Microsoft 70-647 : Windows Server 2008,Enterprise Administrator

In modern society, Microsoft 70-647 certificate has an important impact on your future job, your promotion and salary increase. Also it can make a great deal of difference in your career.

Here, BraindumpsQA's 70-647 exam materials will help you pass your Microsoft 70-647 certification exam and get Microsoft certification certificate. Our exam materials are written to the highest standards of technical accuracy. And the 70-647 exam questions and answers are edited by experienced IT experts and have a 99.9% of hit rate.

BraindumpsQA provides you with the most excellent and latest 70-647 PDF Version & Software version exam dumps. The Software version exam material is a test engine that simulates the exam in a real exam environment, which can help you test your level of knowledge about 70-647 exam.

If you have no good idea to prepare for Microsoft 70-647 exam, BraindumpsQA will be your best choice. Our 70-647 exam questions and answers are the most accurate and almost contain all knowledge points. With the help of our exam materials, you don't need to attend other expensive training courses and just need to take 20-30 hours to grasp our 70-647 exam questions and answers well.

After you purchased our BraindumpsQA's 70-647 exam materials, we offer you free update for one year. We will check the updates of exam materials every day. Once the materials updated, we will automatically free send the latest version to your mailbox.

In addition, we offer you free demo. Before you decide to buy our BraindumpsQA's 70-647 exam materials, you can try our free demo and download it. If it is useful to you, you can click the button 'add to cart' to finish your order.

70-647 Online Test Engine supports Windows / Mac / Android / iOS, etc., because it is the software based on WEB browser.

BraindumpsQA guarantees no help, full refund. If you fail the exam, you just need to send the scanning copy of your examination report card to us. After confirming, we will quickly give you FULL REFUND of your purchasing fees.

Easy and convenient way to buy: Just two steps to complete your purchase, we will send the 70-647 braindumps to your mailbox quickly, later you can check your email and download the attachment.

Microsoft Windows Server 2008,Enterprise Administrator Sample Questions:

1. Contoso, Ltd. and Graphic Design Institute each have an Active Directory Domain Services (AD DS) domain. Ail servers run Windows Server 2008 R2. A forest trust exists between Contoso and Graphic Design Institute.
The Contoso domain includes multiple child domains, as shown in the following graphic.

Users in the graphicdesigninstitute.com domain are experiencing slow logon times in the support.athens.contoso.com domain
You need to ensure that users in the graphicdesigninstitute.com domain can log on to the support.athens.contoso.com domain in a timely manner. What should you recommend? (More than one answer choice may achieve the goal. Select the BEST answer)

A) Create a two-way trust between support.athens.contoso.com and graphicdesigninstitute.com.
B) Create a shortcut trust between athens.contoso.com and graphicdesigninstitute.com.
C) Create a shortcut trust between graphicdesigninstitute.com and support.athens.contoso.com.
D) Create a two-way trust between graphicdesigninstitute.com and athens.contoso.com.

2. Your network consists of four Active directory domains named East, West, North, and South.
The North domain is the forest root domain.
All domain controllers run Windows Server 2008.
Department managers use a sales reporting application on a server named SalesServer1 in the East
domain.
A domain local group named SalesAppEast in the East domain has access to the application.
Each domain has a global group named LocalManagers that contains all managers from the corresponding
domain.
All global groups are added to the SalesAppEast domain local group.
You need to ensure that any unauthorized member added to SalesAppEast is automatically removed.
What should you do?

A) Create a Group Policy object (GPO). Configure the GPO to restrict group membership to the SalesAppEast group and link the GPO to the East domain.
B) Deny the Modify permission for the SalesAppEast domain local group.
C) Create a Group Policy object (GPO). Configure the GPO to restrict group membership to the LocalManagers group and link the GPO to the North, South, and West domains.
D) Create a Group Policy object (GPO). Configure the GPO to restrict group membership to the LocalManagers group and link the GPO to the North domain.

3. Your company has one main office and eight branch offices. Each branch office has one server and 20
client computers.
The network consists of one Active Directory domain. All main office domain controllers run Windows
Server 2008.
All branch office servers are configured as domain controllers and run Windows Server 2003 Service Pack
1 (SP1).
You need to implement a security solution for the branch offices to meet the following requirements:
-The number of user passwords stored on branch office domain controllers must be minimized.
-All files stored on the branch office domain controller must be protected in the event of an offline attack.
What should you do?

A) Replace branch office domain controllers with Windows Server 2008 read-only domain controllers (RODCs). Enable Windows BitLocker Drive Encryption (BitLocker).
B) Upgrade branch office domain controllers to Windows Server 2008. Enable Windows BitLocker Drive Encryption (BitLocker).
C) Add the branch office domain controller computer accounts to the read-only domain controllers (RODCs) group. Enable Encrypting File System (EFS) for all server drives.
D) Replace branch office domain controllers with Windows Server 2008 read-only domain controllers (RODCs). Enable Encrypting File System (EFS) for all server drives.

4. Your network consists of one Active Directory domain that contains servers that run Windows Server 2008. The relevant servers are configured as shown in the following table:

All client computers are members of the domain and run Windows Vista. All users have accounts in the domain.
You need to recommend a solution that enables all client computers to automatically request and install computer certificates.
What should you recommend?

A) On Server1, enable auto-enrollment in the User Configuration section of the Default Domain Policy.
B) On Server1, enable auto-enrollment in the Computer Settings section of the Default Domain Policy.
C) On Server2, implement certification authority Web enrollment support.
D) On Server2, implement the Network Device Enrollment Service.

5. Your network consists of one Active Directory domain
Your company uses a firewall to connect to the Internet. Inbound TCP/IP port 443 is allowed on the firewall.
You have Remote Desktop Services servers on the internal network. You have one server on the internal
network that has Remote Desktop Gateway (RD Gateway) deployed. Al servers run Windows Server 2008
R2.
You need to recommend a solution that enables remote users to access network resources by using RD Gateway.
What should you recommend?

A) Create a Remote Desktop connection authorization policy (RD CAP) and a Remote Desktop resource authorization policy (RD RAP).
B) Install the Remote Desktop Services server role with the Remote Desktop Connection Broker (RD Connection Broker) services role.
C) Change the firewall rules to permit traffic through port 3389 from the Internet.
D) Install the Remote Desktop Services server role with the Remote Desktop Web Access (RD Web Access) services role.

Solutions: