JPR-961 Online Practice Questions and Answers

You are the security administrator for your company. The company's network supports 500 users. All network server computers run Windows Server. All network client computers run Windows XP Professional. All domain account logon

events are audited.

A human resources manager requests that you produce a listing of the times and dates a user named JohnP logged on to the domain. The user was assigned to a client computer named HR09.

You should achieve this objective while reviewing the minimum amount of information. What should you do? (Choose two. Each correct answer presents part of the solution.)

A. Create a filter that will list all events for the JohnP user account.

B. Use the Find option to list only the events for the JohnP user account.

C. Open Event Viewer and access the security log on each domain controller.

D. Use the Find option to list only the events for the HR09 computer account.

E. Create a filter that will list only the events for the HR09 computer account.

F. Log onto HR09 as a local administrator, and open Event Viewer to view the local security log.

You are the DNS administrator for TXGlobal, which is headquartered in Dallas and has branch offices in Austin, Houston, San Antonio and El Paso. The headquarters location hosts the parent domain, txglobal.com. Each branch office has

been delegated a child domain. Austin hosts austin.txglobal.com, Houston hosts houston.txglobal.com, San Antonio hosts sanantonio.txglobal.com, and El Paso hosts elpaso.txglobal.com.

The primary DNS server in Dallas is named TXDNS. The primary DNS servers in the branch offices are named AUSDNS, HOUDNS, SADNS and EPDNS. The secondary DNS servers in the branch offices are named AUSDNS-2, HOUDNS2, SADNS-2, and EPDNS-2.

To increase fault tolerance, you want to add another secondary DNS server in each location. The new DNS servers will be named AUSDNS-3, HOUDNS-3, SADNS-3, and EPDNS-3. You want TXDNS to be aware that the new servers are

authoritative for their respective zones.

Which server or servers should host one or more stub zones?

A. AUSDNS, HOUDNS, SADNS and EPDNS

B. AUSDNS-3, HOUDNS-3, SADNS-3 and EPDNS-3

C. all of the DNS servers within the child domains

D. TXDNS

You work as a Network Administrator for ABC.com. The company has a Windows domainbased network. In order to automate the TCP/IP configuration for the client computers in the network, you install the DHCP Server service on a Windows member server. You want to ensure that all the network printers always use the same IP address. In order to accomplish this, you create IP address reservations for the network printers while creating the DHCP scope. You also define an exclusion range for the printers. Now, none of the printers are receiving the IP addresses. However, the client computers are not experiencing this problem. What will you do to resolve the issue?

A. Remove the exclusion range for the addresses that are being used by the printers.

B. Assign the IP addresses to the printers manually.

C. Run the IPCONFIG /release command-line utility on the printers.

D. Remove the client reservations for the addresses that are being used by the printers.

A beta version of an application you’re testing to send and receive data on your network does not seem to be sending compressed data before sending packets across the network. You’re looking at the architecture of the application to see if you can determine where the problem likely originates. Using the OSI model, from where is the problem probably originating?

A. Transport layer

B. Application layer

C. Presentation layer

D. Physical layer

Your firm is designing a new software driver that will employ a proprietary method of flow control for data being sent across a network medium. On which layer of the OSI model would be this flow control likely be implemented?

A. Application

B. Data Link

C. Transport

D. Media Access Control

You are working as the administrator at ABC.com. Part of you job description includes the deployment of applications on the ABC.com network. To this end you operate by testing new application deployment in a test environment prior to deployment on the production network.

The new application that should be tested requires 2 processors and 3 GB of RAM to run successfully. Further requirements of this application also include shared folders and installation of software on client computers. You install the application on a Windows Server Web Edition computer and install the application on 30 test client computers.

During routine monitoring you discover that only a small amount of client computers are able to connect and run the application. You decide to turn off the computers that are able to make a connection and discover that the computers that failed to open the application can now run the application.

How would you ensure that all client computers can connect to the server and run the application?

A. By running a second instance of the application on the server.

B. By increasing the Request Queue Limit on the Default Application Pool.

C. By modifying the test server operating system to Window Server Standard Edition.

D. By increasing the amount of RAM in the server to 4GB.

You are an Enterprise administrator for ABC.com. All servers on the corporate network run Windows Server and all client computers run Windows XP.

The network contains a server named ABC-SR01 that has Routing and Remote Access service and a modem installed which connects to an external phone line.

A partner company uses a dial-up connection to connect to ABC-SR01 to upload product and inventory information. This connection happens between the hours of 1:00am and 2:00am every morning and uses a domain user account to log on

to ABC-SR01.

You have been asked by the security officer to secure the connection.

How can you ensure that the dial-up connection is initiated only from the partner company and that access is restricted to just ABC-SR01? (Choose three.)

A. Set up the log on hours restriction for the domain user account to restrict the log on to between the hours of 1:00am and 2:00am.

B. Set up a local user account on ABC-SR01. Have the dial-up connection configured to log on with this account.

C. Set up the remote access policy on ABC-SR01 to allow the connection for the specified user account between the hours of 1:00am and 2:00am.

D. Set up the remote access policy with the Verify Caller ID option to only allow calling from the phone number of the partner company modem.

E. Set up the remote access policy to allow access to the domain user account only.

The ABC.com network consists of a single Active Directory domain named ABC.com. All servers on the ABC.com network run Windows Server.

ABC.com contains a Development department. ABC.com contains a domain controller named ABC-SR24 which is also configured as a DNS Server. A ABC.com employee named Clive Wilson works in the Development department. One

morning Clive Wilson complains that he cannot connect to another network server.

During investigation, you notice that nslookup queries sometimes take a long time and sometimes fail altogether.

You suspect that there is a problem with ABC-SR24.

How would you configure monitoring on ABC-SR24 so that you can review individual name resolution queries?

A. Use System Monitor to monitor host resolution queries on ABC-SR24.

B. Use Event Viewer to view the DNS event log on ABC-SR24.

C. Select the Log packets for debugging option on the Debug Logging tab in the DNS server properties on ABC-SR24.

D. Use Network Monitor to capture DNS query packets on ABC-SR24.

All the servers on the network run Windows Server server and all the client computers run Windows XP.

The network contains three domain controllers named ABC-DC1, ABC-DC2 and ABC-DC3. The System State Data of each domain controller is backed up on a nightly basis.

Recently an organizational unit (OU) has been mistakenly deleted from the AD.

What is the quickest way to restore the deleted OU?

A. Reboot the domain controller in Safe Mode then use Windows Backup.

B. Reboot the domain controller in Directory Services Restore Mode then perform an authoritative restore of the subtree where the OU was deleted using the Ntdsutil utility.

C. Reboot the domain controller in Directory Services Restore Mode then perform a non-authoritative restore of the subtree where the OU was deleted using the Ntdsutil utility.

D. Reboot the domain controller using the Last Known Good Configuration.

E. Use Active Directory Sites and Services to force replication from another domain controller.

The ABC.com network consists of a single Active Directory domain named ABC.com. All servers on the ABC.com network run Windows Server and all client computers run Windows XP Professional.

A domain controller named ABC-DC1 is configured as a DNS server. DC1 hosts the DNS zone for the ABC.com internal LAN.

An external DNS server named ABC-DNS1 hosts the DNS zone for the ABC.com external website and is configured with root hints. ABC-DNS1 is outside of the network firewall.

You need to protect the client computers by minimizing the risk of DNS-related attacks from the Internet, without impacting on their access to Internet-based sites.

How should you configure the DNS servers and client computers?

A. DNS forwarding should be configured on ABC-DNS1 for ABC-DC1 and client computers must be configured to use ABC-DC1.

B. The firewall should be configured to block all DNS traffic.

C. DNS forwarding should be configured on ABC-DC1 for ABC-DNS1 and client computers must be configured to use ABC-DNS1.

D. A root zone should be added to ABC-DC1 and client computers must be configured to use ABC-DC1.