Introducing The New!
Surepassexam Collection
Get Unlimited Access to all
Surepassexam's PREMIUM files
Q1. Your company has client computers that run Windows Vista and client computers that run Windows 7. The client computers connect directly to the Microsoft Update Web site once per week and automatically install all available security updates.
Microsoft releases a security update for Windows 7.
You have the following requirements:
. Create a report of all Windows 7 computers that are currently connected to the network and that do not have the security update installed.
. Use the least amount of administrative effort.
You need to manage the software update process to meet the requirements.
What should you do?
A. Deploy Microsoft Windows Server Update Services (WSUS). Approve the security update for installation, and force a detection cycle on the client computers.
B. Deploy Microsoft Windows Server Update Services (WSUS). Approve the security update for detection, and force a detection cycle on the client computers.
C. Use the Microsoft Baseline Configuration Analyzer (MBCA) to scan the client computers.
D. Use the Microsoft Baseline Security Analyzer (MBSA) to scan the client computers. Configure MBSA to use the Microsoft Update site catalog.
Answer: D
Explanation:
Microsoft Baseline Security Analyzer Microsoft Baseline Security Analyzer (MBSA) is an easy-to-use tool designed for the IT professional that helps small- and medium-sized businesses determine their security state in accordance with Microsoft security recommendations and offers specific remediation guidance. Improve your security management process by using MBSA to detect common security misconfigurations and missing security updates on your computer systems.
http://technet.microsoft.com/en-us/security/cc184924
Q2. Users with newly deployed Windows 7 computers see a security prompt when they attempt to upload documents to the company's intranet site.
You need to suppress the prompt without creating a security risk for the company.
What should you do? (Choose all that apply).
A. Modify the GPO to set https://intranet.company.com with a value of 1 in the Site to Zone Assignment List.
B. Modify the default Windows 7 image to add the Internet Explorer Enhanced Security Configuration component.
C. Modify the default Windows 7 image to change the default Internet Explorer security level to Medium Low.
D. Modify the default Windows 7 image to disable the Internet Explorer Automatically Detect Intranet Network setting.
E. Create a GPO and link it to the root of the domain.
F. Modify the GPO to set the web server's NEtBIOS name with a value of 2 in the Site to Zone Assignment List.
Answer: A,F
Q3. DRAG DROP
You are designing a Windows 7 image creation strategy for a multilingual deployment. You currently have an English language image of Windows 7.
The deployment must meet the following requirements:
. The image must include the German, French, and English languages.
. Users must be able to change the display languages.
You need to recommend an action plan that meets the deployment requirements.
Which two actions should be performed in sequence? (To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.)
Answer:
Q4. Your company has a single Active Directory Domain Services (AD DS) domain and 1,000 client computers.
You are planning to deploy Windows 7 by using a zero-touch installation process.
You need to test the deployment methodology.
What should you do first?
A. Create a computer collection with test computers as members.
B. Create a security group with test computers as members.
C. Create an organizational unit and move test computer accounts into it.
D. Create a distribution group with test computers as members.
Answer: A
Q5. You are planning a zero-touch deployment of Windows 7 Enterprise to client computers on your corporate network.
Each client computer has three available boot methods:
boot from the network by using PXE
boot from USB media
boot from the local hard disk
You have the following requirements:
Set the boot method for a zero-touch deployment.
Ensure that client computers that fail on deployment can be manually configured.
You need to design a zero-touch deployment strategy that supports the requirements.
What should you do?
A. Remove USB media and local hard disk from the available boot methods
B. Remove USB media and network from the available boot methods
C. Set network as the first boot method, USB media as the second boot method, and local hard disk as the third boot method
D. Set USB media as the first boot method and local hard disk as the second boot method. Remove network from the available boot methods
Answer: C
Explanation:
hints: zero-touch deployment of Windows 7 Enterprise to client computers on your corporate network so, set network as 1st boot.
Q6. our company has an Active Directory Domain Services (AD DS) forest with a single domain. The domain, organizational unit (OU), and Group Policy object (GPO) design is shown in the following diagram.
You deploy a Microsoft Windows Server Update Services (WSUS) server.
You need to ensure that only client computers that are members of the NY Computers OU use the WSUS server for updates.
Where should you define Windows Update settings?
A. in the User Configuration settings of the New York Computers GPO
B. in the Computer Configuration settings of the New York Baseline GPO
C. in the User Configuration settings of the New York Baseline GPO
D. in the Computer Configuration settings of the New York Computers GPO
Answer: D
Explanation:
To specify how and when computers are updated through Group Policy In Group Policy Object Editor, expand Computer Configuration, expand Administrative Templates, expand Windows Components, and then click Windows Update. In the details pane of Group Policy Object Editor, configure the appropriate policies. See the following table for examples of the policies you might want to set.. refer to http://technet.microsoft.com/en-us/library/cc708536(v=WS.10).aspx
Q7. Your companys network has client computers that run Windows 7.
A software vendor releases version 2 of an application that your company uses. Your company currently uses version 1. Version 1 and version 2 are not compatible.
You plan to deploy version 2 of the application. You have the following requirements:
. Users must be able to run both versions of the application on their computers.
. Version 2 must be available when a client computer is not connected to the network.
You need to plan a software deployment process that meets the requirements. What should you do? (Choose all that apply.)
A. Deploy version 2 of the application by using Microsoft Application Virtualization (App-V).
B. Deploy version 2 of the application by using Microsoft Enterprise Desktop (MED-V).
C. Deploy version 2 of the application as a Remote Desktop Services RemoteApp.
D. Deploy version 2 of the application by using a Microsoft System Center Configuration Manager package.
Answer: A,B
Explanation:
Microsoft Application Virtualization (MS App-V) platform allows applications to be deployed in real-time to any client from a virtual application server. It removes the need for local installation of the applications. Instead, only the App-v client needs to be installed on the client machines. All application data is permanently stored on the virtual application server. Whichever software is needed is either streamed or locally cached from the application server on demand and run locally. The App-V stack sandboxes the execution environment so that the application does not make changes to the client itself (OS File System and/or Registry). App-V applications are also sandboxed from each other, so that different versions of the same application can be run under App-V concurrently. http://en.wikipedia.org/wiki/Microsoft_App-V
Q8. Your network has client computers that run Windows XP. Users do not have administrative rights to their local computers. You use Windows Server Update Services (WSUS) to manage software updates.
You are planning to deploy Windows 7. Your company uses a custom application that is not compatible with Windows 7.
You need to ensure that all users are able to run the custom application.
What are two possible ways to achieve this goal? (Each correct answer presents a complete solution. Choose two.)
A. Install and register a shim on the WSUS server.
B. Install and register a shim on the client computers by using Group Policy.
C. Deploy and register the compatibility-fix database file to the client computers by using a computer startup script.
D. Deploy and register the compatibility-fix database file to the client computers by using a user startup script.
Answer: B,C
Q9. Your network has client computers that run Windows Vista.
. You are planning to deploy Windows 7.
. You need to detect and analyze the compatibility of an application that requires elevated privileges.
What should you do?
A. Use the Standard User Analyzer (SUA) Wizard.
B. Run a virtual version of the Setup Analysis Tool (SAT).
C. Use the Standard User Analyzer (SUA) tool.
D. Run a stand-alone version of the Setup Analysis Tool (SAT).
Answer: C
Explanation:
The Standard User Analyzer (SUA) tool enables you to test your applications to detect potential compatibility issues due to the User Account Control (UAC) feature.
http://technet.microsoft.com/en-us/library/cc765948(v=ws.10).aspx
Q10. Your company has more than 1,000 client computers. You deploy Windows 7 by using six different images.
A driver that is included in the images needs to be replaced. You have the following requirements:
. Update the Windows 7 images with the new driver.
. Ensure that the old driver is no longer available.
You need to define an image-update strategy that meets the requirements.
What are two possible ways to achieve this goal? (Each correct answer presents a complete solution. Choose two.)
A. Deploy each image to a reference computer, and then uninstall the old driver and install the new driver. Capture the new image.
B. Mount each image by using ImageX, and then install the new driver.
C. Mount each image by using the Deployment Image Servicing and Management (DISM) tool, and then delete the old driver and inject the new driver.
D. Mount each image by using the Deployment Image Servicing and Management (DISM) tool, and then copy the new driver into a new folder in the image.
Answer: A,C
Explanation:
hints:
Question request add new drive and remove old driver.
Q11. You are replacing the desktop computers in the Chicago office.
You need to automate the migration of user profile data to the new computers.
What should you recommend? (Choose all that apply.)
A. state migration point
B. Windows Client Operating System Management Pack
C. Background Intelligent Transfer Server
D. Windows Easy Transfer
E. ConfigMgr custom task sequence
Answer: A,E
Q12. You deploy Windows 7 and several custom Internet Explorer add-ons to 1,000 client computers. Internet Explorer closes when users run a specific Web application. You need to find out whether an add-on is the cause of the problem. What should you do?
A. Use Group Policy to disable the Programs tab in Internet Explorer for all client computers.
B. Use Group Policy to turn on Internet Explorer 7 Standards mode.
C. Start Internet Explorer in No Add-ons mode.
D. Reset all Internet Explorer security zones to the default levels.
Answer: C
Q13. You use Microsoft Application Compatibility Manager to produce a report that lists a company's applications and their compatibility status with Windows 7.
You need to add your ratings of the compatibility of the applications to the report.
Which Microsoft Application Compatibility Manager action should you select? To answer, select the appropriate setting or settings in the work area.
Answer:
Q14. Your network has a single domain with 1,000 client computers that run Windows 7. You use Microsoft System Center Configuration Manager 2007 to distribute and install software applications. All users have standard user accounts.
You plan to use Group Policy to ensure that application installation functions properly.
You need to design the User Account Control (UAC) policy.
What should you do?
A. Configure the User Account Control: Behavior of the elevation prompt for standard users setting to be Prompt for credentials.
B. Configure the User Account Control: Only elevate executables that are signed and validated setting to be Enabled.
C. Configure the User Account Control: Detect application installations and prompt for elevation setting to be Disabled.
D. Configure the User Account Control: Detect application installations and prompt for elevation setting to be Enabled.
Answer: C
Explanation:
User Account Control: Detect application installations and prompt for elevation The User Account Control: Detect application installations and prompt for elevation policy setting controls the behavior of application installation detection for the computer.
The options are:
Enabled. (Default for home) When an application installation package is detected that requires elevation of privilege, the user is prompted to enter an administrative user name and password. If the user enters valid credentials, the operation continues with the applicable privilege.
Disabled. (Default for enterprise) Application installation packages are not detected and prompted for elevation. Enterprises that are running standard user desktops and use delegated installation technologies such as Group Policy Software Installation or Systems Management Server (SMS) should disable this policy setting. In this case, installer detection is unnecessary.
http://technet.microsoft.com/en-us/library/dd851376.aspx
Q15. You create and test a Windows 7 image that supports all existing client computer hardware in the company. User settings must be preserved during migrations to Windows 7. You need to deploy the new image to all office locations by using the Zero Touch Installation methodology. What should you recommend? (Choose all that apply.)
A. Enable a DHCP helper address on the routers for each remote office.
B. Enable network boot functionality on all client computers at the remote locations.
C. Deploy and configure Microsoft System Center Configuration Manager (ConfigMgr).
D. Deploy and configure Microsoft System Center Operations Manager (OppMgr).
E. Create a task sequence that enables local administrators to select their local office.
F. Create a User State Migration Tool configuration file and include it in the deployment.
Answer: B,C,F