QUESTION 231
Your network contains a Web server named Web1 that runs Windows Server 2008 R2. You import an SSL certificate to Web1. You need to enable SSL encryption for the Web site. What should you do?
A. Add a new binding to the Web site.
B. Modify the Server Certificates settings.
C. Configure the handler mappings for the Web site.
D. Configure the Machine Key feature for the Web site.
Answer: A
QUESTION 232
Your network contains a Web server. You need to ensure that users can only access files that have the .htm, .html, .asp, and .aspx file extensions. What should you do?
A. Add an authorization rule.
B. Modify the handler mappings.
C. Update the default documents list.
D. Configure the request filtering settings.
Answer: D
QUESTION 233
Your network contains an SMTP server. You discover that the server has two SMTP Virtual Servers named SMTP1 and SMTP2. SMTP1 starts and SMTP2 stops. You attempt to start SMTP2 and receive the following error message.
You need to ensure that you can start SMTP2. Which settings should you modify on SMTP2?
A. Access control
B. Advanced Delivery
C. Connection Control
D. IP address and TCP port
Answer: D
QUESTION 234
Your network contains a Web server that runs Windows Server 2008 R2. Users can connect to the Default Web Site. You create a new Web site and assign the site a host header. Users cannot connect to the new Web site by using the host header. You need to ensure that users can connect to the new Web site by using the host header. What should you do?
A. Create an Alias (CNAME) record in DNS for the host header.
B. Create a service location (SRV) record in DNS for the host header.
C. Modify the Windows Firewall configuration on the Web server.
D. Modify the Windows Firewall configuration on the users’ computers.
Answer: A
QUESTION 235
Your network contains a server that runs Windows Server 2008 R2. The server has the Web Server (IIS) role installed. The server has a Web application that uses HTTP. All authentication methods are enabled for the Web application. You need to prevent passwords from being sent over the network in clear text. Which two authentication methods should you disable? (Each correct answer presents part of the solution. Choose two.)
A. Anonymous
B. Basic
C. Digest
D. Forms
E. Windows Integrated
Answer: BD
QUESTION 236
You install all of the Web Server (IIS) role services on a server named Server1. You configure the Default Web Site to assign the IIS Manager Permissions for the site to a user named User1. From a different computer, User1 attempts to connect to the Default Web Site on Server1 by using Internet Information Services (IIS) Manager and receives the following error message.
You need to ensure that User1 can use Internet Information Services (IIS) Manager to remotely administer the Default Web Site on Server1. What should you do first?
A. From the Internet Information Services (IIS) Manager console, configure the Feature Delegation feature.
B. From the Internet Information Services (IIS) Manager console, configure the Management Service feature.
C. From the Services console, modify the properties of the Web Management Service service.
D. From the Services console, modify the properties of the Windows Remote Management (WS- Management) service.
Answer: B
QUESTION 237
Your network contains an Active Directory domain named contoso.com. The network contains client computers that run either Windows Vista or Windows 7. Active Directory Rights Management Services (AD RMS) is deployed on the network. You create a new AD RMS template that is distributed by using the AD RMS pipeline. The template is updated every month. You need to ensure that all the computers can use the most up-to-date version of the AD RMS template. You want to achieve this goal by using the minimum amount of administrative effort. What should you do?
A. Upgrade all of the Windows Vista computers to Windows 7.
B. Upgrade all of the Windows Vista computers to Windows Vista Service Pack 2 (SP2).
C. Assign the Microsoft Windows Rights Management Services (RMS) Client Service Pack 2 (SP2) to all users by using a Software Installation extension of Group Policy.
D. Assign the Microsoft Windows Rights Management Services (RMS) Client Service Pack 2 (SP2) to all computers by using a Software Installation extension of Group Policy.
Answer: B
QUESTION 238
Your network contains an Active Directory domain. The domain contains a server named Server1. Server1 runs Windows Server 2008 R2. You need to mount an Active Directory Lightweight Directory Services (AD LDS) snapshot from Server1. What should you do?
A. Run ldp.exe and use the Bind option.
B. Run diskpart.exe and use the Attach option.
C. Run dsdbutil.exe and use the snapshot option.
D. Run imagex.exe and specify the /mount parameter.
Answer: C
QUESTION 239
Your network contains an Active Directory domain named contoso.com. The domain contains a server named Server1. The Active Directory Federation Services (AD FS) role is installed on Server1. Contoso.com is defined as an account store. A partner company has a Web-based application that uses AD FS authentication. The partner company plans to provide users from contoso.com access to the Web application. You need to configure AD FS on contoso.com to allow contoso.com users to be authenticated by the partner company. What should you create on Server1?
A. a new application
B. a resource partner
C. an account partner
D. an organization claim
Answer: B
QUESTION 240
Your network contains two servers named Server1 and Server2 that run Windows Server 2008 R2. Server1 has the Active Directory Federation Services (AD FS) Federation Service role service installed. You plan to deploy AD FS 2.0 on Server2. You need to export the token-signing certificate from Server1, and then import the certificate to Server2. Which format should you use to export the certificate?
A. Base-64 encoded X.509 (.cer)
B. Cryptographic Message Syntax Standard PKCS #7 (.p7b)
C. DER encoded binary X.509 (.cer)
D. Personal Information Exchange PKCS #12 (.pfx)
Answer: B
OFFER Microsoft 70-649 PDF and VCE Free Download