Practice Quiz

Microsoft MCSA 70-290 Exam Prep - Question List

Select how would you like to study

Study Mode Free Daily Question Test Mode
31. You create a user account for an IT employee and delegate permissions to create, delete, and manage groups to his account in Active Directory Users and Computers snap-in. The IT employee needs to manage groups in three departments. He is to use a domain controller named DOM1 for this task. However, he complains that he cannot log on to DOM1. Which of the following should you do to ensure that he can manage groups from DOM1?
  1. Modify the default security policy for the domain and refresh the policy using Secedit.exe.
  2. Modify the default security policy for the domain and refresh the policy by using Gpupdate.exe.
  3. Modify the default security policy for the DOM1 OU and refresh the policy by using Gpupdate.exe.
  4. Modify the default security policy for the DOM1 OU and refresh the policy by using Secedit.exe.
See answer
32. One morning an employee complains that he cannot logon to the domain because his user account is locked out. You unlock his account in Active Directory Users and the Computers snap-in. The next day he is complaining that his account is locked out again. You suspect that an attacker is attempting to crack the his password. Which of the following should you do to verify this?
  1. Search for security events in the event log of a domain controller where the user is located.
  2. Search for security events in the event log of the domain controller where the attacker may be located.
  3. Search for security events in the event log of all domain controllers in all sites.
  4. Search for security events in the event log on the user’s computer.
See answer
33. You install a new third-party network application on a domain controller named DOM2. You create a service account named NetworkApp1 for the network application and configure the network application to use the new account.

You notice a dictionary attack against the NetworkApp1 account. You take immidiate security mitigation steps and prevent the attack. You restart DOM2, but the network application does not respond. Which of the following should you do to start the Network application?
  1. Assign the NetworkApp1 account the right to log on locally in Active Directory Users and Computers snap-in.
  2. Reset the password for the NetworkApp1 account in Active Directory Users and Computers snap-in.
  3. Unlock the NetworkApp1 account in Active Directory Users and Computers snap-in.
  4. Restart the NetworkApp1 service on DOM2.
See answer
34. The Sales manager complains that someone is trying to gain unauthorized access to files on the client computers in the Sales department located in the Sales OU. You are to identify the user account that tried to gain this unauthorized access. Which of the following should you do?
  1. Configure auditing of the Everyone group for the files and folders you suspect are being accessed and enable an audit policy for the Sales department OU.
  2. Configure auditing in the Default Domain Controller Policy.
  3. Configure auditing for every client computer in the Sales department OU.
  4. Configure auditing of the Sales group for the files and folders you suspect are being accessed.
See answer
35. Which of the following commands are used to move an object from one container to another?
  1. dsmove
  2. dsadd
  3. dsget
  4. dsquery
See answer

Select how would you like to study

Study Mode Free Daily Question Test Mode