Vendor: Microsoft Exam Code: 70-412 Exam Name: Configuring

Passleader-70-412

Number: 70-412Passing Score: 800Time Limit: 120 minFile Version: 1.0

http://www.gratisexam.com/

Vendor: Microsoft

Exam Code: 70-412

Exam Name: Configuring Advanced Windows Server 2012 Services

Version: 12.49

Complete collectionof 70-412Exam's Question andanswers.http://www.passleader.com/

Exam A

QUESTION 1Your network contains an Active Directory domain named adatum.com. The domain contains two domaincontrollers that run Windows Server 2012. The domain controllers are configured as shown in the followingtable.

You log on to DC1 by using a user account that is a member of the Domain Admins group, and then you createa new user account named User1. You need to prepopulate the password for User1 on DC2. What should youdo first?

A. Connect to DC2 from Active Directory Users and Computers.B. Add DC2 to the Allowed RODC Password Replication Policy group.C. Add the User1 account to the Allowed RODC Password Replication Policy group.D. Run Active Directory Users and Computers as a member of the Enterprise Admins group.

Correct Answer: CSection: (none)Explanation

Explanation/Reference:Explanation:http://technet.microsoft.com/en-us/library/cc730883(v=ws.10).aspx

QUESTION 2Your company has offices in Montreal, New York, and Amsterdam. The network contains an Active Directoryforest named contoso.com. An Active Directory site exists for each office. All of the sites connect to each otherby using the DEFAULTIPSITELINK site link. You need to ensure that only between 20:00 and 08:00, thedomain controllers in the Montreal office replicate the Active Directory changes to the domain controllers in theAmsterdam office. The solution must ensure that the domain controllers in the Montreal and the New Yorkoffices can replicate the Active Directory changes any time of day. What should you do?

A. Create a new site link that contains Montreal and Amsterdam. Remove Amsterdam fromDEFAULTIPSITELINK.Modify the schedule of DEFAULTIPSITELINK.

B. Create a new site link that contains Montreal and Amsterdam. Create a new site link bridge.Modify the schedule of DEFAU LTIPSITELINK.

C. Create a new site link that contains Montreal and Amsterdam. Remove Amsterdam fromDEFAULTIPSITELINK.Modify the schedule of the new site link.

D. Create a new site link that contains Montreal and Amsterdam. Create a new site link bridge.Modify the schedule of the new site link.

Correct Answer: ASection: (none)Explanation

QUESTION 3Your network contains two Active Directory forests named contoso.com and adatum.com. A two- way foresttrust exists between the forests. The contoso.com forest contains an enterprise certification authority (CA)named Server1. You implement cross-forest certificate enrollment between the contoso.com forest and the

adatum.com forest. On Server1, you create a new certificate template named Template1. You need to ensurethat users in the adatum.com forest can request certificates that are based on Template1. Which tool shouldyou use?

A. DumpADO.ps1Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

B. RepadminC. Add-CATemplateD. CertutilE. PKISync.ps1

Correct Answer: ESection: (none)Explanation

Explanation/Reference:Explanation:http://technet.microsoft.com/en-us/library/ff955845(v=ws.10).aspx#BKMK_Consolidating

QUESTION 4You have a server named Server1 that runs Windows Server 2012. Server1 has the Windows DeploymentServices server role installed. You back up Server1 each day by using Windows Server Backup. The disk arrayon Server1 fails. You replace the disk array. You need to restore Server1 as quickly as possible. What shouldyou do?

A. Start Server1 from the Windows Server 2012 installation media.B. Start Server1and press F8.C. Start Server1 and press Shift+F8.D. Start Server1 by using the PXE.


Explanation/Reference:Explanation:http://www.windowsnetworking.com/articles_tutorials/Restoring-Windows-Server-Bare-Metal.html

QUESTION 5Your network contains two servers named Server1 and Server2 that run Windows Server 2012. Both servershave the Hyper-V server role installed. Server1 and Server2 are located in different offices. The offices connectto each other by using a high-latency WAN link. Server2 hosts a virtual machine named VM1. You need toensure that you can start VM1 on Server1 if Server2 fails. The solution must minimize hardware costs. Whatshould you do?

A. On Server1, install the Multipath I/O (MPIO) feature. Modify the storage location of the VHDs for VM1.B. From the Hyper-V Settings of Server2, modify the Replication Configuration settings. Enable replication for

VM1.C. On Server2, install the Multipath I/O (MPIO) feature. Modify the storage location of the VHDs for VM1.D. From the Hyper-V Settings of Server1, modify the Replication Configuration settings. Enable replication for

VM1.

Correct Answer: DSection: (none)Explanation

Explanation/Reference:Explanation:You first have to enable replication on the Replica server--Server1--by going to the server and modifying the"Replication Configuration" settings under Hyper-V settings. You then go to VM1-- which presides on Server2--and run the "Enable Replication" wizard on VM1. Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

QUESTION 6You have a server named Server1 that runs Windows Server 2012. You modify the properties of a systemdriver and you restart Server1. You discover that Server1 continuously restarts without starting Windows Server2012. You need to start Windows Server 2012 on Server1 in the least amount of time. The solution mustminimize the amount of data loss. Which Advanced Boot Option should you select?


A. Last Know Good Configuration (advanced)B. Repair Your ComputerC. Disable automatic restart on system failureD. Disable Driver Signature Enforcement

Correct Answer: ASection: (none)

Explanation

Explanation/Reference:

QUESTION 7Your network contains an Active Directory domain named contoso.com. The domain contains three serversnamed Server1, Server2, and Server3 that run Windows Server 2012. All three servers have the Hyper-Vserver role installed and the Failover Clustering feature installed. Server1 and Server2 are nodes in a failovercluster named Cluster1. Several highly available virtual machines run on Cluster1. Cluster1 has the Hyper-VReplica Broker role installed. The Hyper-V Replica Broker currently runs on Server1. Server3 currently has novirtual machines. You need to configure Cluster1 to be a replica server for Server3 and Server3 to be a replicaserver for Cluster1. Which two tools should you use? (Each correct answer presents part of the solution.Choose two.)Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

A. The Hyper-V Manager console connected to Server3B. The Failover Cluster Manager console connected to Server3C. The Hyper-V Manager console connected to Server1.D. The Failover Cluster Manager console connected to Cluster1E. The Hyper-V Manager console connected to Server2

Correct Answer: ADSection: (none)Explanation

QUESTION 8You have a file server named Server1 that runs Windows Server 2012. The folders on Server1 are configuredas shown in the following table.

A new corporate policy states that backups must use Microsoft Online Backup whenever possible. You need toidentify which technology you must use to back up Server1. The solution must use Microsoft Online Backupwhenever What should you identify? To answer, drag the appropriate backup type to the correct location orlocations. Each backup type may be used once, more than once, or not at all. You may need to drag the splitbar between panes or scroll to view content.

A.B.C.D.

Correct Answer: Section: (none)Explanation

Explanation/Reference:Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

Explanation:http://technet.microsoft.com/en-us/library/hh831761.aspx

QUESTION 9You have a DNS server named Server1 that runs Windows Server 2012. Server1 has a signed zone forcontoso.com. You need to configure DNS clients to perform DNSSEC validation for the contoso.com DNSdomain. What should you configure?

A. The Network Connection settingsB. A Name Resolution PolicyC. The Network Location settingsD. The DNS Client settings

Correct Answer: BSection: (none)Explanation

QUESTION 10Your network contains an Active Directory domain named contoso.com. The domain contains a domaincontroller named DC1 that runs Windows Server 2012. On Dc1, you open DNS Manager as shown in theexhibit. (Click the Exhibit button.)Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

You need to change the replication scope of the contoso.com zone. What should you do before you change thereplication scope?

A. Modify the Zone Transfers settings.B. Add DC1 to the Name Servers list.C. Add your user account to the Security settings of the zone.D. Unsign the zone.


QUESTION 11Your network contains an Active Directory domain named contoso.com. The domain contains a domaincontroller named DC1 and a member server named Server1. Server1 has the IP Address Management (IPAM)Server feature installed. On Dc1, you configure Windows Firewall to allow all of the necessary inbound ports for

IPAM. On Server1, you open Server Manager as shown in the exhibit. (Click the Exhibit button.)Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

You need to ensure that you can use IPAM on Server1 to manage DNS on DC1. What should you do?

A. Modify the outbound firewall rules on Server1.B. Modify the inbound firewall rules on Server1.C. Add Server1 to the Remote Management Users group.D. Add Server1 to the Event Log Readers group.

Correct Answer: DSection: (none)

Explanation

Explanation/Reference:Explanation:Since no exhibit, the guess here is it's not using the GPO to manage the Event Log Readers group-- evidencedby the fact that the firewall was configured manually instead of with the GPO. If the GPO was being used thenthe IPAM server would be in the Event Log Readers group due to restricted group settings in the GPO asshown below:

Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/In the above example, the IPAM server is as member of the VDI\IPAMUG group.

QUESTION 12Your network contains an Active Directory domain named contoso.com. The domain contains servers namedServer1 and Server2 that run Windows Server 2012. Server1 has the IP Address Management (IPAM) Serverfeature installed. You install the IPAM client on Server2. You open Server Manager on Server2 as shown in theexhibit. (Click the Exhibit button.)

You need to manage IPAM from Server2. What should you do first?

A. On Server1, add the Server2 computer account to the IPAM MSM Administrators group.B. On Server2, open Computer Management and connect to Server1.C. On Server2, add Server1 to Server Manager.D. On Server1, add the Server2 computer account to the IPAM ASM Administrators group.


Explanation/Reference:Explanation:Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

QUESTION 13Your network contains an Active Directory domain named contoso.com. The domain contains a domaincontroller named Dc1. DC1 has the DNS Server server role installed. The network has two sites named Site1and Site2. Site1 uses 10.10.0.0/16 IP addresses and Site2 uses 10.11.0.0/16 IP addresses. All computers useDC1 as their DNS server. The domain contains four servers named Server1, Server2, Server3, and Server4. Allof the servers run a service named Service1. DNS host records are configured as shown in the exhibit. (Clickthe Exhibit button.)

Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/You discover that computers from the 10.10.1.0/24 network always resolve Service1 to the [P address ofServer1. You need to configure DNS on DC1 to distribute computers in Site1 between Server1 and Server2when the computers attempt to resolve Service1. What should run on DC1?

A. dnscmd /config /bindsecondaries 1B. dnscmd /config /localnetpriority 0C. dnscmd /config /localnetprioritynetmask 0x0000ffffD. dnscmd /config /roundrobin 0


QUESTION 14Your network contains an Active Directory domain named contoso.com. The domain contains a main office anda branch office. An Active Directory site exists for each office. The domain contains two servers named Server1and Server2 that run Windows Server 2012. Both servers have the DHCP Server server role installed. Server1is located in the main office site. Server2 is located in the branch office site. Server1 provides IPv4 addressesto the client computers in the main office site. Server2 provides IPv4 addresses to the client computers in thebranch office site. You need to ensure that if either Server1 or Server2 are offline, the client computers can stillobtain IPv4 addresses.The solution must meet the following requirements:

- The storage location of the DHCP databases must not be a single point of failure.- Server1 must provide IPv4 addresses to the client computers in the branch office site only if Server2 is offline.- Server2 must provide IPv4 addresses to the client computers in the main office site only if Server1 is offline.

Which configuration should you use?

A. load sharing mode failover partnersB. a failover clusterC. hot standby mode failover partnersD. a Network Load Balancing (NLB) cluster


QUESTION 15You have a DHCP server named Server1. Server1 has an IP address 192.168.1.2 is located on a subnet thathas a network ID of 192.168.1.0/24. On Server1, you create the scopes shown in the following table.

You need to ensure that Server1 can assign IP addresses from both scopes to the DHCP clients on the localsubnet. What should you create on Server1?Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

A. A scopeB. A superscopeC. A split-scopeD. A multicast scope


QUESTION 16Your network contains servers that run Windows Server 2012. The network contains a large number of iSCSIstorage locations and iSCSI clients. You need to deploy a central repository that can discover and list iSCSIresources on the network automatically. Which feature should you deploy?

A. the Windows Standards-Based Storage Management featureB. the iSCSI Target Server role serviceC. the iSCSI Target Storage Provider featureD. the iSNS Server service feature


QUESTION 17Your network contains an Active Directory domain named contoso.com. The domain contains a file servernamed Server1. All servers run Windows Server 2012. All domain user accounts have the Division attribute

automatically populated as part of the user provisioning process. The Support for Dynamic Access Control andKerberos armoring policy is enabled for the domain. You need to control access to the file shares on Server1based on the values in the Division attribute and the Division resource property. Which three actions should youperform in sequence?

A.B.C.D.



Explanation:First create a claim type for the property, then create a reference resource property that points back to theclaim. Finally set the classification value on the folder

QUESTION 18Your network contains two Active Directory forests named contoso.com and fabrikam.com. The contoso.comforest contains two domains named corp.contoso.com and contoso.com. You establish a two-way forest trustbetween contoso.com and fabrikam.com. Users from the corp.contoso.com domain report that they cannot logon to client computers in the fabrikam.com domain by using their corp.contoso.com user account. When theytry to log on, they receive following error message:"The computer you are signing into is protected by an authentication firewall. The specified account is notallowed to authenticate to the computer." Corp.contoso.com users can log on successfully to client computersin the contoso.com domain by using their corp.contoso.com user account credentials. You need to allow usersfrom the corp.contoso.com domain to log on to the client computers in the fabrikam.com forest. What shouldyou do?

A. Configure Windows Firewall with Advanced Security.B. Enable SID history.C. Configure forest-wide authentication.D. Instruct the users to log on by using a user principal name (UPN).


QUESTION 19Your network contains two servers named Server1 and Server2 that run Windows Server 2012. Both servershave the Hyper-V server role installed. The servers have the hardware configurations shown in the followingtable.Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

Server1 hosts five virtual machines that run Windows Server 2012. You need to move the virtual machinesfrom Server1 to Server2. The solution must minimize downtime. What should you do for each virtual machine?

A. Export the virtual machines from Server1 and import the virtual machines to Server2.B. Perform a live migration.C. Perform a quick migration.D. Perform a storage migration.


QUESTION 20Your network contains an Active Directory domain named contoso.com. The domain contains two serversnamed Server1 and Server2. Both servers have the Hyper-V server role installed. You plan to replicate virtualmachines between Server1 and Server2. The replication will be encrypted by using Secure Sockets Layer(SSL). You need to request a certificate on Server1 to ensure that the virtual machine replication is encrypted.Which two intended purposes should the certificate for Server1 contain? (Each correct answer presents part ofthe solution. Choose two.)

A. Client AuthenticationB. Kernel Mode Code SigningC. Server AuthenticationD. IP Security end systemE. KDC Authentication

Correct Answer: AESection: (none)Explanation

Explanation/Reference:Explanation:http://blogs.technet.com/b/virtualization/archive/2012/03/13/hyper-v-replica-certificate- requirements.aspxComplete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

QUESTION 21Your network contains an Active Directory domain named contoso.com. The domain contains two memberservers named Server1 and Server2 that run Windows Server 2012. Both servers have the Hyper-V server roleinstalled. The network contains an enterprise certification authority (CA). All servers are enrolled automaticallyfor a certificate-based on the Computer certificate template. On Server1, you have a virtual machine namedVM1. VM1 is replicated to Server2. You need to encrypt the replication of VM1. Which two actions should youperform? (Each correct answer presents part of the solution. Choose two.)

A. On Server1, modify the settings of VM1.B. On Server2, modify the settings of VM1.C. On Server2, modify the Hyper-V Settings.D. On Server1, modify the Hyper-V Settings.E. On Server1, modify the settings of the virtual switch to which VM1 is connected.F. On Server2, modify the settings of the virtual switch to which VM1 is connected.

Correct Answer: AFSection: (none)Explanation

Explanation/Reference:Explanation:Once you change the Hyper-V Settings of Server 2 to encrypt replications with a certificate, you then need tochange the replication information of VM1 to use the secure connection.

QUESTION 22Your network contains an Active Directory domain named contoso.com. The domain contains a file servernamed Server1 that runs Windows Server 2012. You create a user account named User1 in the domain. Youneed to ensure that User1 can use Windows Server Backup to back up Server1. The solution must minimizethe number of administrative rights assigned to User1. What should you do?

A. Add User1 to the Backup Operators group.B. Add User1 to the Power Users group.C. Assign User1 the Backup files and directories user right and the Restore files and directories user right.D. Assign User1 the Backup files and directories user right.


Explanation/Reference:Explanation:Backup Operators have these permissions by default:

Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/However the question explicitly says we need to minimize administrative rights. Since the requirement is forbacking up the data only--no requirement to restore or shutdown--then assigning the "Back up files anddirectories user right" would be the correct answer.

QUESTION 23You have a server named Server1 that runs Windows Server 2012 and is used for testing. A developer at yourcompany creates and installs an unsigned kernel-mode driver on Server1. The developer reports that Server1will no longer start. You need to ensure that the developer can test the new driver. The solution must minimizethe amount of data loss. Which Advanced Boot Option should you select?

A. Disable Driver Signature EnforcementB. Disable automatic restart on system failureC. Last Know Good Configuration (advanced)D. Repair Your Computer


QUESTION 24Your network contains an Active Directory domain named contoso.com. The domain contains two memberservers named Server1 and Server2. All servers run Windows Server 2012. Server1 and Server2 have theFailover Clustering feature installed. The servers are configured as nodes in a failover cluster named Cluster1.You add two additional nodes to Cluster1. You need to ensure that Cluster1 stops running if three nodes fail.What should you configure?

A. Affinity-NoneB. Affinity-SingleC. The cluster quorum settingsD. The failover settingsE. A file server for general useF. The Handling priorityG. The host priority

H. Live migrationI. The possible ownerJ. The preferred ownerK. Quick migration


L. The Scale-Out File Server


QUESTION 25Your network contains an Active Directory domain named contoso.com. The domain contains two memberservers named Server1 and Server2. All servers run Windows Server 2012. Server1 and Server2 have theFailover Clustering feature installed. The servers are configured as nodes in a failover cluster named Cluster1.You add two additional nodes in Cluster1. You have a folder named Folder1 on Server1 that hosts applicationdata. Folder1 is a folder target in a Distributed File System (DFS) namespace. You need to provide highlyavailable access to Folder1. The solution must support DFS Replication to Folder1. What should youconfigure?

A. Affinity-NoneB. Affinity-SingleC. The cluster quorum settingsD. The failover settingsE. A file server for general useF. The Handling priorityG. The host priorityH. Live migrationI. The possible ownerJ. The preferred ownerK. Quick migrationL. The Scale-Out File Server


Explanation/Reference:Explanation:


QUESTION 26Your network contains an Active Directory domain named contoso.com. The domain contains two memberservers named Server1 and Server2. All servers run Windows Server 2012. Server1 and Server2 have theNetwork Load Balancing (NLB) feature installed. The servers are configured as nodes in an NLB cluster namedCluster1. Port rules are configured for all clustered applications. You need to ensure that Server2 handles allclient requests to the cluster that are NOT covered by a port rule. What should you configure?

A. Affinity-NoneB. Affinity-SingleC. The cluster quorum settingsD. The failover settingsE. A file server for general useF. The Handling priorityG. The host priorityH. Live migrationI. The possible ownerJ. The preferred ownerK. Quick migrationL. The Scale-Out File Server

Correct Answer: GSection: (none)Explanation

QUESTION 27Your network contains an Active Directory domain named contoso.com. A previous administrator implementeda Proof of Concept installation of Active Directory Rights Management Services (AD RMS). After the proof ofconcept was complete, the Active Directory Rights Management Services server role was removed. Youattempt to deploy AD RMS. During the configuration of AD RMS, you receive an error message indicating that

an existing AD RMS Service Connection Point (SCP) was found. You need to remove the existing AD RMSSCP. Which tool should you use?

A. ADSI EditB. Active Directory Users and ComputersC. Active Directory Domains and TrustsD. Active Directory Sites and ServicesE. ServicesF. Authorization ManagerG. TPM ManagementH. Certification Authority


QUESTION 28Your network contains an Active Directory forest. The forest contains two domains named contoso.com andfabrikam.com. The functional level of the forest is Windows Server 2003. You have a domain outside the forestnamed adatum.com. You need to configure an access solution to meet the following requirements:

- Users in adatum.com must be able to access resources in contoso.com.- Users in adatum.com must be prevented from accessing resources in fabrikam.com. Complete collection of70-412 Exam's Question and answers.http://www.passleader.com/- Users in both contoso.com and fabrikam.com must be prevented from accessing resources in adatum.com.

What should you create?

A. a one-way realm trust from contoso.com to adatum.comB. a one-way realm trust from adatum.com to contoso.comC. a one-way external trust from contoso.com to adatum.comD. a one-way external trust from adatum.com to contoso.com


QUESTION 29Your network contains an Active Directory domain named contoso.com. The domain contains a main office anda branch office. An Active Directory site exists for each office. All domain controllers run Windows Server 2012.The domain contains two domain controllers. DC1 hosts an Active Directory- integrated zone for contoso.com.You add the DNS Server server role to DC2. You discover that the contoso.com DNS zone fails to replicate toDC2. You verify that the domain, schema, and configuration naming contexts replicate from DC1 to DC2. Youneed to ensure that DC2 replicates the contoso.com zone by using Active Directory replication. Which toolshould you use?

A. DnscmdB. DnslintC. RepadminD. NtdsutilE. DNS ManagerF. Active Directory Sites and Services

G. Active Directory Domains and TrustsH. Active Directory Users and Computers


QUESTION 30Your network contains an Active Directory domain named contoso.com. All servers run Windows Server 2012.The domain contains a domain controller named DC1 that is configured as an enterprise root certificationauthority (CA). All users in the domain are issued a smart card and are required to log on to their domain-joinedclient computer by using their smart card. A user named User1 resigned and started to work for a competingcompany. You need to prevent User1 immediately from logging on to any computer in the domain. The solutionmust not prevent other users from logging on to the domain. Which tool should you use?

A. Active Directory Administrative CenterB. Active Directory Sites and ServicesC. Active Directory Users and ComputersD. the Certification Authority consoleE. the Certificates snap-inF. Certificate TemplatesG. Server ManagerH. the Security Configuration Wizard


Correct Answer: ACSection: (none)Explanation

QUESTION 31You have a server named Server 1 that runs Windows Server 2012. Server1 has five network adapters. Threeof the network adapters are connected to a network named LAN1. The two other network adapters areconnected to a network named LAN2. You create a network adapter team named Team1 from two of theadapters connected to LAN1. You create a network adapter team named Team2 from the two adaptersconnected to LAN2. A company policy states that all server IP addresses must be assigned by using a reservedaddress in DHCP. You need to identify how many DHCP reservations you must create for Server1. How manyreservations should you identify?

A. 2B. 3C. 5D. 7


Explanation/Reference:Explanation:3 adapter on LAN 12 adapters on LAN 22 adapters on LAN 1 used in a team, so that's 3 - 2 leaving 1. 2 adapaters on LAN 2 used in a team, so that's 2- 2 leaving 0. 1 team on LAN 1 + 1 team on LAN 2 + remaining adapter on LAN 1 = 3.

QUESTION 32Your network contains an Active Directory domain named contoso.com. The domain contains a server namedServer1 that runs Windows Server 2012. Server1 has the IP Address Management (IPAM) Server featureinstalled. IPAM is configured currently for Group Policy-based provisioning. You need to change the IPAMprovisioning method on Server1. What should you do?

A. Run the ipamgc.exe command.B. Run the Set-IPAMConfiguration cmdlet.C. Reinstall the IP Address Management (IPAM) Server feature.D. Delete IPAM Group Policy objects (GPOs) from the domain.


Explanation/Reference:Explanation:You cannot change the provisioning method after completing the initial setup. Complete collection of 70-412Exam's Question and answers.http://www.passleader.com/

QUESTION 33Your network contains an Active Directory domain named contoso.com. The domain contains a domaincontroller named DC1 that runs Windows Server 2012. DC1 has the DHCP Server server role installed. DHCPis configured as shown in the exhibit. (Click the Exhibit button.)

You discover that client computers cannot obtain IPv4 addresses from DC1. You need to ensure that the clientcomputers can obtain IPv4 addresses from DC1. What should you do?

A. Activate the scope.B. Authorize DC1.C. Disable the Allow filters.D. Disable the Deny filters.


QUESTION 34Your network contains an Active Directory domain named contoso.com. The domain contains a file servernamed Server1 and a domain controller named DC1. All servers run Windows Server Complete collection of70-412 Exam's Question and answers.http://www.passleader.com/2012. A Group Policy object (GPO) named GPO1 is linked to the domain. Server1 contains a folder namedFolder1. Folder1 is shared as Share1. You need to ensure that authenticated users can request assistancewhen they are denied access to the resources on Server1. Which two actions should you perform? (Eachcorrect answer presents part of the solution. Choose two.)

A. Assign the Read Attributes NTFS permission on Folder1 to the Authenticated Users group.B. Install the File Server Resource Manager role service on Server1.C. Configure the Customize message for Access Denied errors policy setting of GPO1.D. Enable the Enable access-denied assistance on client for all file types policy setting for GPO1.E. Install the File Server Resource Manager role service on DC1.

Correct Answer: ABSection: (none)Explanation

QUESTION 35Your network contains an Active Directory domain named adatum.com. All domain controllers run WindowsServer 2008 R2. The domain contains a file server named Server6 that runs Windows Server 2012. Server6

contains a folder named Folder1. Folder1 is shared as Share1. The NTFS permissions on Folder1 are shown inthe exhibit. (Click the Exhibit button.)

The domain contains two global groups named Group1 and Group2. You need to ensure that only users whoare members of both Group1 and Group2 are denied access to Folder1. Which two actions should youperform? (Each correct answer presents part of the solution. Choose two.)

A. Remove the Deny permission for Group1 from Folder1.B. Deny Group2 permission to Folder1.C. Install a domain controller that runs Windows Server 2012.D. Create a conditional expression.


E. Deny Group2 permission to Share1.F. Deny Group1 permission to Share1.

Correct Answer: DCSection: (none)Explanation

QUESTION 36Your network contains an Active Directory forest. The forest contains a single domain named contoso.com. Theforest contains two Active Directory sites named Main and Branch1. The sites connect to each other by using asite link named Main-Branch1. There are no other site links. Each site contains several domain controllers. Alldomain controllers run Windows Server 2012. Your company plans to open a new branch site named Branch2.The new site will have a WAN link that connects to the Main site only. The site will contain two domaincontrollers that run Windows Server 2012. You need to create a new site and a new site link for Branch2. Thesolution must ensure that the domain controllers in Branch2 only replicate to the domain controllers in Branch1if all of the domain controllers in Main are unavailable. Which three actions should you perform? To answer,move the three appropriate actions from the list of actions to the answer area and arrange them in the correctorder.

A.B.C.D.



QUESTION 37Your network contains an Active Directory domain named contoso.com. The domain contains a domaincontroller named DC1 that runs Windows Server 2012. DC1 has the DNS Server server role installed. Thenetwork contains client computers that run either Linux, Windows 7, or Windows 8. You have a standardprimary zone named adatum.com as shown in the exhibit.(Click the Exhibit button.)

You plan to configure Name Protection on all of the DHCP servers. You need to configure the adatum.comzone to support Name Protection. Which two configurations should you perform from DNS Manager? (Eachcorrect answer presents part of the solution. Choose two.)

A. Sign the zone.B. Store the zone in Active Directory.C. Modify the Security settings of the zone.D. Configure Dynamic updates.

Correct Answer: BCSection: (none)Explanation

QUESTION 38Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/Your network contains two servers named Server1 and Server2 that run Windows Server 2012. Server1 andServer2 have the Hyper-V server role installed. Server1 and Server2 are configured as Hyper-V replicas ofeach other. Server1 hosts a virtual machine named VM1. VM1 is replicated to Server2. You need to verifywhether the replica of VM1 on Server2 is functional. The solution must ensure that VM1 remains accessible toclients. What should you do from Hyper-V Manager?

A. On Server1, execute a Planned Failover.B. On Server1, execute a Test Failover.C. On Server2, execute a Planned Failover.D. On Server2, execute a Test Failover.


QUESTION 39You have a failover cluster named Cluster1 that contains four nodes. All of the nodes run Windows Server2012. You need to force every node in Cluster1 to contact immediately the Windows Server Update Services(WSUS) server on your network for updates. Which tool should you use?

A. The Add-CauClusterRole cmdletB. The Wuauclt commandC. The Wusa commandD. The Invoke-CauScan cmdlet


QUESTION 40Your network contains an Active Directory domain named contoso.com. The network contains a file servernamed Server1 that runs Windows Server 2012. You are configuring a central access policy for temporaryemployees. You enable the Department resource property and assign the property a suggested value of Temp.You need to configure a target resource condition for the central access rule that is scoped to resourcesassigned to Temp only. Which condition should you use?

A. (Temp.Resource Equals "Department")B. (Resource.Temp Equals "Department")C. (Resource.Department Equals "Temp")D. (Department.Value Equals "Temp")


QUESTION 41Your network contains a server named Server1 that runs Windows Server 2012. Server1 has the ActiveDirectory Certificate Services server role installed and is configured as a standalone certification authority (CA).You install a second server named Server2. You install the Online Responder role service on Server2. Youneed to ensure that Server1 can issue an Online Certificate Status Protocol (OCSP) Response Signingcertificate to Server2. What should you do?

A. On Server1, run the certutil.exe command and specify the -setreg parameter.B. On Server2, run the certutil.exe command and specify the -policy parameter.


C. On Server1, configure Security for the OCSP Response Signing certificate template.

D. On Server2, configure Issuance Requirements for the OCSP Response Signing certificate template.


QUESTION 42Your network contains an Active Directory domain named adatum.com. The domain contains a server namedCA1 that runs Windows Server 2012. CA1 has the Active Directory Certificate Services server role installed andis configured to support key archival and recovery. You need to ensure that a user named User1 can decryptprivate keys archived in the Active Directory Certificate Services (AD CS) database. The solution must preventUser1 from retrieving the private keys from the AD CS database. What should you do?

A. Assign User1 the Issue and Manage Certificates permission to Server1.B. Assign User1 the Read permission and the Write permission to all certificate templates.C. Provide User1 with access to a Key Recovery Agent certificate and a private key.D. Assign User1 the Manage CA permission to Server1.


QUESTION 43Your network contains an Active Directory domain named contoso.com. The domain contains two sites namedSite1 and Site2 and two domain controllers named DC1 and DC2. Both domain controllers are located in Site1.You install an additional domain controller named DC3 in Site1 and you ship DC3 to Site2. A technicianconnects DC3 to Site2. You discover that users in Site2 are authenticated by all three domain controllers. Youneed to ensure that the users in Site2 are authenticated by DC1 or DC2 only if DC3 is unavailable. What shouldyou do?

A. From Network Connections, modify the IP address of DC3.B. In Active Directory Sites and Services, modify the Query Policy of DC3.C. From Active Directory Sites and Services, move DC3.D. In Active Directory Users and Computers, configure the insDS-PrimaryComputer attribute for the users in

Site2.


QUESTION 44Your network contains two Active Directory forests named contoso.com and adatum.com. Contoso.comcontains one domain. Adatum.com contains a child domain named child.adatum.com. Contoso.com has a one-way forest trust to adatum.com. Selective authentication is enabled on the forest trust. Several user accountsare migrated from child.adatum.com to adatum.com. Users report that after the migration, they fail to accessresources in contoso.com. The users successfully accessed the resources in contoso.com before the accountswere migrated. You need to ensure that the migrated users can access the resources in contoso.com. Whatshould you do?

A. Replace the existing forest trust with an external trust.B. Run netdom and specify the /quarantine attribute.C. Disable SID filtering on the existing forest trust.D. Disable selective authentication on the existing forest trust.



QUESTION 45You have four servers that run Windows Server 2012. The servers have the Failover Clustering featureinstalled. You deploy a new cluster named Cluster1. Cluster1 is configured as shown in the following table.

Site2 is a disaster recovery site. Server1, Server2, and Server3 are configured as the preferred owners of thecluster roles. Dynamic quorum management is disabled. You plan to perform hardware maintenance onServer3. You need to ensure that if the WAN link between Site1 and Site2 fails while you are performingmaintenance on Server3, the cluster resource will remain available in Site1. What should you do?

A. Enable dynamic quorum management.B. Remove the node vote for Server3.C. Add a file share witness in Site1.D. Remove the node vote for [C1] Server4 and Server5.


QUESTION 46Your network contains an Active Directory domain named contoso.com. The domain contains a server namedServer2 that runs Windows Server 2012. You are a member of the local Administrators group on Server2. Youinstall an Active Directory Rights Management Services (AD RMS) root cluster on Server2. You need to ensurethat the AD RMS cluster is discoverable automatically by the AD RMS client computers and the users incontoso.com. Which additional configuration settings should you configure?To answer, select the appropriate tab in the answer area.Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

A.B.C.D.



QUESTION 47You plan to deploy a failover cluster that will contain two nodes that run Windows Server 2012. You need toconfigure a witness disk for the failover cluster. How should you configure the witness disk? To answer, dragthe appropriate configurations to the correct location or locations. Each configuration may be used once, morethan once, or not at all. You may need to drag the split bar between panes or scroll to view content.Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

A.B.C.D.


QUESTION 48You have a test server named Server1 that is configured to dual-boot between Windows Server 2008 R2 andWindows Server 2012. You start Server1 and you discover that the boot entry for Windows Server 2008 R2 nolonger appears on the boot menu. You start Windows Server 2012 on Server1 and you discover the diskconfigurations shown in the following table.

You need to restore the Windows Server 2008 R2 boot entry on Server1. What should you do?

A. Run bcdedit.exe and specify the /createstore parameter.B. Run bootrec.exe and specify the /scanos parameter.C. Run bcdboot.exe d:\windows.D. Run bcdboot.exe c:\windows.


QUESTION 49You have a DHCP server named Server1. Server1 has one network adapter. Server1 is located Completecollection of 70-412 Exam's Question and answers.http://www.passleader.com/on a subnet named Subnet1. Server1 has scope named Scope1. Scope1 contains IP addresses for the192.168.1.0/24 network. Your company is migrating the IP addresses on Subnet1 to use a network ID of10.10.0.0/16. On Server11 you create a scope named Scope2. Scope2 contains IP addresses for the10.10.0.0/16 network. You need to ensure that clients on Subnet1 can receive IP addresses from either scope.What should you create on Server1?

A. A multicast scopeB. A scopeC. A superscopeD. A split-scope


Explanation/Reference:Explanation:http://technet.microsoft.com/en-us/library/dd759168.aspx

QUESTION 50Your network contains an Active Directory domain named adatum.com. The domain contains a domaincontroller named DC1 that runs Windows Server 2012. On Dc1, you open DNS Manager as shown in theexhibit. (Click the Exhibit button.)

You need to change the zone type of the contoso.com zone from an Active Directory-integrated zone to astandard primary zone. What should you do before you change the zone type?

A. Unsign the zone.B. Modify the Zone Signing Key (ZSK).C. Modify the Key Signing Key (KSK).D. Change the Key Master.


QUESTION 51You have a server named Server1 that runs Windows Server 2012. Server1 has the DNS Server server roleinstalled. You need to configure Server1 to resolve queries for single-label DNS names. Which two actionsshould you perform? (Each correct answer presents part of the solution. Choose two.)Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

A. Run the Set-DNSServerGlobalNameZone cmdlet.B. Modify the DNS suffix search list setting.C. Modify the Primary DNS Suffix Devolution setting.D. Create a zone named ".".E. Create a zone named GlobalNames.F. Run the Set-DNSServerRootHint cmdlet.

Correct Answer: EFSection: (none)Explanation

Explanation/Reference:Explanation:Open DNS Manager from Administrative Tools. Expend the DNS server, right-click "Forward Lookup Zones",and choose "New Zone"Click NextChoose "Primary zone" (Store zone in Active Directory), click Next Choose the Active Directory ZoneReplication Scope. Click Next On Zone Name, screen, enter "GlobalNames", click Next On Dynamic Updatescreen, choose "Do not allow dynamic updates", click Next Click Finish

QUESTION 52Your network contains an Active Directory domain named contoso.com. The domain contains two serversnamed Server1 and Server2 that run Windows Server 2012. Server1 has the IP Address Management (IPAM)Server feature installed. Server2 has the DHCP Server server role installed. A user named User1 is a memberof the IPAM Users group on Server1. You need to ensure that User1 can use IPAM to modify the DHCP scopeson Server2. The solution must minimize the number of permissions assigned to User1. To which group shouldyou add User1?

A. DHCP Administrators on Server2B. IPAM ASM Administrators on Server1C. IPAMUG in Active DirectoryD. IPAM MSM Administrators on Server1


QUESTION 53You have a server named DC2 that runs Windows Server 2012. DC2 contains a DNS zone namedadatum.com. The adatum.com zone is shown in the exhibit. (Click the Exhibit button.) Complete collection of70-412 Exam's Question and answers.http://www.passleader.com/

You need to configure DNS clients to perform DNSSEC validation for the adatum.com DNS domain.What should you configure?

A. The Network Location settingsB. A Name Resolution PolicyC. The DNS Client settingsD. The Network Connection settings


Explanation/Reference:Explanation:http://technet.microsoft.com/en-us/library/hh831411.aspx#config_client1

QUESTION 54Your network contains an Active Directory domain named contoso.com. The domain contains two serversnamed Server1 and Server2 that run Windows Server 2012. Server1 has the DHCP Server server roleinstalled. Server2 has the Hyper-V server role installed. Server2 has an IP address of 192.168.10.50. Server1has a scope named Scope1 for the 192.168.10.0/24 network. You plan to deploy 20 virtual machines onServer2 that will be connected to the external network. The MAC addresses for the virtual machines will beginwith 00-15-SD-83-03. You need to configure Server1 to offer the virtual machines IP addresses from192.168.10.200 to 192.168.10.21g. Physical computers on the network must be offered IP addresses outsidethis range. You want to achieve this goal by using the minimum amount of administrative effort. What shouldyou do from the DHCP console?

A. Create reservations.B. Create a policy.C. Delete Scope1 and create two new scopes.D. Configure Allow filters and Deny filters.



Explanation/Reference:Explanation:http://blogs.technet.com/b/teamdhcp/archive/2012/08/22/granular-dhcp-server-administration- using-dhcppolicies-in-windows-server-2012.aspx

QUESTION 55Your network contains an Active Directory domain named contoso.com. The domain contains two serversnamed Server1 and Server2. Both servers have the IP Address Management (IPAM) Server feature installed.You have a support technician named Tech1. Tech1 is a member of the IPAM Administrators group on Server1and Server2. You need to ensure that Tech 1 can use Server Manager on Server1 to manage IPAM onServer2. To which group on Server2 should you add Tech1.

A. Remote Management UsersB. IPAM MSM AdministratorsC. IPAM AdministratorsD. WinRM Remote WM1 Users


QUESTION 56Your network contains two Active Directory forests named contoso.com and adatum.com. All of the domaincontrollers in both of the forests run Windows Server 2012. The adatum.com domain contains a file servernamed Servers. Adatum.com has a one-way forest trust to contoso.com. A contoso.com user name User10attempts to access a shared folder on Servers and receives the error message shown in the exhibit. (Click theExhibit button.)

You verify that the Authenticated Users group has Read permissions to the Data folder. You need to ensurethat User10 can read the contents of the Data folder on Server5 in the adatum.com domain.What should you do?

A. Grant the Other Organization group Read permissions to the Data folder.B. Modify the list of logon workstations of the contoso\User10 user account.

C. Enable the Netlogon Service (NP-In) firewall rule on Server5.D. Modify the permissions on the Server5 computer object in Active Directory.


Explanation/Reference:Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/Explanation:To resolve the issue, I had to open up AD Users and Computers --> enable Advanced Features - -> Select theComputer Object --> Properties --> Security --> Add the Group I want to allow access to the computer (in thiscase, DomainA\Domain users) and allow "Allowed to Authenticate". Once I did that, everything worked:

QUESTION 57Your network contains an Active Directory domain named contoso.com. The domain contains two ActiveDirectory sites named Site1 and Site2. You discover that when the account of a user in Site1 is locked out, theuser can still log on to the servers in Site2 for up to 15 minutes by using Remote Desktop Services (RDS). Youneed to reduce the amount of time it takes to synchronize account lockout information across the domain.Which attribute should you modify? To answer, select the appropriate attribute in the answer area.Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

A.B.C.D.



QUESTION 58Your network contains an Active Directory forest. The forest contains two domains named contoso.com andfabrikam.com. The functional level of the forest is Windows Server 2003. You have a domain outside the forestnamed adatum.com. You need to configure an access solution to meet the following requirements:

- Users in adatum.com must be able to access resources in contoso.com.- Users in adatum.com must be prevented from accessing resources in fabrikam.com.- Users in both contoso.com and fabrikam.com must be prevented from accessing resources in adatum.com.Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/What should you create?

A. a one-way external trust from adatum.com to fabrikam.comB. a one-way realm trust from fabrikam.com to adatum.comC. a one-way realm trust from adatum.com to fabrikam.com

D. a one-way external trust from fabrikam.com to adatum.com


QUESTION 59Your network contains an Active Directory domain named contoso.com. The domain contains a main office anda branch office. An Active Directory site exists for each office. All domain controllers run Windows Server 2012.The domain contains two domain controllers. The domain controllers are configured as shown in the followingtable.


DC1 hosts an Active Directory-integrated zone for contoso.com. You add the DNS Server server role to DC2.You discover that the contoso.com DNS zone fails to replicate to DC2. You verify that the domain, schema, andconfiguration naming contexts replicate from DC1 to DC2. You need to ensure that DC2 replicates thecontoso.com zone by using Active Directory replication.Which tool should you use?

A. Active Directory Sites and ServicesB. NtdsutilC. DNS ManagerD. Active Directory Domains and Trusts



QUESTION 60Your network contains an Active Directory forest. The forest contains two domains named contoso.com andfabrikam.com. The functional level of the forest is Windows Server 2003. The contoso.com domain containsdomain controllers that run either Windows Server 2008 or Windows Server 2008 R2. The functional level ofthe domain is Windows Server 2008. The fabrikam.com domain contains domain controllers that run eitherWindows Server 2003 or Windows Server 2008. The functional level of the domain is Windows Server 2003.The contoso.com domain contains a member server named Server1 that runs Windows Server 2012. Youinstall the Active Directory Domain Services server role on Server1. You need to add Server1 as a new domaincontroller in the contoso.com domain. What should you do?

A. Run the Active Directory Domain Services Configuration Wizard.B. Run adprep.exe /domainprep, and then run dcpromo.exe.C. Raise the functional level of the forest, and then run dcprorno.exe.


D. Modify the Computer Name/Domain Changes properties.


Explanation/Reference:Explanation:Windows Server 2012 requires a Windows Server 2003 forest functional level. That is, before you can add adomain controller that runs Windows Server 2012 to an existing Active Directory forest, the forest functionallevel must be Windows Server 2003 or higher.

QUESTION 61Your network contains an Active Directory forest. The forest contains two domains named contoso.com andfabrikam.com. The forest functional level is Windows 2000. The contoso.com domain contains domaincontrollers that run either Windows Server 2008 or Windows Server 2008 R2. The domain functional level isWindows Server 2008. The fabrikam.com domain contains domain controllers that run either Windows 2000Server or Windows Server 2003. The domain functional level is Windows 2000 native. The contoso.comdomain contains a member server named Server1 that runs Windows Server 2012. You need to add Server1as a new domain controller in the contoso.com domain. What should you do first?

A. Raise the functional level of the contoso.com domain to Windows Server 2008 R2.B. Upgrade the domain controllers that run Windows Server 2008 to Windows Server 2008 R2.C. Raise the functional level of the fabrikam.com domain to Windows Server 2003.D. Decommission the domain controllers that run Windows 2000.E. Raise the forest functional level to Windows Server 2003.


QUESTION 62Your network contains an Active Directory domain named adatum.com. The domain contains four servers. Theservers are configured as shown in the following table.

You plan to deploy an enterprise certification authority (CA) on a server named Server5. Server5 will be used toissue certificates to domain-joined computers and workgroup computers. You need to identify which server youmust use as the certificate revocation list (CRL) distribution point for Server5. Which server should you identify?

A. Server3B. Server2C. Server4D. Server 1


Explanation/Reference:Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/Explanation:CRL is published to a web site

QUESTION 63You have a server named Server1 that has the Active Directory Certificate Services server role installed.Server1 uses a hardware security module (HSM) to protect the private key of Server1. You need to ensure thatthe Active Directory Certificate Services (AD CS) database, log files, and private key are backed up. Youperform regular backups of the HSM module by using a backup utility provided by the HSM manufacturer. Whatelse should you do?

A. Run the certutil.exe command and specify the -backupkey parameter.B. Run the certutil.exe command and specify the -backupdb parameter.C. Run the certutil.exe command and specify the -backup parameter.D. Run the certutil.exe command and specify the -dump parameter.


Explanation/Reference:Explanation:http://technet.microsoft.com/en-us/library/cc732443(v=ws.10).aspx#BKMK_backupDB

QUESTION 64Your network contains an Active Directory domain named contoso.com. The domain contains a server namedServer1 that runs Windows Server 2012. Server1 has the Active Directory Federation Services (AD FS) serverrole installed. Adatum.com is a partner organization. You are helping the administrator of adatum.com set up afederated trust between adatum.com and contoso.com. The administrator of adatum.com asks you to provide afile containing the federation metadata of contoso.com. You need to identify the location of the federationmetadata file. Which node in the AD FS console should you select?To answer, select the appropriate node in the answer area.

A.B.C.D.



QUESTION 65Your network contains three Active Directory forests. Each forest contains an Active Directory RightsManagement Services (AD RMS) root cluster. All of the users in all of the forests must be able to accessprotected content from any of the forests. You need to identify the minimum number of AD RMS trusts required.How many trusts should you identify?

A. 2B. 3C. 4D. 6


QUESTION 66Your network contains an Active Directory domain named contoso.com. All servers run Windows Server 2012.The domain contains a domain controller named DC1 that is configured as an enterprise root certificationauthority (CA). All users in the domain are issued a smart card and are required to log on to their domain-joinedclient computer by using their smart card. A user named User1 resigned and started to work for a competingcompany. You need to prevent User1 immediately from logging on to any computer in the domain. The solutionmust not prevent other users from logging on to the domain. Which tool should you use?

A. Active Directory Sites and ServicesB. Active Directory Administrative CenterC. Server ManagerD. Certificate Templates


QUESTION 67Your network contains a server named Server1 that runs Windows Server 2012. Server1 has the Completecollection of 70-412 Exam's Question and answers.http://www.passleader.com/Hyper-V server role installed. Server1 hosts 10 virtual machines that run Windows Server 2012. You add a newserver named Server2. Server2 has faster hard disk drives, more RAM, and a different processor manufacturerthan Server1. You need to move all of the virtual machines from Server1 to Server2. The solution mustminimize downtime. What should you do for each virtual machine?

A. Perform a quick migration.B. Perform a storage migration.C. Export the virtual machines from Server1 and import the virtual machines to Server2.D. Perform a live migration.


Explanation/Reference:Explanation:The different processor manufacturer is the key here. Storage, Live, and Quick all require same manufacturer.

QUESTION 68You have a datacenter that contains six servers. Each server has the Hyper-V server role installed and runsWindows Server 2012. The servers are configured as shown in the following table.

Host4 and Host5 are part of a cluster named Cluster1. Cluster1 hosts a virtual machine named VM1. You needto move VM1 to another Hyper-V host. The solution must minimize the downtime of VM1. To which server andby which method should you move VM1?

A. To Host3 by using a storage migrationB. To Host6 by using a storage migrationC. To Host2 by using a live migrationD. To Host1 by using a quick migration


Explanation/Reference:Explanation:http://technet.microsoft.com/en-us/library/hh831656.aspx

QUESTION 69Your network contains an Active Directory domain named contoso.com. The domain contains two memberservers named Server1 and Server2. All servers run Windows Server 2012. Server1 and Server2 have theFailover Clustering feature installed. The servers are configured as nodes in a Complete collection of 70-412Exam's Question and answers.http://www.passleader.com/failover cluster named Cluster1. Cluster1 hosts an application named App1. You need to ensure that Server2handles all of the client requests to the cluster for App1. The solution must ensure that if Server2 fails, Server1becomes the active node for Appl. What should you configure?

A. Affinity-NoneB. Affinity-SingleC. The cluster quorum settingsD. The failover settingsE. A file server for general useF. The Handling priorityG. The host priorityH. Live migrationI. The possible ownerJ. The preferred ownerK. Quick migrationL. the Scale-Out File Server

Correct Answer: JSection: (none)Explanation

Explanation/Reference:Explanation:http://blogs.msdn.com/b/clustering/archive/2008/10/14/9000092.aspx The preferred owner in a 2 server clusterwill always be the active node unless it is down.

QUESTION 70Your network contains an Active Directory domain named contoso.com. The domain contains two memberservers named Server1 and Server2. All servers run Windows Server 2012. Server1 and Server2 have theFailover Clustering feature installed. The servers are configured as nodes in a failover cluster named Cluster1.You add two additional nodes to Cluster1. You need to ensure that Cluster1 stops running if three nodes fail.What should you configure?


Correct Answer: C

Section: (none)Explanation

QUESTION 71Your network contains an Active Directory domain named contoso.com. The domain contains two memberservers named Server1 and Server2. All servers run Windows Server 2012. Server1 and Server2 have theFailover Clustering feature installed. The servers are configured as nodes in a failover cluster named Cluster1.You configure File Services and DHCP as clustered resources for Cluster1. Server1 is the active node for bothclustered resources. You need to ensure that if Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/two consecutive heartbeat messages are missed between Server1 and Server2, Server2 will begin respondingto DHCP requests. The solution must ensure that Server1 remains the active node for the File Servicesclustered resource for up to five missed heartbeat messages. What should you configure?



Explanation/Reference:Explanation:http://technet.microsoft.com/en-us/library/dd197562(v=ws.10).aspx

QUESTION 72Your network contains an Active Directory domain named contoso.com. The domain contains two memberservers named Server1 and Server2 that run Windows Server 2012. You configure a new failover clusternamed Cluster1. Server1 and Server2 are nodes in Cluster1. You need to configure the disk that will be usedas a witness disk for Cluster1. How should you configure the witness disk?To answer, drag the appropriate configurations to the correct location or locations. Each configuration may beused once, more than once, or not at all. You may need to drag the split bar between panes or scroll to viewcontent.


A.B.C.D.


QUESTION 73Your network contains an Active Directory forest named contoso.com that contains a single domain. The forestcontains three sites named Site1, Site2, and Site3. Domain controllers run either Windows Server 2008 R2 orWindows Server 2012. Each site contains two domain controllers. Site1 and Site2 contain a global catalogserver. You need to create a new site link between Site1 and Site2. The solution must ensure that the site linksupports the replication of all the naming contexts. From which node should you create the site link? Toanswer, select the appropriate node in the answer area.

A.B.C.D.



QUESTION 74Your network contains an Active Directory domain named adatum.com. All servers run Windows Server 2012.All domain controllers have the DNS Server server role installed. You have a domain controller named DC1. OnDC1, you create an Active Directory-integrated zone named adatum.com and you sign the zone by usingDNSSEC. You deploy a new read-only domain controller (RODC) named R0DC1. You need to ensure that thecontoso.com zone replicates to R0DC1. What should you configure on DC1?To answer, select the appropriate tab in the answer area.Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

A.B.C.D.



QUESTION 75You have a server named Server1 that runs Windows Server 2012. Server1 has a single volume that isencrypted by using BitLocker Drive Encryption (BitLocker). BitLocker is configured to save encryption keys to aTrusted Platform Module (TPM). Server1 is configured to perform a daily system image backup. Themotherboard on Server1 is upgraded. After the upgrade, Windows Server 2012 on Server1 fails to start. Youneed to start the operating system on Server1 as soon as possible.What should you do?Start Server1 from the installation media. Run startrec.exe. Move the disk to a server that has a model of theold motherboard. Start the server from the installation media. Run bcdboot.exe. Move the disk to a server thathas a model of the old motherboard. Start the server. Run tpm.msc. Start Server1 from the installation media.Perform a system image recovery.

A. Start Server1 from the installation media. Run startrec.exe.B. Move the disk to a server that has a model of the old motherboard.

Start the server from the installation media.Run bcdboot.exe.

C. Move the disk to a server that has a model of the old motherboard.Start the server. Run tpm.msc.Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

D. Start Server1 from the installation media. Perform a system image recovery.


QUESTION 76You have a test server named Server1 that is configured to dual-boot between Windows Server 2008 R2 andWindows Server 2012. You start Server1 and you discover that the boot entry for Windows Server 2008 R2 nolonger appears on the boot menu. You start Windows Server 2012 on Server1 and you discover the diskconfigurations shown in the following table.

You need to restore the Windows Server 2008 R2 boot entry on Server1. What should you do?

A. Run bootrec.exe and specify the /scanos parameter.B. Run bcdedit.exe and specify the /create store parameter.C. Run bootcfg.exe and specify the /copy parameter.D. Run bootrec.exe and specify the /rebuildbcd parameter.


QUESTION 77You have 3 server named LON-DC1 that runs Windows Server 2012. An iSCSI virtual disk namedVirtualiSCSIl.vhd exists on LON-DC1 as shown in the exhibit. (Click the Exhibit button.)

You create a new iSCSI virtual disk named VirtualiSCSI2.vhd by using the existing itgt iSCSI target.VirtualiSCSIl.vhd is removed from LON-DC1. You need to assign VirtualiSCSI2.vhd a logical unit value of 0.What should you do?Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

A. Modify the properties of the VirtualiSCSI2.vhd iSCSI virtual disk.B. Run the Add-IscsiVirtualDiskTargetMapping cmdlet and specify the -Lun parameter.C. Run the iscsicli command and specify the reportluns parameter.D. Run the iscsicpl command and specify the virtualdisklun parameter.


QUESTION 78Your network contains an Active Directory forest named contoso.com. The forest contains a single domain. Theforest contains three Active Directory sites named SiteA, SiteB, and SiteC. The sites contain four domaincontrollers. The domain controllers are configured as shown in the following table.

An IP site link exits between each site. You discover that the users in SiteC are authenticated by the domaincontrollers in SiteA and SiteB. You need to ensure that the SiteC users are authenticated by the domaincontrollers in SiteB, unless all of the domain controllers in SiteB are unavailable. What should you do?

A. Create a site link bridge.B. Create additional connection objects for DC3 and DC4.C. Create additional connection objects for DC1 and DC2.D. Increase the cost of the site link between SiteA and SiteC.


QUESTION 79You have a file server named Server1 that runs Windows Server 2012. The folders on Server1 are configuredas shown in the following table.

A new corporate policy states that backups must use Windows Azure Online Backup whenever possible. Youneed to identify which technology you must use to back up Server1. The solution must use Windows AzureOnline Backup whenever possible. What should you identify? To answer, drag the appropriate backup type tothe correct location or locations. Each backup type may be used once, more than once, or not at all. You mayneed to drag the split bar between panes or scroll to view content.Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

A.B.C.

D.



QUESTION 80You have a server named File1 that runs Windows Server 2012. File1 has the File Server role service installed.You plan to back up all shared folders by using Windows Azure Online Backup. You download and install theWindows Azure Online Backup Service Agent on File1. You need to ensure that you use Windows ServerBackup to back up data to Windows Azure Online Backup.What should you do?

A. From Computer Management, add the File1 computer account to the Backup Operators group.B. From the Services console, modify the Log On settings of the Windows Azure Online Backup Service

Agent.C. From Windows Server Backup, run the Register Server Wizard.D. From a command prompt, run wbadmin.exe enable backup.


QUESTION 81Your network contains an Active Directory domain named contoso.com. A previous administrator implementeda Proof of Concept installation of Active Directory Rights Management Services (AD RMS). After the proof ofconcept was complete, the Active Directory Rights Management Services server role was removed. Youattempt to deploy AD RMS. During the configuration of AD RMS, you receive an error message indicating thatan existing AD RMS Service Connection Point (SCP) was found. You need to remove the existing AD RMSSCP. Which tool should you use?

A. Authorization ManagerB. TPM ManagementC. Active Directory Sites and ServicesD. Services




DC1 hosts an Active Directory-integrated zone for contoso.com. You add the DNS Server server role to DC2.You discover that the contoso.com DNS zone fails to replicate to DC2. You verify that the domain, schema, andconfiguration naming contexts replicate from DC1 to DC2. You need to ensure that DC2 replicates thecontoso.com zone by using Active Directory replication.Which tool should you use?

A. NtdsutilB. RepadminC. DnslintD. Active Directory Domains and Trusts


QUESTION 83You have a server named Server1 that runs Windows Server 2012. Windows Server 2012 is installed onvolume C. You need to ensure that Safe Mode with Networking loads the next time Server1 restarts. Which toolshould you use?

A. The Msconfig commandB. The Restart-Server cmdletC. The Restart-Computer cmdletD. The Bootcfg command


QUESTION 84You have a file server named FS1 that runs Windows Server 8. Data Deduplication is enabled on FS1. Youneed to configure Data Deduplication to run at a normal priority from 20:00 to 06:00 daily. What should youconfigure?

A. File and Storage Services in Server ManagerB. The Data Deduplication process in Task ManagerC. Disk Management in Computer ManagementD. The properties of drive C



QUESTION 85Your network contains an Active Directory domain named contoso.com. All client computers run Windows 8Enterprise. You have a remote site that only contains client computers. All of the client computer accounts arelocated in an organizational unit (CU) named Remote1. A Group Policy object (GPO) named GPO1 is linked tothe Remote1 CU. You need to configure BranchCache for the remote site. Which two settings should youconfigure in GPO1? To answer, select the two appropriate settings in the answer area.

A.B.C.D.



QUESTION 86Your company has a main office and a branch office. An Active Directory site exists for each office. Thenetwork contains an Active Directory forest named contoso.com. The contoso.com domain contains threemember servers named Server1, Server2, and Server3. All servers run Windows Server 2012. In the mainoffice, you configure Server1 as a file server that uses BranchCache. In the branch office, you configure

Server2 and Server3 as BranchCache hosted cache servers. You are creating a Group Policy for the branchoffice site. In the branch office, you need to configure the client computers that run Windows B to use Server2and Server3 as Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/BranchCache.

A.B.C.D.



QUESTION 87Your network contains two Active Directory forests named contoso.com and fabrikam.com. A two- way foresttrust exists between the forests. The contoso.com forest contains an enterprise Complete collection of 70-412Exam's Question and answers.http://www.passleader.com/certification authority (CA) named CAl. You implement cross-forest certificate enrollment between thecontoso.com forest and the fabrikam.com forest. On CA1, you create a new certificate template namedTemplate1. You need to ensure that users in the fabrikam.com forest can request certificates that are based onTemplate1. Which tool should you use?

A. Sync-ADObjectB. Pkiview.mscC. CertificateServices.ps1D. CertutilE. PKISync.ps1


QUESTION 88Your network contains an Active Directory domain named contoso.com. The domain contains an enterprisecertification authority (CA). The domain contains a server named Server1 that runs Windows Server 2012. Youinstall the Active Directory Federation Services server role on Server1. You plan to configure Server1 as anActive Directory Federation Services (AD FS) server. The Federation Service name will be set toadfs1.contoso.com. You need to identify which type of certificate template you must use to request a certificatefor AD FS.

A.B.C.D.



QUESTION 89Your network contains an Active Directory domain named contoso.com. A previous administrator implementeda Proof of Concept installation of Active Directory Rights Management Services (AD RMS). After the proof ofconcept was complete, the Active Directory Rights Management Services server role was removed. Youattempt to deploy AD RMS. During the configuration of AD RMS, you receive an error message indicating thatan existing AD RMS Service Connection Point (SCP) was found. You need to remove the existing AD RMSSCP.

A. Certification AuthorityB. Authorization ManagerC. ADSI EditD. Active Directory Domains and Trusts


Explanation/Reference:Explanation:http://social.technet.microsoft.com/wiki/contents/articles/710.the-ad-rms-service-connection- point-en-us.aspx

QUESTION 90Your network contains an Active Directory domain named contoso.com. The domain contains a server namedServer1 that runs Windows Server 2012. Server1 has the Active Directory Certificate Services server roleinstalled and is configured as an enterprise certification authority (CA). You need to ensure that all of the usersin the domain are issued a certificate that can be used for the following purposes:Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/- Email security

- Client authentication- Encrypting File System (EFS)

Which two actions should you perform? (Each correct answer presents part of the solution.Choose two.)

A. From a Group Policy, configure the Certificate Services Client ?Auto-Enrollment settings.B. From a Group Policy, configure the Certificate Services Client ?Certificate Enrollment Policy settings.C. Modify the properties of the User certificate template, and then publish the template.D. Duplicate the User certificate template, and then publish the template.E. From a Group Policy, configure the Automatic Certificate Request Settings settings.


Explanation/Reference:Explanation:The default user template supports all of the requirements EXCEPT auto enroll as shown below:

However a duplicated template from users has the ability to autoenroll:

The Automatic Certificate Request Settings GPO setting is only available to Computer, not user.

QUESTION 91Your network contains an Active Directory domain named contoso.com. The domain contains two ActiveDirectory sites named Site1 and Site2. You need to configure the replication between the sites to occur by usingchange notification. Which attribute should you modify? Complete collection of 70-412 Exam's Question andanswers.http://www.passleader.com/

A.B.C.D.




Complete collection of 70-412 Exam's Question and answers.

http://www.passleader.com/DC1 hosts an Active Directory-integrated zone for contoso.com. You add the DNS Server server role to DC2.You discover that the contoso.com DNS zone fails to replicate to DC2. You verify that the domain, schema, andconfiguration naming contexts replicate from DC1 to DC2. You need to ensure that DC2 replicates thecontoso.com zone by using Active Directory replication.Which tool should you use?

A. DnslintB. A DNS ManagerC. Active Directory Users and ComputersD. Dnscmd


QUESTION 93Your network contains an Active Directory forest named adatum.com. The forest contains a single domain. Thedomain contains four servers. The servers are configured as shown in the following table.

You need to update the schema to support a domain controller that will run Windows Server 2012.On which server should you run adprep.exe?

A. Server1B. DC3C. DC2D. DC1


QUESTION 94Complete collection of 70-412 Exam's Question and answers.

http://www.passleader.com/Your network contains an Active Directory domain named contoso.com. The domain contains domaincontrollers that run either Windows Server 2003, Windows Server 2008 R2, or Windows Server 2012. You planto implement a new Active Directory forest. The new forest will be used for testing and will be isolated from theproduction network. In the test network, you deploy a server named Server1 that runs Windows Server 2012.You need to configure Server1 as a new domain controller in a new forest named contoso.test. The solutionmust meet the following.

Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/Select two options below.

A. There is no need to set the Forest Functional Level.B. Set Forest Functional Level to Windows 2003.C. Set Forest Functional Level to Windows 2008D. Set Forest Functional Level to Windows 2008 R2.E. Set Forest Functional Level to Windows 2012.F. There is no need to set the Domain Functional Level.G. Set Domain Functional Level to Windows 2003.H. Set Domain Functional Level to Windows 2008I. Set Domain Functional Level to Windows 2008 R2.J. Set Domain Functional Level to Windows 2012.

Correct Answer: BGSection: (none)Explanation

Explanation/Reference:Explanation:When you deploy AD DS, set the domain and forest functional levels to the highest value that your environmentcan support. This way, you can use as many AD DS features as possible. For example, if you are sure that youwill never add domain controllers that run Windows Server 2003 to the domain or forest, select the WindowsServer 2008 functional level during the deployment process. However, if you might retain or add domaincontrollers that run Windows Server 2003, select the Windows Server 2003 functional level. When you deploy anew forest, you are prompted to set the forest functional level and then set the domain functional level. Youcannot set the domain functional level to a value that is lower than the forest functional level. Reference:Understanding Active Directory Domain Services (AD DS) Functional Levels

QUESTION 95Your network contains an Active Directory domain named contoso.com. Domain controllers run either WindowsServer 2008, Windows Server 2008 R2, or Windows Server 2012. You have a Password Settings object(PSOs) named PSO1. You need to view the settings of PSO1. Which tool should you use?

A. Get-ADDomainControllerPasswordReplicationPolicyB. Get-ADDefaultDomainPasswordPolicyC. Server ManagerD. Get-ADFineGrainedPasswordPolicy


Explanation/Reference:Explanation:http://technet.microsoft.com/en-us/library/ee617231.aspx

QUESTION 96Your network contains an Active Directory domain named contoso.com. The domain contains two serversnamed Server1 and Server2. Both servers have the IP Address Management (IPAM) Server feature installed.You have a support technician named Tech1. Tech1 is a member of the IPAM Administrators group on Server1and Server2. You need to ensure that Tech1 can use Server Manager on Server1 to manage IPAM on Server2.To which group on Server2 should you add Tech1? To answer, select the appropriate group in the answer area.Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

A.B.C.D.



Explanation:http://www.microsoft.com/en-us/download/dlx/ThankYou.aspx?id=29012

Both WinRMRemoteWMIUsers_ and Remote Management Users have the exact same description. As such, Itested connecting with server manager remotely with a non-administrative account. I tried before adding toeither group and got this error:

I then added to Remote Management Users and got this error:Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

Note that this is due to access to the event log only.

Next I removed from Remote Management Users and added to WinRMRemoteWMIUsers_ and got this error:

The error is exactly the same and the explanation is due to event log. In summary, Either one of these answersis correct, however since the document explicitly says use the "WinRMRemoteWMIUsers_" group, then that'swhat we got to do.

QUESTION 97You have a server named Server2 that runs Windows Server 2012. You have storage provisioned on Server2as shown in the exhibit. (Click the Exhibit button.) You need to configure the storage so that it appears inWindows Explorer as a drive letter on Server1. Which three actions should you perform in sequence? Toanswer, move the three appropriate actions from the list of actions to the answer area and arrange them in thecorrect order.

A.B.C.D.



QUESTION 98Your network contains an Active Directory domain named contoso.com. The domain contains two serversnamed Server1 and Server2 Both servers have the IP Address Management (IPAM) Server feature installed.You have a support technician named Tech1. Tech1 is a member of the IPAM Administrators group on Server1and Server2. You need to ensure that Tech1 can use Server Manager on Server1 to manage IPAM on Server2.To which group on Server2 should you add Tech1.

A. IPAM MSM AdministratorsB. IPAM AdministratorsC. winRMRemoteWMIUsers_D. Remote Management Users


Explanation/Reference:Explanation:This is another case of Remote Management Users and winRMRemoteWMIUsers_ providing the exact samepermissions. The description of each group is exactly the same. However since the user is already a memberof IPAM administrators group and the IPAM MSM Administrators group provides access that is already

available to the IPAM Administrators group.

QUESTION 99Your network contains two Active Directory forests named contoso.com and adatum.com. Both forests containmultiple domains. All domain controllers run Windows Server 2012. Contoso.com has a one-way forest trust toadatum.com. A domain named paris.eu.contoso.com hosts several legacy applications that use NTLMauthentication. Users in a domain named london.europe.adatum.com report that it takes a long time to beauthenticated when they attempt to access the legacy applications hosted in paris.eu.contoso.com. You need toreduce how long it takes for the london.europe.adatum.com users to be authenticated in paris.eu.contoso.com.What should you do?

A. Create a shortcut trust.B. Create an external trust between the forest root domains.C. Disable SID filtering on the existing trust.D. Create an external trust.



QUESTION 100Your network contains an Active Directory domain named contoso.com. All servers run Windows Server 2012.You are creating a central access rule named TestFinance that will be used to audit members of theAuthenticated Users group for access failure to shared folders in the finance department. You need to ensurethat access requests are unaffected when the rule is published.What should you do?

A. Add a User condition to the current permissions entry for the Authenticated Users principal.B. Set the Permissions to Use the following permissions as proposed permissions.C. Add a Resource condition to the current permissions entry for the Authenticated Users principal.D. Set the Permissions to Use following permissions as current permissions.


QUESTION 101You have a server named Server1 that runs Windows Server 2012. Windows Server 2012 is installed onvolume C. You need to ensure that Safe Mode with Command Prompt loads the next time Server1 restarts.Which tool should you use?

A. The Restart-Server cmdletB. The Bootcfg commandC. The Restart-Computer cmdletD. The Bcdedit command


QUESTION 102

You have a server named Server1 that runs a Server Core Installation of Windows Server 2012. Shadowscopies are enabled on all volumes. You need to delete a specific shadow copy. The solution must minimizeserver downtime. Which tool should you use?

A. VssadminB. DiskpartC. WbadminD. Shadow


QUESTION 103Your network contains two Web servers named Server1 and Server2. Server1 and Server2 are nodes in aNetwork Load Balancing (NLB) cluster. You configure the nodes to use the port rule shown in the exhibit. (Clickthe Exhibit button.)Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

You need to configure the NLB cluster to meet the following requirements:

- HTTPS connections must be directed to Server1 if Server1 is available.

- HTTP connections must be load balanced between the two nodes.

Which three actions should you perform? (Each correct answer presents part of the solution.Choose three.)

A. From the host properties of Server1, set the Handling priority of the existing port rule to 2.B. From the host properties of Server1, set the Handling priority of the existing port rule to 1.C. From the host properties of Server2, set the Priority (Unique host ID) value to 1.D. Create a port rule for TCP port 80. Set the Filtering mode to Multiple host and set the Affinity to None.E. From the host properties of Server2, set the Handling priority of the existing port rule to 2.F. Create an additional port rule for TCP port 443. Set the Filtering mode to Multiple host and set the Affinity to

Single.

Correct Answer: BAESection: (none)Explanation

QUESTION 104Your network contains two Active Directory forests named contoso.com and litwareinc.com. A Completecollection of 70-412 Exam's Question and answers.http://www.passleader.com/two- way forest trusts exists between the forest. Selective authentication is enabled on the trust. Thecontoso.com forest contains a server named Server1. You need to ensure that users in litwareinc.com canaccess resources on Server1. What should you do?

A. Install Active Directory Rights Management Services on a domain controller in contoso.com.B. Modify the permission on the Server1 computer account.C. Install Active Directory Rights Management Services on a domain controller in litwareinc.com.D. Configure SID filtering on the trust.


QUESTION 105Your network contains an Active Directory domain named contoso.com. The domain contains two memberservers named Server1 and Server2. All servers run Windows Server 2012. Server1 and Server2 have theFailover Clustering feature installed. The servers are configured as nodes in a failover cluster named Cluster1.You add two additional nodes to Cluster1. You have a folder named Folder1 on Server1 that containsapplication data. You plan to provide continuously available access to Folder1. You need to ensure that all ofthe nodes in Cluster1 can actively respond to the client requests for Folder1. What should you configure?

A. Affinity-NoneB. Affinity-SingleC. The cluster quorum settingsD. The failover settingsE. A file server for general useF. The Handling priorityG. The host priorityH. Live migrationI. The possible ownerJ. The preferred owner

K. Quick migrationL. the Scale-Out File Server

Correct Answer: LSection: (none)Explanation

Explanation/Reference:Explanation:http://technet.microsoft.com/en-us/library/hh831349.aspx Scale-Out File Server for application data (Scale-OutFile Server) This clustered file server is introduced in Windows Server 2012 and lets you store serverapplication data, such as Hyper-V virtual machine files, on file shares, and obtain a similar level of reliability,availability, manageability, and high performance that you would expect from a storage area network. All fileshares are online on all nodes simultaneously. File shares associated with this type of clustered file server arecalled scale-out file shares. This is sometimes referred to as active-active.

QUESTION 106Information and details provided in a question apply only to that question. Your network contains an ActiveDirectory domain named contoso.com. The domain contains two member servers named Server1 and Server2.All servers run Windows Server 2012. Server1 and Server2 have the Network Load Balancing (NLB) featureinstalled. The servers are configured as nodes in an NLB cluster named Cluster1. Cluster1 hosts a secure webapplication named WebApp1. WebApp1 saves user state information locally on each node. You need to ensurethat when users connect to WebApp1, their session state is maintained. What should you configure? Completecollection of 70-412 Exam's Question and answers.http://www.passleader.com/



Explanation/Reference:Explanation:http://technet.microsoft.com/en-us/library/bb687542.aspx

QUESTION 107Your company has a main office and a branch office. The main office contains a file server named Server1.Server1 has the BranchCache for Network Files role service installed. The branch office contains a servernamed Server2. Server2 is configured as a BranchCache hosted cache server. You need to preload the datafrom the file shares on Server1 to the cache on Server2. You generate hashes for the file shares on Server1.Which cmdlet should you run next?

A. Add-BCDataCacheExtensionB. Set-BCCacheC. Publish-BCFileContentD. Export-BCCachePackage


Explanation/Reference:Explanation:http://technet.microsoft.com/en-us/library/hh848409.aspx

QUESTION 108Your company has a main office and a branch office. The main office is located in Detroit. The branch office islocated in Seattle. The network contains an Active Directory domain named adatum.com. Client computers runeither Windows 7 Enterprise or Windows 8 Enterprise. The main office contains 1,000 client computers and 50servers. The branch office contains 20 client computers. All computer accounts for the branch office arelocated in an organizational unit (OU) named SeattleComputers. A Group Policy object (GPO) named GPO1 islinked to the SeattleComputers OU. You need to configure BranchCache for the branch office. Completecollection of 70-412 Exam's Question and answers.http://www.passleader.com/

A.B.C.D.



QUESTION 109Your network contains an Active Directory domain named contoso.com. All file servers in the domain runWindows Server 2012. The computer accounts of the file servers are in an organizational unit (OU) namedOU1. A Group Policy object (GPO) named GPO1 is linked to OU1. You plan to modify the NTFS permissionsfor many folders on the file servers by using central access policies. You need to identify any users who will bedenied access to resources that they can currently access once the new permissions are implemented. Inwhich order should you Perform the five actions?Complete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

A.B.C.D.



Explanation:I hate steps like this because you can create a rule first and then the policy, or you can create the policy andcreate the rule during the creation of the policy. Either way I'm going to go with creating the policy first, and thenthe rule.

QUESTION 110You have a file server named Server1 that runs Windows Server 2012. Data Deduplication is enabled on driveD of Server1. You need to exclude D:\Folder1 from Data Deduplication. What should you configure?

A. Disk Management in Computer ManagementB. File and Storage Services in Server ManagerC. the classification rules in File Server Resource Manager (FSRM)D. the properties of D:\Folder1


Explanation/Reference:Explanation:http://technet.microsoft.com/en-us/library/hh831434.aspxComplete collection of 70-412 Exam's Question and answers.http://www.passleader.com/

QUESTION 111You manage an environment that has many servers. The servers run Windows Server 2012 and use iSCSIstorage. Administrators report that it is difficult to locate available iSCSI resources on the network. You need toensure that the administrators can locate iSCSI resources on the network by using a central repository. Whichfeature should you deploy?

A. The iSCSI Target Server role serviceB. The iSNS Server service featureC. The Windows Standards-Based Storage Management featureD. The iSCSI Target Storage Provider feature


Explanation/Reference:Explanation:http://technet.microsoft.com/en-us/library/cc772568.aspx

QUESTION 112Your network contains an Active Directory domain named contoso.com. The network contains a file servernamed Server1 that runs Windows Server 2012. You create a folder named Folder1. You share Folder1 asShare1. The NTFS permissions on Folder1 are shown in the Folder1 exhibit. (Click the Exhibit button.)

The Everyone group has the Full control Share permission to Folder1. You configure a central access policy asshown in the Central Access Policy exhibit. (Click the Exhibit button.) Complete collection of 70-412 Exam'sQuestion and answers.http://www.passleader.com/

Members of the IT group report that they cannot modify the files in Folder1. You need to ensure that the ITgroup members can modify the files in Folder1. The solution must use central access policies to control thepermissions. Which two actions should you perform? (Each correct answer presents part of the solution.Choose two.)

A. On the Classification tab of Folder1, set the classification to Information Technology.B. On the Security tab of Folder1, add a conditional expression to the existing permission entry for the IT

group.C. On Share1, assign the Change Share permission to the IT group.D. On the Security tab of Folder1, remove the permission entry for the IT group.E. On the Security tab of Folder1, assign the Modify permission to the Authenticated Users group.

Correct Answer: ABSection: (none)Explanation

QUESTION 113You have a server named File1 that runs Windows Server 2012. Fuel has the File Server role service installed.You plan to back up all shared folders by using Microsoft Online Backup. You download and install theMicrosoft Online Backup Service Agent on File1. You need to ensure that you use Windows Server Backup toback up data to Microsoft Online Backup. What should you do?

A. From Computer Management, add the File1 computer account to the Backup Operators group.B. From Windows Server Backup, run the Register Server Wizard.C. From a command prompt, run wbadmin.exe enable backup.D. From the Services console, modify the Log On settings of the Microsoft Online Backup Service Agent.



QUESTION 114Your network contains an Active Directory domain named contoso.com. You are creating a custom WindowsRecovery Environment (Windows RE) image. You need to ensure that when a server starts from the customWindows RE image, a drive is mapped automatically to a network share. What should you modify in the image?

A. startnet.cmdB. Xsl-mApp1ngs.xmlC. Win.iniD. smb.types.ps1xml


QUESTION 115You have a file server named Server1 that runs a Server Core Installation of Windows Server 2012. You needto ensure that users can access previous versions of files that are shared on Server1 by using the PreviousVersions tab. Which tool should you use?

A. DiskpartB. WbadminC. VssadminD. Storrept


Explanation/Reference:Explanation:



Documents

Vendor: Microsoft Exam Code: 70-412 Exam Name: Configuring