多选题Cer-tech .com has an Active Directory domain installed on a server that runs Windows Server 2008.Another server named S3 also runs Windows Server 2008. All client machines have Windows Vista. Cer-tech .com has instructed you to install the Terminal Ser

第1题：

In an isolated test environment，you deploy a server named Server1 that runs a Server Core Installation of Windows Server 2012 R2.The test environment does not have Active Directory Domain Services （AD DS） installed.You install the Active Directory Domain Services server role on Server1.You need to configure Server1 as a domain controller. Which cmdlet should you run？（）

• A、Install-ADDSDomainController
• B、Install-ADDSDomatn
• C、Install-ADDSForest
• D、Install-WindowsFeature

第2题：

Your network consists of a single Active Directory domain named Contoso.com. The domain contains a member server named Server1.  Server1 runs Windows Server 2003 Service Pack 2 （SP2）. Server1 has Windows Support Tools and Resource Kit Tools installed. You need to view the Kerberos tickets issued to Server1.  Which tool should you run？（）

• A、Kerbtray
• B、Sc/query kdc
• C、Netdiag/test：Kerberos
• D、Nltest/sc_query：Contoso.com

第3题：

Cer-tech .com has a server that runs Windows Server 2008. You have installed Windows Share Point Services （WSS） role on the Windows Server 2008 server. You want to configure WSS to supportSMTP. What should you do to achieve this task？（）

• A、Reinstall the WSS role
• B、Open the Server Manager console and install Application Server
• C、Configure port 25 for WSS role
• D、Open the Server Manager console and install the SMTP Server feature

第4题：

Your network contains a single Active Directory domain named contoso.com.You have a domain controller named DC1 that runs Windows Server 2003 Service Pack 2 （SP2） that has the DNS Server Windows component installed.  You have a member server named Server1 that runs Windows Server 2003 SP2.Server1 fails to update its host （A） record for the contoso.com domain. You need to verify that DNS requests from Server1 are sent to DC1.  What should you do？（）

• A、On Server1，restart the server， press F8， and enable boot logging.
• B、On Server1，open the properties of the network adapter and install the Network Monitor Driver.
• C、On DC1，open the DNS snap-in and configure debug logging for the DNS Server service.
• D、On DC1，open the DNS snap-in and configure event logging for errors and warnings for the DNS Server service.

第5题：

You are an enterprise administrator for Cer-tech .com. The corporate network of the company consists of asingle Active Directory domain. All the servers on the network run Windows Server 2008 and all the clientcomputers run Windows XP Service Pack 2 （SP2）. All computers are members of the domain. The networkruns a server named Server01 on which the Terminal Services role and the Terminal Services Web Accessrole are installed. The Network Level Authentication is enabled on the server. The Terminal Services WebAccess role uses Active Directory Domain Services （AD DS）. You have been assigned the task to deployand publish an application called App1 on Server01. Which of the following options would you choose toensure that the users can launch App1 on Server01 from the Terminal Services Web Access Web page？（）

• A、Publish App1 on Server01 as a Microsoft Windows Installer package. Distribute the Windows Installer package to the users.
• B、Install the Terminal Services Gateway （TS Gateway） role on Server01 and then reconfigure the remoteapplication publishing for App1 to reflect the change.
• C、Disable publishing to AD DS for the App1.
• D、Install the Remote Desktop Client 6.1 application on the client computers.

第6题：

Your network contains an Active Directory domain named contoso.com. The functional level of the domain and the functional level of the forest are Windows Server 2003. All domain controllers run Windows Server 2008. You have a member server that runs Windows Server 2008 R2 named Server1. You install the Distributed Scan Server role service on Server1. From the Scan Management console, you attempt to add a scan process and you receive the following error. You need to ensure that you can add a scan process. What should you do？（）

• A、Install the Fax Server role.
• B、Install the Print Server role service.
• C、Update the Active Directory schema.
• D、Set the functional level of the forest to Windows Server 2008.

第7题：

Your company has an Active Directory domain. A server named Server2 runs Windows Server 2008. All client computers run Windows Vista.  You install the Terminal Services role，Terminal Services Web Access role service，and Terminal Services Gateway role service on Server2.  You need to ensure that all client computers have compliant firewall， antivirus software，and antispyware. Which two actions should you perform？（）

• A、Configure Network Access Protection （NAP） on a server in the domain.
• B、Add the Terminal Services servers to the Windows Authorization Access domain local security group.
• C、Add the Terminal Services client computers to the Windows Authorization Access domain local security group.
• D、Enable the Request clients to send a statement of health option in the Terminal Services client access policy.

第8题：

Certkiller.com has servers on the main network that run Windows Server 2008. It also has two domain controllers. Active Directory services are running on a domain controller named CKDC1. You have to perform critical updates of Windows Server 2008 on CKDC1 without rebooting the server. What should you do to perform offline critical updates on CKDC1 without rebooting the server（）

• A、Start the Active Directory Domain Services on CKDC1
• B、Disconnect from the network and start the Windows update feature
• C、Stop the Active Directory domain services and install the updates. Start the Active Directorydomain services after installing the updates.
• D、Stop Active Directory domain services and install updates. Disconnect from the network and then connect again
• E、None of the above

第9题：

Cer-tech .com has an Active Directory domain. It has Terminal services installed on the Windows Server2008 computers in the domain. All client machines have Windows Vista as their operating system. Due to anature of work， users are required to view some training videos on Windows Media Player 11 duringTerminal Services session. What should you do to ensure that the users could run Windows Media Player11 during the Terminal services session？（）

• A、On the terminal server， install the Quality Audio Video feature.
• B、Open the Terminal server settings and enable the ’allow desktop applications to run on session’. Disablethe default settings
• C、Install and configure the Desktop Experience feature on the terminal server
• D、Create a group policy object that allows Windows Media Player 11 to set the differential services codepoint value to 10 and apply the policy to the client machines that want to use Windows Media Player 11

第10题：

Cer-tech .com has an Active Directory domain installed on a server that runs Windows Server 2008.Another server named S3 also runs Windows Server 2008. All client machines have Windows Vista. Cer-tech .com has instructed you to install the Terminal Services role， Terminal Services Gateway role andTerminal Services Web Access role service on S3. To protect the network， you want to ensure that all client machines have firewall， antivirus software and anti-spyware software installed. Which actions shouldyou perform to achieve this task？（）

• A、Configure Windows Authorization Access domain local security group and add Terminal Services clientcomputers
• B、Configure Terminal Services client computers to access the Terminal Services health policy.
• C、Set the Request clients to sent a health option statement in the Terminal Services client access policy
• D、Install and configure Network Access Protection （NAP） on the server in the domain