Far out Microsoft 70-412 braindumps

70-412 Dumps

70-412 Exam Questions - Online Test

70-412 Premium VCE File

Learn More 100% Pass Guarantee - Dumps Verified - Instant Download
150 Lectures, 20 Hours

It is more faster and easier to pass the Microsoft exam 70 412 exam by using Approved Microsoft Configuring Advanced Windows Server 2012 Services questuins and answers. Immediate access to the Leading 70 412 exam Exam and find the same core area examcollection 70 412 questions with professionally verified answers, then PASS your exam with a high score now.

Q1. Your company has a main office and a remote office. The remote office is used for disaster recovery.

The network contains an Active Directory domain named contoso.com. The domain contains member servers named Server1, Server2, Server3, and Server4. All servers run Windows Server 2012 R2.

Server1 and Server2 are located in the main office. Server3 and Server4 are located in the remote office.

All servers have the Failover Clustering feature installed. The servers are configured as nodes in a failover cluster named Cluster1. Storage is replicated between the main office and the remote site.

You need to ensure that Cluster1 is available if two nodes in the same office fail.

What are two possible quorum configurations that achieve the goal? (Each correct answer presents a complete solution. Choose two.)

A. No Majority: Disk Only

B. Node Majority

C. Node and File Share Majority

D. Node and Disk Majority

Answer: A,B

Explanation:

Depending on the quorum configuration option that you choose and your specific settings, the cluster will be configured in one of the following quorum modes:

* (A) No majority (disk witness only)

* (B) Node majority (no witness)

* Node majority with witness (disk or file share)

Reference: Configure and Manage the Quorum in a Windows Server 2012 R2 Failover Cluster

Q2. Your network contains two servers named Server1 and Server2 that run Windows Server 2012 R2.

Both servers have the Hyper-V server role installed. Server1 and Server2 are located in different offices. The offices connect to each other by using a high-latency WAN link.

Server2 hosts a virtual machine named VM1.

You need to ensure that you can start VM1 on Server1 if Server2 fails. The solution must minimize hardware costs.

What should you do?

A. On Server1, install the Multipath I/O (MPIO) feature. Modify the storage location of the VHDs for VM1.

B. From the Hyper-V Settings of Server2, modify the Replication Configuration settings. Enable replication for VM1.

C. On Server2, install the Multipath I/O (MPIO) feature. Modify the storage location of the VHDs for VM1.

D. From the Hyper-V Settings of Server1, modify the Replication Configuration settings. Enable replication for VM1.

Answer: D

Explanation:

You first have to enable replication on the Replica server--Server1--by going to the server and modifying the "Replication Configuration" settings under Hyper-V settings. You then go to VM1--which presides on Server2-- and run the "Enable Replication" wizard on VM1.

Q3. Your network contains an Active Directory forest named contoso.com. The forest contains a single domain. The forest contains three Active Directory sites named SiteA, SiteB, and SiteC. The sites contain four domain controllers. The domain controllers are configured as shown in the following table.

An IP site link exits between each site.

You discover that the users in SiteC are authenticated by the domain controllers in SiteA and SiteB.

You need to ensure that the SiteC users are authenticated by the domain controllers in SiteB, unless all of the domain controllers in SiteB are unavailable.

What should you do?

A. Create an SMTP site link between SiteB and SiteC.

B. Crate additional connection objects for DC1 and DC2.

C. Decrease the cost of the site link between SiteB and SiteC.

D. Create additional connection objects for DC3 and DC4.

Answer: C

Explanation:

By decreasing the site link cost between SiteB and SiteC the SiteC users would be authenticated by SiteB rather than by SiteA.

Q4. Your network contains one Active Directory forest named contoso.com. The forest contains two child domains and six domain controllers. The domain controllers are configured as shown in the following table.

For the contoso.com domain, a company policy states that administrators must be able to retrieve a list of all the users who have not logged on to the network in the last seven days from any domain controller.

You need to ensure that the users’ last logon information from the last seven days is replicated to all of the domain controllers.

What should you use?

A. Set-ADSite

B. Set-ADReplicationSite

C. Set-ADDomain

D. Set-ADReplicationSiteLink

E. Set-ADGroup

F. Set-ADForest

G. Netdom

Answer: C

Reference: Technet, Set-ADDomain

https://technet.microsoft.com/en-us/library/ee617212.aspx

Q5. Your network contains a perimeter network and an internal network. The internal network contains an Active Directory Federation Services (AD FS) 2.1 infrastructure. The infrastructure uses Active Directory as the attribute store.

You plan to deploy a federation server proxy to a server named Server2 in the perimeter network.

You need to identify which value must be included in the certificate that is deployed to Server2.

What should you identify?

A. The FQDN of the AD FS server

B. The name of the Federation Service

C. The name of the Active Directory domain

D. The public IP address of Server2

Answer: A

Explanation:

To add a host (A) record to corporate DNS for a federation server On a DNS server for the corporate network, open the DNS snap-in.

1. In the console tree, right-click the applicable forward lookup zone, and then click New Host (A).

2. In Name, type only the computer name of the federation server or federation server cluster (for example, type fs for the fully qualified domain name (FQDN) fs.adatum.com).

3. In IP address, type the IP address for the federation server or federation server cluster (for example, 192.168.1.4).

4. Click Add Host.

Reference: Add a host (A) record to corporate DNS for a federation server

http://technet.microsoft.com/en-us/library/cc776786(v=ws.10).aspx

Q6. Your network contains an Active Directory domain named contoso.com.

A previous administrator implemented a Proof of Concept installation of Active Directory Rights Management Services (AD RMS) on a server named Server1.

After the proof of concept was complete, the Active Directory Rights Management Services server role was removed.

You attempt to deploy AD RMS.

During the configuration of AD RMS, you receive an error message indicating that an existing AD RMS Service Connection Point (SCP) was found.

You need to ensure that clients will only attempt to establish connections to the new AD RMS deployment.

Which should you do?

A. From DNS, remove the records for Server1.

B. From DNS, increase the priority of the DNS records for the new deployment of AD RMS.

C. From Active Directory, remove the computer object for Server1.

D. From Active Directory, remove the SCP.

Answer: D

Explanation: The Active Directory Rights Management Services (AD RMS) Service Connection Point (SCP) is an object in Active Directory that holds the web address of the AD RMS certification cluster. AD RMS-enabled applications use the SCP to discover the AD RMS service; it is the first connection point for users to discover the AD RMS web services.

Only one SCP can exist in your Active Directory forest. If you try to install AD RMS and an SCP already exists in your forest from a previous AD RMS installation that was not properly deprovisioned, the new SCP will not install properly. It must be removed before you can establish the new SCP.

Reference: The AD RMS Service Connection Point

http://social.technet.microsoft.com/wiki/contents/articles/710.the-ad-rms-service-connection-point.aspx

Q7. Your network contains an Active Directory domain named contoso.com. The domain contains a file server named Server1. The File Server Resource Manager role service is installed on Server1. All servers run Windows Server 2012 R2.

A Group Policy object (GPO) named GPO1 is linked to the organizational unit (OU) that contains Server1. The following graphic shows the configured settings in GPO1.

Server1 contains a folder named Folder1. Folder1 is shared as Share1.

You attempt to configure access-denied assistance on Server1, but the Enable access-denied assistance option cannot be selected from File Server Resource Manager.

You need to ensure that you can configure access-denied assistance on Server1 manually by using File Server Resource Manager.

Which two actions should you perform?

A. Set the Enable access-denied assistance on client for all file types policy setting to Disabled for GPO1.

B. Set the Customize message for Access Denied errors policy setting to Not Configured for GPO1.

C. Set the Enable access-denied assistance on client for all file types policy setting to Enabled for GPO1.

D. Set the Customize message for Access Denied errors policy setting to Enabled for GPO1.

Answer: C,D

Explanation:

C. To configure access-denied assistance for all file types by using Group Policy . Open Group Policy Management. In Server Manager, click Tools, and then click

Group Policy Management. . Right-click the appropriate Group Policy, and then click Edit. . Click Computer Configuration, click Policies, click Administrative Templates, click

System, and then click Access-Denied Assistance.

Right-click Enable access-denied assistance on client for all file types, and then

click Edit.

Click Enabled, and then click OK.

D. To configure access-denied assistance by using Group Policy (see step 5)

Open Group Policy Management. In Server Manager, click Tools, and then click

Group Policy Management.

Right-click the appropriate Group Policy, and then click Edit.

Click Computer Configuration, click Policies, click Administrative Templates, click

System, and then click Access-Denied Assistance.

Right-click Customize message for Access Denied errors, and then click Edit.

Select the Enabled option.

Etc Reference: Deploy Access-Denied Assistance (Demonstration Steps) http://technet.microsoft.com/en-us/library/hh831402.aspx

Q8. HOTSPOT

Your network contains two application servers that run Windows Server 2012 R2. The application servers have the Network Load Balancing (NLB) feature installed.

You create an NLB cluster that contains the two servers.

You plan to deploy an application named App1 to the nodes in the cluster. App1 uses TCP port 8080 and TCP port 8081.

Clients will connect to App1 by using HTTP and HTTPS via a single reverse proxy. App1 does not use session state information.

You need to configure a port rule for Appl. The solution must ensure that connections to App1 are distributed evenly between the nodes.

Which port rule should you use?

To answer, select the appropriate rule in the answer area.

Answer:

Q9. Your network contains an Active Directory domain named contoso.com. The domain contains four servers named Server1, Server2, Server3, and Server4 that run Windows Server 2012 R2. All servers have the Hyper-V server role and the Failover Clustering feature installed.

You need to replicate virtual machines from Cluster1 to Cluster2.

Which three actions should you perform? (Each correct answer presents part of the solution. Choose three.)

A. From Hyper-V Manager on a node in Cluster2, create three virtual machines.

B. From Cluster2, add and configure the Hyper-V Replica Broker role.

C. From Failover Cluster Manager on Cluster1, configure each virtual machine for replication.

D. From Cluster1, add and configure the Hyper-V Replica Broker role.

E. From Hyper-V Manager on a node in Cluster2 modify the Hyper-V settings.

Answer: C,D,E

Explanation:

D. You must configure the Hyper-V Replica Broker for cluster1.

E. We must configure configure the Replica server to receive replication from primary servers: In Hyper-V Manager, click Hyper-V Settings in the Actions pane.

In the Hyper-V Settings dialog, click Replication Configuration.

In the Details pane, select Enable this computer as a Replica server.

C. Enable virtual machine replication.

Once the hosting server is configured for Replica, you can enable replication for each

virtual machine that you want to be replicated.

Reference: Deploy Hyper-V Replica

https://technet.microsoft.com/en-us/library/jj134207.aspx

Q10. You have an Active Directory Rights Management Services (AD RMS) cluster.

You need to prevent users from encrypting new content. The solution must ensure that the users can continue to decrypt content that was encrypted already.

Which two actions should you perform? (Each correct answer presents part of the solution. Choose two.)

A. From the Active Directory Rights Management Services console, enable decommissioning.

B. From the Active Directory Rights Management Services console, create a user exclusion policy.

C. Modify the NTFS permissions of %systemdrive%\inetpub\wwwroot\_wmcs\licensing.

D. Modify the NTFS permissions of %systemdrive%\inetpub\wwwroot\_wmcs\decommission.

E. From the Active Directory Rights Management Services console, modify the rights policy templates.

Answer: A,D

Explanation:

* Decommissioning refers to the entire process of removing the AD RMS cluster and its

associated databases from an organization. This process allows you to save rights-

protected files as ordinary files before you remove AD RMS from your infrastructure so that

you do not lose access to these files.

Decommissioning an AD RMS cluster is achieved by doing the following:

/ Enable the decommissioning service. (A)

/ Modify permissions on the decommissioning pipeline.

/ Configure the AD RMS-enabled application to use the decommissioning pipeline.

* To modify the permissions on the decommissioning pipeline

1. Log on to ADRMS-SRV as cpandl\administrator.

2. Click Start, type %systemdrive%\inetpub\wwwroot\_wmcs in the Start Search box, and

then press ENTER.

3. Right-click the decommission folder, and then click Properties.

4. Click the Security tab, click Edit, and then click Add. (D)

Etc.

Reference: Step 1: Decommission AD RMS Root Cluster