★ Pass on Your First TRY ★ 100% Money Back Guarantee ★ Realistic Practice Exam Questions
70-412 Product Description:
Exam Number/Code: 70-412 vce
Exam name: Configuring Advanced Windows Server 2012 Services
n questions with full explanations
Certification: Microsoft Certification
Last updated on Global synchronizing
Question No. 181
Your company has two offices. The offices are located in Seattle and Montreal.?
The network contains an Active Directory domain named contoso.com. The domain contains two DHCP servers named Server1 and Server2. Server1 is located in the Seattle office. Server2 is located in the Montreal office. All servers run Windows Server 2012 R2.?
You need to create a DHCP scope for video conferencing in the Montreal office. The scope must be configured as shown in the following table.?
Which Windows PowerShell cmdlet should you run??
The Add-DhcpServerv4MulticastScope cmdlet adds a multicast scope on the Dynamic Host Configuration Protocol (DHCP) server.?
Note: IPv4 multicast addresses are defined by the leading address bits of 1110, originating from the classful network design of the early Internet when this group of addresses was designated as Class D. The Classless Inter-Domain Routing (CIDR) prefix of this group is 126.96.36.199/4. The group includes the addresses from 188.8.131.52 to 184.108.40.206.?
Question No. 182
Your network contains an Active Directory domain named contoso.com. The domain contains a domain controller named DC2 that runs Windows Server 2012 R2. DC2 has the DHCP Server server role installed.?
DHCP is configured as shown in the exhibit. (Click the Exhibit button.)?
You discover that client computers cannot obtain IPv4 addresses from DC2.?
You need to ensure that the client computers can obtain IPv4 addresses from DC2.?
What should you do??
A. Disable the Deny filters.?
B. Enable the Allow filters.?
C. Authorize DC2.?
D. Restart the DHCP Server service?
From the exhibit we see a red marker on the IPv4 server icon. The DHCP server is not?
Authorize DHCP Server?
The final step is to authorize the server.?
Right-click your FQDN and select Authorize.?
Refresh the view by right-clicking your FQDN and selecting Refresh.?
You should now see green check mark next to IPv4.?
Reference: Server 2012 DHCP Server Role?
Question No. 183
You have 20 servers that run Windows Server 2012 R2.?
You need to create a Windows PowerShell script that registers each server in Windows Azure Backup and sets an encryption passphrase.?
Which two PowerShell cmdlets should you run in the script? (Each correct answer presents part of the solution. Choose two.)?
E. Set OBMachineSetting?
D. Start-OBRegistration Registers the current computer with Windows Azure Online Backup using the credentials (username and password) created during enrollment.?
E. The Set-OBMachineSetting cmdlet sets a OBMachineSetting object for the server that includes proxy server settings for accessing the internet, network bandwidth throttling settings, and the encryption passphrase that is required to decrypt the files during recovery to another server.?
Not C. TheAdd-OBFileSpeccmdlet adds theOBFileSpecobject, which specifies the items to?
include or exclude from a backup, to the backup policy (OBPolicyobject).?
TheOBFileSpecobject can include or exclude multiple files, folders, or volumes. T Reference: Start-OBRegistration; Set OBMachineSetting http://technet.microsoft.com/en-us/library/hh770398.aspx http://technet.microsoft.com/en-us/library/hh770409.aspx?
Question No. 184
You have a server named Server1 that runs Windows Server 2012 R2.?
You start Server1 by using Windows RE.?
You need to repair the Boot Configuration Data (BCD) store on Server1.?
Which tool should you use??
Question No. 185
Your network contains an Active Directory domain named contoso.com. The domain contains a file server named Server1. All servers run Windows Server 2012 R2.?
All domain user accounts have the Division attribute automatically populated as part of the user provisioning process. The Support for Dynamic Access Control and Kerberos armoring policy is enabled for the domain.?
You need to control access to the file shares on Server1 based on the values in the Division attribute and the Division resource property.?
Which three actions should you perform in sequence??
Question No. 186
Your network contains an Active Directory domain named contoso.com.?
You have a Dynamic Access Control policy named Policy1.?
You create a new Central Access Rule named Rule1.?
You need to add Rule1 to Policy1.?
What command should you run??
To answer, select the appropriate options in the answer area.?
Question No. 187
Your network contains one Active Directory forest named contoso.com. The forest contains two child domains and six domain controllers. The domain controllers are configured as shown in the following table.?
You need to prevent administrators from accidentally deleting any of the sites in the forest. What should you use??
Explanation: The Set-ADReplicationSite sets the replication properties for an Active?
Specifies whether to prevent the object from being deleted. When this property is set to?
$True, you cannot delete the corresponding object without changing the value of the?
property. The acceptable values for this parameter are:?
-- $False or 0?
-- $True or 1?
Reference: Technet, Set-ADReplicationSite?
Question No. 188
You deploy an Active Directory Federation Services (AD FS) 2.1 infrastructure. The infrastructure uses Active Directory as the attribute store.?
Some users report that they fail to authenticate to the AD FS infrastructure.?
You discover that only users who run third-party web browsers experience issues.?
You need to ensure that all of the users can authenticate to the AD FS infrastructure successfully.?
Which Windows PowerShell command should you run??
A. Set-ADFSProperties -ProxyTrustTokenLifetime 1:00:00?
B. Set-ADFSProperties -AddProxyAuthenticationRules None?
C. Set-ADFSProperties -SSOLifetime 1:00:00?
D. Set-ADFSProperties -ExtendedProtectionTokenCheck None?
Explanation/Reference: Certain client browser software, such as Firefox, Chrome, and Safari, do not support the Extended Protection for Authentication capabilities that can be used across the Windows platform to protect against man-in-the-middle attacks. To prevent this type of attack from occurring over secure AD FS communications, AD FS 2.0 enforces (by default) that all communications use a channel binding token (CBT) to mitigate against this threat.?
Note: Disable the extended Protection for authentication To disable the Extended Protection for Authentication feature in AD FS 2.0?
. On a federation server, login using the Administrator account, open the Windows PowerShell command prompt, and then type the following command: Set-ADFSProperties