Ensurepass

QUESTION 56
Your company has a main office.
The network contains an Active Directory domain named contoso.com.
The main office contains a server named Server1 that runs Windows Server 2012.
Server1 has the Remote Access server role installed and is configured to accept incoming SSTP-based
VPN connections.
All client computers run Windows 7.
The company plans to open a temporary office that will contain a server named Server2 that runs Windows
Server 2012 and has the DHCP Server server role installed.
The office will also have 50 client computers and an Internet connection.
You need to recommend a solution to provide the users in the temporary office with access to the resources in the main office.
What should you recommend?
More than one answer choice may achieve the goal. Select the BEST answer.
A. Use the Connection Manager Administration Kit (CMAK) to create a connection package that specifies
Server1 as the target for SSTP-based VPN connections.
Manually distribute the CMAK package to each client computer in the temporary office.
B. Install the Remote Access server role on Server2. From Routing and Remote Access on Server2, add a SSTP-based VPN port.
From DHCP on Server2, configure the default gateway server option.
C. Uses the Connection Manager Administration Kit (CMAK) to create a connection package that specifies
Server1 as the target for SSTP-based VPN connections.
Use a Group Policy object (GPO) to distribute the CMAK package to each client computer in the temporary office.
D. Install the Remote Access server role on Server2. From Routing and Remote Access on Server2, configure a demand-dial interface.
From DHCP on Server2, configure the default gateway server option.
Correct Answer: D

QUESTION 57
Your network contains an Active Directory domain named contoso.com.
The domain contains servers that run either Windows Server 2008 R2 or Windows Server 2012.
All client computers on the internal network are joined to the domain.
Some users establish VPN connections to the network by using Windows computers that do not belong to the domain.
All client computers receive IP addresses by using DHCP.
You need to recommend a Network Access Protection (NAP) enforcement method to meet the following requirements:
– Verify whether the client computers have up-to-date antivirus software.
– Provides a warning to users who have virus definitions that are out-of-date.
– Ensure that client computers that have out-of-date virus definitions can connect to the network.
Which NAP enforcement method should you recommend?
A. VPN
B. DHCP
C. IPsec
D. 802.1x
Correct Answer: B

QUESTION 58
Your network contains multiple servers that run Windows Server 2012. All client computers run Windows 8.
You need to recommend a centralized solution to download the latest antivirus definitions for Windows
Defender.
What should you include in the recommendation?
A. Microsoft System Center 2012 Endpoint Protection
B. Network Access Protection (NAP)
C. Microsoft System Center Essentials
D. Windows Server Update Services (WSUS)
Correct Answer: D

QUESTION 59
Your network contains an Active Directory domain named contoso.com. The domain contains three VLANs.
The VLANs are configured as shown in the following table.
All client computers run either Windows 7 or Windows 8.
The corporate security policy states that all of the client computers must have the latest security updates installed.
You need to implement a solution to ensure that only the client computers that have all of the required security updates installed can connect to VLAN 1.
The solution must ensure that all other client computers connect to VLAN 3.
Which Network Access Protection (NAP) enforcement method should you implement?
A. VPN
B. DHCP
C. IPsec
D. 802.1x
Correct Answer: D

QUESTION 60
Your company has a main office and a branch office.
The network contains an Active Directory domain named contoso.com. The domain contains three domain controllers.
The domain controllers are configured as shown in the following table.
The domain contains two global groups.
The groups are configured as shown in the following table.
You need to ensure that the RODC is configured to meet the following requirements:
– Cache passwords for all of the members of Branch1Users.
– Prevent the caching of passwords for the members of Helpdesk.
What should you do?
A. Create a Password Settings object (PSO) for the Helpdesk group.
B. Install the BranchCache feature on RODC1.
C. Modify the password replication policy of RODC1.
D. Modify the delegation settings of RODC1.
Correct Answer: C

Download the Ensurepass Latest 2013 70-413 Pass4Sure Free Tests to pass 70-413 Exam.

Comments are closed.