Lead2pass is providing complete solutions for Microsoft 70-417 that will help the candidates learn extensively and score exceptional in the Microsoft ’s 70-417 exam. Passing the Microsoft is not a dream anymore as our user friendly learning resources ensure guaranteed success.
QUESTION 141
Your network contains an Active Directory domain named contoso.com. The domain contains a server named Server1. Server1 has the DHCP Server server role and the Network Policy Server role service installed. Server1 contains three non-overlapping scopes named Scope1, Scope2, and Scope3. Server1 currently provides the same Network Access Protection (NAP) settings to the three scopes.
You modify the settings of Scope1 as shown in the exhibit. (Click the Exhibit button.)
You need to configure Server1 to provide unique NAP enforcement settings to the NAP non- compliant DHCP clients from Scope1.
What should you create?
A. A connection request policy that has the Service Type condition
B. A connection request policy that has the Identity Type condition
C. A network policy that has the MS-Service Class condition
D. A network policy that has the Identity Type condition
Answer: C
Explanation:
Restricts the policy to clients that have received an IP address from a DHCP scope that matches the specified DHCP profile name. This condition is used only when you are deploying NAP with the DHCP enforcement method. To use the MS-Service Class attribute, in Specify the profile name that identifies your DHCP scope, type the name of an existing DHCP profile.
http://technet.microsoft.com/en-us/library/cc731220(v=ws.10).aspx
QUESTION 142
Your network contains an Active Directory forest named contoso.com.
All servers run Windows Server 2012 R2. The domain contains four servers.
The servers are configured as shown in the following table.
You need to deploy IP Address Management (IPAM) to manage DNS and DHCP.
On which server should you install IPAM?
A. DC1
B. DC2
C. DC3
D. Server1
Answer: D
QUESTION 143
Your network contains an Active Directory domain named contoso.com. The domain contains two member servers named Server1 and Server2 that run Windows Server 2012 R2. Server1 has Microsoft SQL Server 2012 installed.
You install the Active Directory Federation Services server role on Server2.
You need to configure Server2 as the first Active Directory Federation Services (AD FS) server in the domain. The solution must ensure that the AD FS database is stored in a SQL Server database on Server1.
What should you do on Server2?
A. From Windows PowerShell, run Install-ADFSFarm.
B. From Windows PowerShell, run Install-ADFSStandAlone.
C. From the AD FS console, run the AD FS Federation Server Configuration Wizard and select the Stand-alone federation server option.
D. From Server Manager, install the AD FS Web Agents.
Answer: A
Explanation:
Install-ADFSFarm with the parameter -SQLConnectionString
This is the only valid option.
http://technet.microsoft.com/en-us/library/ee913579.aspx
Not: Powershell Install-ADFSStandAlone
We’re not going for StandAlone which is no more for 2012 R2 btw.
Not: Stand Alone federation.
Not: ADFS Web Agents
The Active Directory Federation Services (ADFS) Web Agent is a component of ADFS. It is used to consume security tokens and either allow or deny a user access to a Web application. To accomplish this, the Web server requires a relationship with a resource Federation Service so that it can direct the user to the Federation Service as needed.
QUESTION 144
Your network contains an Active Directory domain named contoso.com. All servers run Windows Server 2012 R2.
You are creating a central access rule named TestFinance that will be used to audit members of the Authenticated Users group for access failure to shared folders in the finance department.
You need to ensure that access requests are unaffected when the rule is published.
What should you do?
A. Set the Permissions to Use the following permissions as proposed permissions.
B. Set the Permissions to Use following permissions as current permissions.
C. Add a User condition to the current permissions entry for the Authenticated Users principal.
D. Add a Resource condition to the current permissions entry for the Authenticated Users principal.
Answer: A
QUESTION 145
Your network contains an Active Directory domain named contoso.com.
The network contains a file server named Server1 that runs Windows Server 2012 R2.
You are configuring a central access policy for temporary employees.
You enable the Department resource property and assign the property a suggested value of Temp.
You need to configure a target resource condition for the central access rule that is scoped to resources assigned to Temp only.
Which condition should you use?
A. (Department.Value Equals "Temp")
B. (Resource.Temp Equals "Department")
C. (Temp.Resource Equals "Department")
D. (Resource.Department Equals "Temp")
Answer: D
QUESTION 146
Drag and Drop Question
Your network contains four servers that run Windows Server 2012 R2.
Each server has the Failover Clustering feature installed.
Each server has three network adapters installed. An iSCSI SAN is available on the network.
You create a failover cluster named Cluster1.
You add the servers to the cluster.
You plan to configure the network settings of each server node as shown in the following table.
You need to configure the network settings for Cluster1.
What should you do? To answer, drag the appropriate network communication setting to the correct cluster network. Each network communication setting may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer:
QUESTION 147
Hotspot Question
Your network contains an Active Directory domain named contoso.com. The domain contains two member servers named Server1 and Server2. AN servers run Windows Server 2012 R2. Server1 and Server2 have the Hyper-V server role installed.
The servers are configured as shown in the following table.
You add a third server named Server3 to the network. Server3 has Intel processors.
You need to move VM3 and VM6 to Server3. The solution must minimize downtime on the virtual machines.
Which method should you use to move each virtual machine? To answer, select the appropriate method for each virtual machine in the answer area.
Answer:
QUESTION 148
Your network contains an Active Directory domain named contoso.com. The domain contains two servers named Node1 and Node2. Node1 and Node2 run Windows Server 2012 R2. Node1 and Node2 are configured as a two-node failover cluster named Cluster2. The computer accounts for all of the servers reside in an organizational unit (OU) named Servers. A user named User1 is a member of the local Administrators group on Node1 and Node2. User1 creates a new clustered File Server role named File1 by using the File Server for general use option.
A report is generated during the creation of File1 as shown in the exhibit. (Click the Exhibit button.)
File1 fails to start.
You need to ensure that you can start File1.
What should you do?
A. Recreate the clustered File Server role by using the File Server for scale-out Application data option.
B. Assign the user account permissions of User1 to the Servers OU.
C. Log on to the domain by using the built-in Administrator for the domain, and then recreate the clustered
File Server role by using the File Server for general use option.
D. Increase the value of the ms-DS-MachineAccountQuota attribute of the domain.
E. Assign the computer account permissions of Cluster2 to the Servers OU.
Answer: A
QUESTION 149
Drag and Drop Question
You plan to deploy a failover cluster that will contain two nodes that run Windows Server 2012 R2.
You need to configure a witness disk for the failover cluster.
How should you configure the witness disk? To answer, drag the appropriate configurations to the correct location or locations. Each configuration may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer:
QUESTION 150
Hotspot Question
Your network contains an Active Directory domain named contoso.com. The domain contains two servers named Server1 and Server2 that run Windows Server 2012 R2. The servers have the Hyper-V server role installed. A certification authority (CA) is available on the network. A virtual machine named VM1.contoso.com is replicated from Server1 to Server2. A virtual machine named vm2.contoso.com is replicated from Server2 to Server1.
You need to configure Hyper-V to encrypt the replication of the virtual machines.
Which common name should you use for the certificates on each server? To answer, configure the appropriate common name for the certificate on each server in the answer area.
Answer:
Why to choose Lead2pass:
User Friendly Test Engine;
Well Formatted, PDFs and Exam Software;
Progressive: DragDrops and HotSpots; Progressive:Amazing Simulations EnvironmentGreat Scenario of Questions & Answers;
Over 3500+ Free Demo Available;
Up to 90 Days Free Updates;
7/30 Customer Support a CLICK away.