Domain Users group to dial in to RAS1. The company issues smart cards to all employees. 

You need to ensure that smart card users are able to connect to RAS1 by using a dial-up connection. 

What should you do? 

A. Install the Network Policy Server (NPS) server role on RAS1. 

B. Create a remote access policy that requires users to authenticate by using SPAP. 

C. Create a remote access policy that requires users to authenticate by using EAP-TLS. 

D. Create a remote access policy that requires users to authenticate by using MS-CHAP v2. 

Answer:

Explanation: 

EAP-Transport Layer Security (EAP-TLS), defined in RFC 5216, is an IETF open standard, and is wellsupported among wireless vendors. The security of the TLS protocol is strong, provided the user understands potential warnings about false credentials. It uses PKI to secure communication to a RADIUS authentication server or another type of authentication server. So even though EAP-TLS provides excellent security, the overhead of client-side certificates may be its Achilles' heel. EAP-TLS is the original, standard wireless LAN EAP authentication protocol. Although it is rarely deployed, it is still considered one of the most secure EAP standards available and is universally supported by all manufacturers of wireless LAN hardware and software. The requirement for a client-side certificate, however unpopular it may be, is what gives EAP-TLS its authentication strength and illustrates the classic convenience vs. security trade-off. A compromised password is not enough to break into EAP-TLS enabled systems because the intruder still needs to have the client-side private key. The highest security available is when client-side keys are housed in smart cards.[4] This is because there is no way to steal a certificate's corresponding private key from a smart card without stealing the card itself. It is significantly more likely that the physical theft of a smart card would be noticed (and the smart card immediately revoked) than a (typical) password theft would be noticed. Up until April 2005, EAP-TLS was the only EAP type vendors needed to certify for a WPA or WPA2 logo.[5] There are client and server implementations of EAP-TLS in 3Com, Apple, Avaya, Brocade Communications, Cisco, Enterasys Networks, Foundry, HP, Juniper, and Microsoft, and open source operating systems. EAP-TLS is natively supported in Mac OS X 10.3 and above, Windows 2000 SP4, Windows XP and above, Windows Mobile 2003 and above, and Windows CE 4.2 


Q98. - (Topic 2) 

Your network contains an Active Directory domain named contoso.com. The functional level of the domain and the functional level of the forest are Windows Server 2003. All domain controllers run Windows Server 2008. 

You have a member server that runs Windows Server 2008 R2 named Server1. You install the Distributed Scan Server role service on Server1. From the Scan Management console, you attempt to add a scan process and you receive the following error. 

You need to ensure that you can add a scan process. What should you do? 

A. Install the Fax Server role. 

B. Install the Print Server role service. 

C. Update the Active Directory schema. 

D. Set the functional level of the forest to Windows Server 2008. 

Answer:

Explanation: 

In order to use DSM its needed to upgrade the AD Schema thats found here -http://www.microsoft.com/en-us/download/details.aspx?id=9494 http://blogs.technet.com/b/askperf/archive/2009/10/11/windows-7-windows-server-2008-r2-distributedscanmanagement.aspx http://blogs.technet.com/b/print/archive/2009/10/22/distributed-scan-management.aspx 


Q99. - (Topic 3) 

Your network contains one Active Directory domain. You have a member server that runs Windows Server 2008 R2. 

You need to immediately disable all incoming connections to the server. 

What should you do? 

A. From the Services snap-in, disable the IP Helper. 

B. From the Services snap-in, disable the Netlogon service. 

C. From Windows Firewall, enable the Block all connections option on the Public Profile. 

D. From Windows Firewall, enable the Block all connections option on the Domain Profile. 

Answer:


Q100. - (Topic 4) 

Your network contains servers that run Windows Server 2008 R2. All client computers run Windows 7. 

The network contains a VPN server that has the Routing and Remote Access service (RRAS) role service installed. 

You need to prevent VPN Reconnect from reestablishing the connection when a client computer disconnects from the network for more than one minute. 

Which VPN server properties should you modify? 

A. IP version 4 (IPv4) 

B. Internet Key Exchange version 2 (IKEv2) 

C. Point-to-Point Protocol (PPP) 

D. IP version 6 (IPv6) 

Answer:

Explanation: 

VPN Reconnect uses IKEv2 technology to provide seamless and consistent VPN connectivity, automatically re-establishing a VPN when users temporarily lose their Internet connections. Users who connect using wireless mobile broadband will benefit most from this capability. http://technet.microsoft.com/en-us/library/dd637830(v=ws.10).aspx 



see more TS: Windows Server 2008 Network Infrastructure, Configuring