READ Free Dumps For Microsoft- 70-411
| Question ID 14125 | Your network contains an Active Directory forest. The forest contains two domains named
contoso.com and fabrikam.com. All of the DNS servers in both of the domains run
Windows Server 2012 R2.
The network contains two servers named Server1 and Server2. Server1 hosts an Active
Directory-integrated zone for contoso.com. Server2 hosts an Active Directory-integrated
zone for fabrikam.com. Server1 and Server2 connect to each other by using a WAN link.
Client computers that connect to Server1 for name resolution cannot resolve names in
fabrikam.com.
You need to configure Server1 to resolve names in fabrikam.com. The solution must NOT
require that changes be made to the fabrikam.com zone on Server2.
What should you create?
|
| Option A | A trust anchor
|
| Option B | A stub zone
|
| Option C | A zone delegation
|
| Option D | A secondary zone
|
| Correct Answer | B |
Explanation Explanation: A stub zone is a copy of a zone that contains only those resource records necessary to identify the authoritative Domain Name System (DNS) servers for that zone. A stub zone is used to resolve names between separate DNS namespaces. This type of resolution may be necessary when a corporate merger requires that the DNS servers for two separate DNS namespaces resolve names for clients in both namespaces.
| Question ID 14126 | Your network contains an Active Directory domain named contoso.com. Domain controllers
run either Windows Server 2008, Windows Server 2008 R2, or Windows Server 2012 R2.
You have a Password Settings object (PSOs) named PSO1.
You need to view the settings of PSO1.
Which tool should you use?
|
| Option A | Get-ADDefaultDomainPasswordPolicy
|
| Option B | Active Directory Administrative Center
|
| Option C | Local Security Policy
|
| Option D | Get-ADAccountResultantPasswordReplicationPolicy
|
| Correct Answer | B |
Explanation Explanation: In Windows Server 2012, fine-grained password policy management is made much easier than Windows Server 2008/2008 R2. Windows Administrators not have to use ADSI Edit and configure complicated settings to create the Password Settings Object (PSO) in the Password Settings Container. Instead we can configure fine-grained password policy directly in Active Directory Administrative Center (ADAC).