Do you want to pass Microsoft 70-642 Exam ? If you answered YES, then look no further. Braindump2go offers you the best 70-642 exam questions which cover all core test topics and certification requirements. All REAL questions and answers from Microsoft Exam Center will help you be a 70-642 certified!
Vendor: Microsoft
Exam Code: 70-642
Exam Name: TS: Windows Server 2008 Network Infrastructure, Configuring
Keywords: 70-642 Exam Dumps,70-642 Practice Tests,70-642 Practice Exams,70-642 Exam Questions,70-642 Dumps,70-642 PDF,70-642 VCE,70-642 Study Guide
QUESTION 51
Your company has a single Active Directory domain named contoso.com.
All servers run Windows Server 2008.
You have a public DNS server named Server1, and an e-mail server named Server2.
Client computers outside the company domain are unable to send e-mail messages to contoso.com
You verify that the host (A) DNS record for Server2 is availible to external client computers.
You need to ensure Server2 can receive e-mail messages from external client computers.
How should you configure the contoso.com DNS zone?
A. Add a Mail Exchange (MX) record for Server2
B. Add a Mailbox (MB) record for Server2.
Set the Mailbox Host setting to Server2
C. Add a Canonical (CNAME) record that maps Server2 to contoso.com
D. Add a Service Locator (SRV) record for Server2.
Set the Service field to _smtp.
Set the Protocol field to _tcp. Set the Port Number to 25.
Answer: A
QUESTION 52
Your company has a domain controller that runs Windows Server 2008 and the DNS role.
The DNS domain is named contoso.com
You need to ensure that inquries about contoso.com are sent to [email protected]
What should you do?
A. Create a signature (SIG) record for the domain controller
B. Modify the Name Server (NS) record for the domain controller
C. Modify the Service Locator (SRV) record for the domain controller
D. Modify the Start of Authority (SOA) record ont he domain controller
Answer: D
QUESTION 53
Your company has servers that run Windows Server 2008.
All client computers run Windows XP Service Pack 2 (SP2).
Windows 2003 Professional, or Windows Vista.
You need to ensure all computers can use the IPv6 protocol.
What should you do?
A. Install Serivce Pack 4 on all Windows 2000 Professional computers
B. Upgrade the Windows 2000 professional computers to Windows XP SP2
C. Run the IPv6.exe tool on the Windows 200 Professional and Windows XP computers
D. Install Active Directory Client extention (DSClient.exe) on the Windows 2000 Professional
and Windows XP computers.
Answer: B
QUESTION 54
Your company has a single Active Directory domain.
All servers run Windows Server 2008.
The company network has servers that perform as Web Servers.
All confidential files are located on a server named FSS1.
The company security policy states that all confidential data must be transmitted in the most secure manner.
When you monitor the network you notice that the confidential files stored on FSS1 server are being transmitted over the network without encryption.
You need to ensure that encryption is always used when the confidential files on the FSS1 server are transmitted over the network.
What are two possible ways to achieve this goal? (Each correct answer presents a complete solution. Choose two.)
A. Deactivate all LM and NTLM authentication methods on FSS1 server
B. Use IIS to publish the confidential files, activate SSL on the IIS server, and then open the
files as a web folder
C. Use IPsec encryption between the FSS1 server and the computers of the users who need
to access the confidential files.
D. Use the Server Message Block (SMB) signing between the FSS1 server and the computers
of the users who want to access the confidential files.
E. Activate offline files for the confidential files that are stored on the FSS1 server.
In the Folder Advanced Properties box, select the Encrypt contents to secure data optiion
Answer: BC
QUESTION 55
Your company has an Active Directory domain.
A server named Server1 runs the Network Access Policy server role.
You need to disable IPv6 for all connections except for the tunnel interface and the IPv6 Loopback interface.
What should you do?
A. Run the netsh ras ipv6 set command
B. Run the netsh interface ipv6 delete command
C. Run ipv6.exe and remove the IPv6 Protocol
D. From the Local Area Connection Properties, uncheck Internet Protocol Version 6 (TCP/IPv6)
Answer: D
QUESTION 56
Your company has a single Active Directory domain.
The domain runs at the functional level of Windows Server 2003.
You install the DHCP service on a server named DHCP1.
You attempt to start the DHCP service, but it does not start.
You need to ensure that the DHCP service starts.
What should you do?
A. Restart DHCP1
B. Configure a scope on DHCP1
C. Activate the scope on DHCP1
D. Authorize DHCP1 in the Active Directory domain
Answer: D
QUESTION 57
You configure a new file server that runs Windows Server 2008.
Users access shared files on the file server.
Users report that they are unable to access the shared files.
The TCP/IP properties for the file server are configured as shown in the following exhibit.
You need to ensure that users are able to access the shared files.
How should you configure the TCP/IP properties in the file server?
A. Configure a static IP address
B. Configure the default gateway
C. Configure the DNS server address
D. Add the domain to the DNS suffix on the network interface
Answer: A
QUESTION 58
Your company has Active Directory Certificate Services (AD CS) and Network Access Protection (NAP) deployed on the network.
You need to configure the wireless network to accept smart cards.
What should you do?
A. Configure the wireless network to use WPA2, PEAP, and MSCHAP v2
B. Configure the wireless network to use WPA2, 802.1X authentication and EAP-TLS
C. Configure the wireless network to use WEP, 802.1X authentication, PEAP, and MSCHAP v2
D. Configure the wireless network to use WPA, PEAP, and MSCHAP v2 and also require strong user passwords.
Answer: B
QUESTION 59
Your company has users who connect remotely to the main office though a Windows Server 2008 VPN server.
You need to ensure that users cannot access the VPN server remotely from 22:00 to 05:00.
What should you do?
A. Create a network policy for VPN connections.
modify the Day and time restrictions.
B. Create a network policy for VPN connections.
apply an ip filter to deny access to the corporate network.
C. Modify the Logon hours for all users objects to specify only the VPN server otn he computer restrictions option
D. Modify the Logon hours for the default domain policy to enable the Force logoff when logon hours expire option,.
Answer: A
QUESTION 60
You have a server that runs Windows Server 2008.
You need to configure the server as a VPN server.
What should you installed on the server?
A. Windows Deployment Serivces role and Deployment Server role service
B. Windows Deployment Services role and Deployment Transport Role Service
C. Network Policy and Access Services role and Routing and Remote Access Services role service.
D. Network Policy and Access Services role and Routing and Host Credential Authorization Protocolr ole service.
Answer: C
Braindump2go Latest 70-642 Exam Dumps Released! 100% Real Questions – Dumps Qulification is the secret of Success! Prepare yourself to Face the 70-642 Exam with Real Exam Questions from Microsoft Official Exam Center, walk into the Testing Centre with confidence.