Microsoft 70-411 - Administering Windows Server 2012 Exam
Page: 1 / 61
Total 305 questions
Question #1 (Topic: Volume A)
DRAG DROP
Your network contains an Active Directory forest named contoso.com. The forest contains a Network Policy Server (NPS) server named NPS1 and a VPN server
named VPN1. VPN1 forwards all authentication requests to NPS1.
A partner company has an Active Directory forest named adatum.com. The adatum.com forest contains an NPS server named NPS2.
You plan to grant users from adatum.com VPN access to your network.
You need to authenticate the users from adatum.com on VPN1.
What should you create on each NPS server?
To answer, drag the appropriate objects to the correct NPS servers. Each object may be used once, more than once, or not at all. You may need to drag the split
bar between panes or scroll to view content.
Select and Place:
[Microsoft-70-411-1.0/xmlfile-2_1.jpg]
Your network contains an Active Directory forest named contoso.com. The forest contains a Network Policy Server (NPS) server named NPS1 and a VPN server
named VPN1. VPN1 forwards all authentication requests to NPS1.
A partner company has an Active Directory forest named adatum.com. The adatum.com forest contains an NPS server named NPS2.
You plan to grant users from adatum.com VPN access to your network.
You need to authenticate the users from adatum.com on VPN1.
What should you create on each NPS server?
To answer, drag the appropriate objects to the correct NPS servers. Each object may be used once, more than once, or not at all. You may need to drag the split
bar between panes or scroll to view content.
Select and Place:
[Microsoft-70-411-1.0/xmlfile-2_1.jpg]
Answer: [Microsoft-70-411-1.0/xmlfile-3_1.jpg]
Question #2 (Topic: Volume A)
HOTSPOT
Your network contains an Active Directory domain named contoso.com. The domain contains the users shown in the following table.
[Microsoft-70-411-1.0/xmlfile-3_2.png]
You have a Network Policy Server (NPS) server that has the network policies shown in the following table.
[Microsoft-70-411-1.0/xmlfile-4_1.png]
User1, User2, and User3 plan to connect to the network by using a VPN. You need to identify which network policy will apply to each user.
What should you identify?
To answer, select the appropriate policy for each user in the answer area.
Hot Area:
[Microsoft-70-411-1.0/xmlfile-5_1.jpg]
Your network contains an Active Directory domain named contoso.com. The domain contains the users shown in the following table.
[Microsoft-70-411-1.0/xmlfile-3_2.png]
You have a Network Policy Server (NPS) server that has the network policies shown in the following table.
[Microsoft-70-411-1.0/xmlfile-4_1.png]
User1, User2, and User3 plan to connect to the network by using a VPN. You need to identify which network policy will apply to each user.
What should you identify?
To answer, select the appropriate policy for each user in the answer area.
Hot Area:
[Microsoft-70-411-1.0/xmlfile-5_1.jpg]
Answer: [Microsoft-70-411-1.0/xmlfile-6_1.jpg]
Question #3 (Topic: Volume A)
Your network contains an Active Directory domain named contoso.com. The domain contains a server named Server1 that runs Windows Server 2012 R2.
Server1 has the following role services installed:
? DirectAccess and VPN (RRAS)
? Network Policy Server
Remote users have client computers that run either Windows XP, Windows 7, or Windows 8.
You need to ensure that only the client computers that run Windows 7 or Windows 8 can establish VPN connections to Server1.
What should you configure on Server1?
Server1 has the following role services installed:
? DirectAccess and VPN (RRAS)
? Network Policy Server
Remote users have client computers that run either Windows XP, Windows 7, or Windows 8.
You need to ensure that only the client computers that run Windows 7 or Windows 8 can establish VPN connections to Server1.
What should you configure on Server1?
A. A condition of a Network Policy Server (NPS) network policy
B. A constraint of a Network Policy Server (NPS) network policy
C. a condition of a Network Policy Server (NPS) connection request policy
D. A vendor-specific RADIUS attribute of a Network Policy Server (NPS) connection request policy
Answer: A
Question #4 (Topic: Volume A)
HOTSPOT
Your network contains an Active Directory domain named contoso.com. The domain contains two servers named Server1 and Server2. Server1 has the Network
Policy Server server role installed. Server2 has the DHCP Server server role installed. Both servers run Windows Server 2012 R2.
You are configuring Network Access Protection (NAP) to use DHCP enforcement.
You configure a DHCP scope as shown in the exhibit. (Click the Exhibit button.)
[Microsoft-70-411-1.0/xmlfile-9_1.jpg]
You need to ensure that non-compliant NAP clients receive different DHCP options than compliant NAP clients.
What should you configure on each server? To answer, select the appropriate options for each server in the answer area.
Hot Area:
[Microsoft-70-411-1.0/xmlfile-10_1.jpg]
Your network contains an Active Directory domain named contoso.com. The domain contains two servers named Server1 and Server2. Server1 has the Network
Policy Server server role installed. Server2 has the DHCP Server server role installed. Both servers run Windows Server 2012 R2.
You are configuring Network Access Protection (NAP) to use DHCP enforcement.
You configure a DHCP scope as shown in the exhibit. (Click the Exhibit button.)
[Microsoft-70-411-1.0/xmlfile-9_1.jpg]
You need to ensure that non-compliant NAP clients receive different DHCP options than compliant NAP clients.
What should you configure on each server? To answer, select the appropriate options for each server in the answer area.
Hot Area:
[Microsoft-70-411-1.0/xmlfile-10_1.jpg]
Answer: [Microsoft-70-411-1.0/xmlfile-11_1.jpg]
Question #5 (Topic: Volume A)
You are a network administrator of an Active Directory domain named contoso.com.
You have a server named Server1 that runs Windows Server 2012 R2. Server1 has the DHCP Server server role and the Network Policy Server role service
installed.
You enable Network Access Protection (NAP) on all of the DHCP scopes on Server1. You need to create a DHCP policy that will apply to all of the NAP non-
compliant DHCP clients.
Which criteria should you specify when you create the DHCP policy?
You have a server named Server1 that runs Windows Server 2012 R2. Server1 has the DHCP Server server role and the Network Policy Server role service
installed.
You enable Network Access Protection (NAP) on all of the DHCP scopes on Server1. You need to create a DHCP policy that will apply to all of the NAP non-
compliant DHCP clients.
Which criteria should you specify when you create the DHCP policy?
A. The client identifier
B. The user class
C. The vendor class
D. The relay agent information
Answer: B
