70-410 Exam
A Review Of Highest Quality 70-410 lab
Approved of 70-410 free question materials and cram for Microsoft certification for consumer, Real Success Guaranteed with Updated 70-410 pdf dumps vce Materials. 100% PASS Installing and Configuring Windows Server 2012 exam Today!
2021 Mar 70-410 test questions
Q261. - (Topic 2)
Your network contains an Active Directory domain named contoso.com. The domain contains two servers named Server1 and Server2 that run Windows Server 2012 R2.
Server2 establishes an IPSec connection to Server1.
You need to view which authentication method was used to establish the initial IPSec connection.
What should you do?
A. From Windows Firewall with Advanced Security, view the quick mode security association.
B. From Event Viewer, search the Application Log for events that have an ID of 1704.
C. From Event Viewer, search the Security Log for events that have an ID of 4672.
D. From Windows Firewall with Advanced Security, view the main mode security association.
Answer: D
Explanation:
Main mode negotiation establishes a secure channel between two computers by determining a set of cryptographic protection suites, exchanging keying material to establish a shared secret key, and authenticating computer and user identities. A security association (SA) is the information maintained about that secure channel on the local computer so that it can use the information for future network traffic to the remote computer. You can monitor main mode SAs for information like which peers are currently connected to this computer and which protection suite was used to form the SA. To get to this view In the Windows Firewall with Advanced Security MMC snap-in, expand Monitoring, expand Security Associations, and then click Main Mode. The following information is available in the table view of all main mode SAs. To see the information for a single main mode SA, double-click the SA in the list. Main mode SA information You can add, remove, reorder, and sort by these columns in the Results pane: Local Address: The local computer IP address. Remote Address: The remote computer or peer IP address. 1st Authentication Method: The authentication method used to create the SA. 1st Authentication Local ID: The authenticated identity of the local computer used in first authentication. 1st Authentication Remote ID: The authenticated identity of the remote computer used in first authentication.
2nd Authentication Method: The authentication method used in the SA.
2nd Authentication Local ID: The authenticated identity of the local computer used in
second authentication.
2nd Authentication Remote ID: The authenticated identity of the remote computer used in
second authentication.
Encryption: The encryption method used by the SA to secure quick mode key exchanges.
Integrity: The data integrity method used by the SA to secure quick mode key exchanges.
Key Exchange: The Diffie-Hellman group used to create the main mode SA.
: http://technet.microsoft.com/en-us/library/dd448497(v=ws.10).aspx
Q262. - (Topic 2)
Your network contains an Active Directory domain named contoso.com. The domain contains a domain controller named DC1 that runs Windows Server 2012 R2.
A user named User1 attempts to log on to DC1, but receives the error message shown in the exhibit. (Click the Exhibit button.)
You need to ensure that User1 can log on to DC1. What should you do?
A. Add User1 to the Remote Management Users group.
B. Grant User1 the Allow log on locally user right.
C. Modify the Logon Workstations setting of the User1 account.
D. Modify the Account is sensitive and cannot be delegated setting of the User1 account.
Answer: B
Explanation:
Domain controllers, by default, restrict the types of user accounts that have the ability to log on locally.
References: Exam Ref 70-410: Installing and Configuring Windows Server 2012 R2, Chapter 6: Create and Manage Group Policy, Objective 6.2: Configure Security Policies, p. 321 Exam Ref 70-410: Installing and Configuring Windows Server 2012 R2, Chapter 2: Configure server roles and features, Objective 2.3: Configure servers for remote management, p. 114
http://technet.microsoft.com/en-us/library/ee957044(v=ws.10).aspx
Q263. HOTSPOT - (Topic 3)
Your network contains an Active Directory domain named fabrikam.com. You implement DirectAccess and an IKEv2 VPN.
You need to view the properties of the VPN connection.
Which connection properties should you view? To answer, select the appropriate connection properties in the answer area.
Answer:
Q264. HOTSPOT - (Topic 3)
You have three servers named Server1, Server2, and DC1 that run Windows Server 2012
R2. IPv6 addresses and configurations are assigned to all of the servers by using DHCPv6.
The IPv6 routing on Server1 is shown in the following table.
You verify that Server2 can ping the IPv6 address of DC1.
You need to ensure that Server1 can ping the IPv6 address of DC1.
What command should you run on Server1? (To answer, select the appropriate options in
the answer area.)
Answer:
Q265. HOTSPOT - (Topic 2)
Your network contains an Active Directory domain named contoso.com. The network contains a DHCP server named DHCP1.
You add a new network segment to the network.
On the new network segment, you deploy a new server named Server1 that runs Windows
Server 2012 R2.
You need to configure Server1 as a DHCP Relay Agent.
Which server role should you install on Server1?
To answer, select the appropriate role in the answer area.
Answer:
Far out 70-410 rapidshare:
Q266. - (Topic 3)
You work as an administrator at Contoso.com. The Contoso.com network consists of a single domain named Contoso.com.
Contoso.com has a Windows Server 2012 R2 domain controller, named ENSUREPASS-DC01, which has the Domain Naming master and the Schema master roles installed. Contoso.com also has a Windows Server 2008 R2 domain controller, named ENSUREPASS-DC02, which has the PDC Emulator, RID master, and Infrastructure master roles installed.
You have deployed a new Windows Server 2012 server, which belongs to a workgroup, in Contoso.com’s perimeter network.
You then executed the djoin.exe command.
Which of the following is the purpose of the djoin.exe command?
A. It sets up a computer account in a domain and requests an offline domain join when a computer restarts.
B. It sets up a user account in a domain and requests an online domain join when a computer restarts.
C. It sets up a computer account in a domain and requests an offline domain join immediately.
D. It sets up a computer account in a domain and requests an online domain join immediately.
Answer: A
Q267. HOTSPOT - (Topic 3)
You have a DNS server named Server1. Server1 runs Windows Server 2012 R2. The network ID is 10.1.1.0/24. An administrator creates several reverse lookup zones. You need to identify which reverse lookup zone is configured correctly. Which zone should you identify? To answer, select the appropriate zone in the answer area.
Answer:
Q268. - (Topic 3)
Your network contains an Active Directory domain named contoso.com. The domain contains a server named Server1. Server1 runs Windows Server 2012 R2 and has the Hyper-V server role installed.
On Server1, an administrator creates a virtual machine named VM1.
A user named User1 is the member of the local Administrators group on Server1.
User1 attempts to modify the settings of VM1 as shown in the following exhibit. (Click the
Exhibit button.)
You need to ensure that User1 can modify the settings of VM1 by running the Set-Vm cmdlet.
What should you instruct User1 to do?
A. Import the Hyper-V module.
B. Install the Integration Services on VM1.
C. Run Windows PowerShell with elevated privileges.
D. Modify the membership of the local Hyper-V Administrators group.
Answer: C
Explanation:
You can only use the PowerShell snap-in to modify the VM settings with the vm cmdlets
when you are an Administrator.
Thus best practices dictate that User1 run the PowerShell with elevated privileges.
Reference: http://technet.microsoft.com/en-us/library/jj713439.aspx
Q269. - (Topic 2)
Your network contains an Active Directory domain named contoso.com. The domain contains a server named Server1. Server1 runs Windows Server 2012 R2.
You need to create a 3-TB virtual hard disk (VHD) on Server1.
Which tool should you use?
A. Computer Management
B. Server Manager
C. Share and Storage Management
D. New-VirtualDisk
Answer: A
Explanation:
For other questions to create a VHD (file) you can use computer management.
-Share and storage management (2008 only)
-New-storagesubsystemVirtualDisk (this is a virtual disk, NOT a virtual hard disk)
-Server Manager (you would use this to create virtual disks, not virtual hard disks)
Q270. - (Topic 3)
How can you manage a newly installed Windows Server 2012 R2 core from a another Windows Server 2012 R2 with computer manager?
Exhibit:
A. 1
B. 2
C. 4
D. 8
Answer: A