ArticleField.comInternet's Fastest Growing Free Content Article Directory

70-293 Exam

Planning and Maintaining a Microsoft Windows Server 2003 Network Infrastructure

Exam Number/Code : 70-293

Exam Name : Planning and Maintaining a Microsoft Windows Server 2003 Network Infrastructure

Questions and Answers : 270 Q&As

Update Time: 2011-02-01

Free 70-293 Demo Download

Test4pass offers free demo for MCSE 2003 Security 70-293 exam (Planning and Maintaining a Microsoft Windows Server 2003 Network Infrastructure). You can check out the interface, question quality and usability of our practice exams before you decide to buy it. We are the only one site can offer demo for almost all products.

Exam Description

It is well known that 70-293 exam test is the hot exam of Microsoft certification. Test4pass offer you all the Q&A of the 70-293 real test . It is the examination of the perfect combination and it will help you pass 70-293 exam at the first time!

Microsoft MCSE 2003 Security 70-293 exam braindumps questions and answers

Exam        : Microsoft 70-293

Title : Plan. and Maint. a MSWin Srvr2003 Net. Infrastructure

1. You are the network administrator for your company. All servers run Windows Server 2003.

You configure a baseline security template named Baseline.inf. Several operations groups are responsible for creating templates containing settings that satisfy operational requirements. You receive the templates shown in the following table.

Operations group

Template name

Applies to

File and Print

File.inf

File servers

Database

Db.inf

Database servers

Security

Sec.inf

All resource servers

The operations groups agree that in the case of conflicting settings, the priority order listed in the following table establishes the resultant setting.

Template

Priority

Sec.inf

1

Baseline.inf

2

Specific server role template

3

You need to create one or more Group Policy objects (GPOs) to implement the security settings. You want to minimize the amount of administrative effort required when changes are requested by the various operations groups.

What should you do?

A. Create a GPO and import the following templates in the following order: Baseline.inf, Sec.inf. Create a GPO for each server role and import only the specific template for that role into each respective GPO.

B. Create a GPO and import the following templates in the following order: Sec.inf, Baseline.inf. Create a GPO for each server role and import only the specific template for that role into each respective GPO.

C. Create a GPO for each server role and import the following templates in the following order: Baseline.inf, specific server role template, Sec.inf.

D. Create a GPO and import the following templates in the following order: Sec.inf, Db.inf, File.inf, Baseline.inf.

Answer: A

2. You are the network administrator for your company. The network consists of a single Active Directory domain. The network contains 10 domain controllers and 50 servers in application server roles. All servers run Windows Server 2003.

The application servers are configured with custom security settings that are specific to their roles as application servers. Application servers are required to audit account logon events, object access events, and system events. Application servers are required to have passwords that meet complexity requirements, to enforce password history, and to enforce password aging. Application servers must also be protected against man-in-the-middle attacks during authentication.

You need to deploy and refresh the custom security settings on a routine basis. You also need to be able to verify the custom security settings during audits.

What should you do?

A. Create a custom security template and apply it by using Group Policy.

B. Create a custom IPSec policy and assign it by using Group Policy.

C. Create and apply a custom Administrative Template.

D. Create a custom application server image and deploy it by using RIS.

Answer: A

4. You are the network administrator for your company. The network consists of a single Active Directory domain. The network contains 50 application servers that run Windows Server 2003.

The security configuration of the application servers is not uniform. The application servers were deployed by local administrators who configured the settings for each of the application servers differently based on their knowledge and skills. The application servers are configured with different authentication methods, audit settings, and account policy settings.

The security team recently completed a new network security design. The design includes a baseline configuration for security settings on all servers. The baseline security settings use the Hisecws.inf predefined security template. The design also requires modified settings for servers in an application role. These settings include system service startup requirements, renaming the administrator account, and more stringent account lockout policies. The security team created a security template named Application.inf that contains the modified settings.

You need to plan the deployment of the new security design. You need to ensure that all security settings for the application servers are standardized, and that after the deployment, the security settings on all application servers meet the design requirements.

What should you do?

A. Apply the Setup security.inf template first, the Hisecws.inf template next, and then the Application.inf template.

B. Apply the Application.inf template and then the Hisecws.inf template.

C. Apply the Application.inf template first, the Setup security.inf template next, and then the Hisecws.inf template.

D. Apply the Setup security.inf template and then the Application.inf template.

Answer: A

5. You are the network administrator for your company. The network consists of a single Active Directory domain.

The company’s written security policy requires that computers in a file server role must have a minimum file size for event log settings. In the past, logged events were lost because the size of the event log files was too small. You want to ensure that the event log files are large enough to hold history. You also want the security event log to be cleared manually to ensure that no security information is lost. The application log must clear events as needed.

You create a security template named Fileserver.inf to meet the requirements. You need to test each file server and take the appropriate corrective action if needed. You audit a file server by using Fileserver.inf and receive the results shown in the exhibit. (Click the Exhibit button.)

You want to make only the changes that are required to meet the requirements.

Which two actions should you take? (Each correct answer presents part of the solution. Choose two.)

A. Correct the Maximum application log size setting on the file server.

B. Correct the Maximum security log size setting on the file server.

C. Correct the Maximum system log size setting on the file server.

D. Correct the Retention method for application log setting on the file server.

E. Correct the Retention method for security log setting on the file server.

F. Correct the Retention method for system log setting for the file server.

Answer: BE

6. You are a network administrator for your company. The network consists of a single Active Directory domain. The network contains 80 Web servers that run Windows 2000 Server. The IIS Lockdown Wizard is run on all Web servers as they are deployed.

Your company is planning to upgrade its Web servers to Windows Server 2003. You move all Web servers into an organizational unit (OU) named Web Servers.

You are planning a baseline security configuration for the Web servers. The company’s written security policy states that all unnecessary services must be disabled on servers. Testing shows that the server upgrade process leaves the following unnecessary services enabled:

* SMTP

* Telnet

Your plan for the baseline security configuration for Web servers must comply with the written security policy.

You need to ensure that unnecessary services are always disabled on the Web servers.

What should you do?

A. Create a Group Policy object (GPO) to apply a logon script that disables the unnecessary services. Link the GPO to the Web Servers OU.

B. Create a Group Policy object (GPO) and import the Hisecws.inf security template. Link the GPO to the Web Servers OU.

C. Create a Group Policy object (GPO) to set the startup type of the unnecessary services to Disabled. Link the GPO to the Web Servers OU.

D. Create a Group Policy object (GPO) to apply a startup script to stop the unnecessary services. Link the GPO to the Web Servers OU.

Answer: C

100% Guarantee to Pass Your 70-293 Exam

If you prepare for the exam using our Test4pass testing engine, we guarantee your success in the first attempt. If you do not pass the MCSE 2003 Security 70-293 exam (ProCurve Secure WAN) on your first attempt we will give you a FULL REFUND of your purchasing fee AND send you another same value product for free.

70-293 Downloadable, Interactive Testing engines

We are all well aware that a major problem in the IT industry is that there is a lack of quality study materials. Our Exam Preparation Material provides you everything you will need to take a certification examination. Like actual certification exams, our Practice Tests are in multiple-choice (MCQs) Our Microsoft 70-293 Exam will provide you with free 70-293 dumps questions with verified answers that reflect the actual exam. These questions and answers provide you with the experience of taking the actual test. High quality and Value for the 70-293 Exam:100% Guarantee to Pass Your MCSE 2003 Security exam and get your MCSE 2003 Security Certification.

Test4pass 70-293 exam

Test4pass 70-293 pdf exam

Test4pass 70-293 braindumps

Test4pass 70-293 study guides

Test4pass 70-293 trainning materials

Test4pass 70-293 simulations

Test4pass 70-293 testing engine

Test4pass 70-293 vce

Test4pass 70-293 dumps

free download 70-293

Test4pass 70-293 practice exam

Test4pass 70-293 preparation files

Test4pass 70-293 questions

Test4pass 70-293 answers

http://www.test4pass.net/70-293-exam.html The safer.easier way to get MCSE 2003 Security Certification MCSE 2003 Messaging Certification MCSE 2003 Certification MCSE Certification MCDBA Certification .