Online Access Free 070-646 Exam Questions
| Exam Code: | 070-646 |
| Exam Name: | Windows Server 2008, Server Administrator |
| Certification Provider: | Microsoft |
| Free Question Number: | 266 |
| Posted: | Sep 06, 2025 |
Testlet: Graphic Design Institute, Case B
You need to plan a scheduled daily backup of all files on TADC01.
Which tools could you use? (Choose all that apply.)
Case Study Title (Case Study): General Background
You are the systems administrator for the Graphic Design Institute (GDI). GDI is a private liberal arts and technical college with campuses in multiple cities.
Technical Background
The campus locations, users, client computers, and servers are described in the following table.
The campuses are connected by a fully meshed WAN.
The corporate network includes Active Directory Domain Services (AD DS). Domain controllers are located on each campus.
GDI uses Microsoft Windows Deployment Server (WDS) to distribute images by using Preboot Execution Environment (PXE). GDI builds images by using the Windows Automated Installation Kit (WAIK).
GDI uses Microsoft Windows Server Update Services (WSUS) to distribute and manage Windows security updates and software updates.
All private client computers and portable computers used by faculty and staff are members of the WSUS computer group named Staff. All shared client computers are members of the WSUS computer group named LabComputers. All faculty and staff users are members of the global security group named GDI_Staff. All students are members of the global security group named GDI_Students.
Specific servers are configured as shown in the following table.
The main data center is located on the Boston campus. ADMX and ADML files are centrally stored on BODC01.
All Charlotte servers reside in the CH_Servers organizational unit (OU). CHDATA01, CHDATA02, CHDATA03, and CHDATA04 reside in the CH_FileServers OU. CH_FileServers is a child OU of CH_Servers.
A Group Policy object (GPO) named ServerSettings applies Windows Internet Explorer settings to all servers.
Business Requirements
After successful migrations to Windows Server 2008 R2 in Boston, New Haven, and Tacoma, GDI plans to migrate its other campuses to Windows Server 2008 R2 in advance of a full Windows 7 client computer deployment.
Server deployment on the Austin campus must be performed on weekends by using scheduled deployments.
The post-migration environment must meet the following business requirements:
Maximize security.
Maximize data protection.
Maximize existing resources.
Minimize downtime.
Technical Requirements
The post-migration environment must meet the following security requirements:
All updates must be distributed by using WSUS.
All critical updates must be installed as soon as possible.
All drives on the Minneapolis campus servers must have Windows BitLocker Drive Encryption enabled. The post-migration environment must meet the following data protection requirements:
All servers must have automated backup routines.
All backups must be replicated to the Boston data center at the end of each business week. The post-migration environment must meet the following resource requirements:
Installations and recovery must be performed remotely.
All department volumes on file servers must have NTFS quotas.
Minimize download time for users who open Microsoft Office documents over the WAN.
Ensure that users' files are always opened from the closest file server when available.
Users' files must be accessible by the same path from all campuses.
Testlet: Tailspin Toys
You need to delegate print administration to meet the company requirements.
What should you do? (To answer, select the appropriate check boxes in the dialog box.)
CASE SCENARIO General Background
You are the Windows Server Administrator for Tailspin Toys. Tailspin Toys has a main office and a manufacturing office.
Tailspin Toys recently acquired Wingtip Toys and is in the beginning stages of Merging the IT environments. Wingtip Toys has a main office and a sales office.
Technical Background
The companies use the network subnets indicated in the following table: The Tailspin Toys network and the Wingtip Toys are connected by a point-to-point dedicated 45 Mbps circuit that terminates in the main offices.
The current Tailspin Toys server topology is shown in the following table:
The Tailspin Toys environment has the following characteristics: All servers are joined to the tailspintoys.com domain. In the Default Domain Policy, the Retain old events Group Policy setting is enabled. An Active Directory security group named "Windows System Administrators" is used to control all files and folders on TT-PRINT01. A Tailspin Toys administrator named Marx has been delegated rights to multiple Organizational Units (OUs) and object in the tailspintoys.com domain. Tailspin Toys developers use Hyper-V Virtual Machines (VM's) for development. There are 10 development VM's named TT-DEV01 to TT-DEV20.
The current Wingtip Toys server topology is shown in the following table: All servers in the Wingtip Toys environment are joined to the wingtiptoys.com domain.
Infrastructure Services
You must ensure that the following infrastructure services requirements are met:
All domain zones must be stored as Active Directory-integrated zones.
Only DNS servers located in the Tailspin Toys main offices may communicate with the DNS servers at Wingtip Toys.
Only DNS servers located in the Wingtip Toys main offices may communicate with the DNS servers at Tailspin Toys
All tailspintoys.com resources must be resolved from the Wingtip Toys offices.
All wingtiptoys.com resources must be resolved from the Tailspin toys offices.
Certificates must be distributed automatically to all Tailspin Toys and Wingtip Toys computers.
Delegated Administration
You must ensure that the following delegated administration requirements are met: Tailspin Toys IT security administrators must be able to create, modify and delete user objects in the wingtip.com domain.
Members of the Domain Admins Group in the tailspintoys.com domain must have full access to the wingtiptoys.com Active Directory environment.
A delegation policy must grant minimum access rights and simplify the process of delegating rights.
Minimum permissions must always be delegated to ensure that the least privilege is granted for a job task.
Members of the TAILSPINTOYS\Helpdesk group must be able to update drivers and add printer ports on TT-PRINT01.
Members of the TAILSPINTOYS\Helpdesk group must not be able to cancel a print job on TT-PRINT01.
Tailspin Toys developers must be able to start, stop and apply snapshots to their development VM's.
IT Security
Server security must be automated to ensure that newly deployed servers automatically have the same security configurations as existing servers.
Auditing must be configured to ensure that the deletion of users objects and OUs is logged.
Microsoft Word and Microsoft Excel files must be automatically encrypted when uploaded to the
Confidential documents library on the Tailspin Toys Microsoft SharePoint site.
Multi factor authentication must control access to Tailspin Toys domain controllers.
All file and folder auditing must capture the reason for access.
All folder auditing must capture all delete actions for all existing folders and newly created folders.
New events must be written to the Security event log in the tailspintoys.com domain and retained
indefinitely.
Drive X:\ on the TT-FILE01 must be encrypted by using Windows BitLocker Drive Encryption and must be automatically unlock.
Hot Area:
Your company has several branch offices.Your network consists of a single Active Directory domain.
Each branch office contains domain controllers and member servers. The domain controllers run Windows
Server 2003 SP2. The member servers run Windows Server 2008 R2.
Physical security of the servers at the branch offices is a concern.
You plan to implement Windows BitLocker Drive Encryption (BitLocker) on the member servers.
You need to ensure that you can access the BitLocker volume if the BitLocker keys are corrupted on the
member servers. The recovery information must be stored in a central location.
What should you do?
Testlet: Northwind Traders
You need to recommend a solution for monitoring the servers. The solution must meet the company's technical requirements.
What should you include in the recommendation?
Case Study Title (Case Study): COMPANY OVERVIEW
Northwind Traders is an import/export company that has a main office and two branch offices. The main office is located in Toronto. The branch offices are located in Vancouver and Seattle. The main office has 2,000 users. Each branch office has 500 users.
EXISTING ENVIRONMENT
All client computers run Windows 7 Enterprise. All servers run Windows Server 2008 R2. All new servers are deployed by using Windows Deployment Services (WDS).
Northwind Traders has multiple Hyper-V servers. The Hyper-V servers are managed by using Microsoft System Center Virtual Machine Manager (VMM).
The perimeter network contains a standalone server. The server has the Active Directory Lightweight Directory Service (AD LDS) service role installed. AD LDS is administered on the server by using the Active Directory module for Windows PowerShell.
All virtual machines (VMs) access iSCSI-based storage by using a Microsoft iSCSI Initiator installed on the VM.
Existing Active Directory/Directory Services
The network contains a single Active Directory forest named northwindtraders.com.
The forest contains five Remote Desktop servers. All Remote Desktop servers are in an organizational unit (OU) named RD Servers.
TECHNICAL REQUIREMENTS
Northwind Traders must meet the following technical requirements:
Minimize server downtime.
Ensure that you can recover all of the data hosted on the VMs.
Ensure that you can perform bare metal restores of the Hyper-V servers.
Minimize the number of times a server restarts when it is deployed.
Monitor the CPU utilization, memory utilization, and disk utilization of all the servers to analyze
performance trends.
Ensure that a specific set of Group Policy settings are applied to users who use Remote Desktop to connect to the Remote Desktop servers. The settings must differ from those applied when the users log on locally to their own computers.
Copy a custom Microsoft Office Word dictionary to the computers in the legal department. Update the custom dictionary on a regular basis. Copy the updated version of the dictionary as soon as possible to the legal department computers.
Testlet: Northwind Traders
You need to recommend a strategy to ensure that the administration of AD LDS is encrypted.
What should you include in the recommendation?
Case Study Title (Case Study): COMPANY OVERVIEW
Northwind Traders is an import/export company that has a main office and two branch offices. The main office is located in Toronto. The branch offices are located in Vancouver and Seattle. The main office has 2,000 users. Each branch office has 500 users.
EXISTING ENVIRONMENT
All client computers run Windows 7 Enterprise. All servers run Windows Server 2008 R2. All new servers are deployed by using Windows Deployment Services (WDS).
Northwind Traders has multiple Hyper-V servers. The Hyper-V servers are managed by using Microsoft System Center Virtual Machine Manager (VMM).
The perimeter network contains a standalone server. The server has the Active Directory Lightweight Directory Service (AD LDS) service role installed. AD LDS is administered on the server by using the Active Directory module for Windows PowerShell.
All virtual machines (VMs) access iSCSI-based storage by using a Microsoft iSCSI Initiator installed on the VM.
Existing Active Directory/Directory Services
The network contains a single Active Directory forest named northwindtraders.com.
The forest contains five Remote Desktop servers. All Remote Desktop servers are in an organizational unit (OU) named RD Servers.
TECHNICAL REQUIREMENTS
Northwind Traders must meet the following technical requirements:
Minimize server downtime.
Ensure that you can recover all of the data hosted on the VMs.
Ensure that you can perform bare metal restores of the Hyper-V servers.
Minimize the number of times a server restarts when it is deployed.
Monitor the CPU utilization, memory utilization, and disk utilization of all the servers to analyze
performance trends.
Ensure that a specific set of Group Policy settings are applied to users who use Remote Desktop to connect to the Remote Desktop servers. The settings must differ from those applied when the users log on locally to their own computers.
Copy a custom Microsoft Office Word dictionary to the computers in the legal department. Update the custom dictionary on a regular basis. Copy the updated version of the dictionary as soon as possible to the legal department computers.