Your network consists of a single Active Directory domain named contoso.com. All servers run Windows Server 2003 Service Pack 2 (SP2). The domain contains a domain Distributed File System (DFS) root named DFSroot. The network contains the offices shown in the following table. 
Server1 and Server2 currently each host a share named Applications. You need to implement a solution to meet the following requirements: ·Automatically redirect users to the Applications folder in their local site. ·Ensure that the contents of the Applications shares on Server1 and Server2 are automatically synchronized. What should you do? ()
A、 In the DFS root, create one link named Applications that has //server1/applications and //server2/applications as targets.
B、 In the DFS root, create a root target that points to //server1/applications. Create a second root target that points to //server2/applications.
C、 In the DFS root, create one link named Applications1 that has //server1/applications as its target. Create a second link named Applications2 that has //server2/applications as its target.
D、 In the Main-office-computers OU, publish the //server1/applications share. In the Branch-office-computers OU, publish the //server2/applications share.
你需要设置一个PKI以满足商业的要求,你应该这样做?()
A、把ATLCA1断开连接,然后创建一个企业从属CA来颁发证书
B、创建一个独立从属CA来颁发证书
C、使用一个有资格的从属CA
D、在ATLCA1上配置证书模版ACLs
You need to design a security solution for the internally developed Web applications that meets business requirements. What should you do?()
A、Install and configure a stand-alone root certification authorative (CA) that is trusted by all company client computers. Issue encryption certificates to all developers
B、Install and configure root certification authority (CA) that is trusted by all company client computers. Issue code-signing certificates to all developers
C、Purchase a root certification from a trusted commercial certification authority (CA). Install the root certificated on all developers’ computers
D、Purchase a code-signing certificate from a trusted commercial certification authority (CA). Install the certificate on all company client computers
You need to design a certificate management process for internal users. What should you do?()
A、Establish a Web enrollment service for internal users to request access to resources
B、Grant Enrollment Agent rights to users
C、Establish enrollment stations and store user certificates in a smart card
D、Create Connection Manager scripts to identify the client computer operating system, and configure Web proxy settings to specify the appropriate Web enrollment service
你需要为南桥影视设计一个审核策略,你的设计必须符合他们的要求,你该怎么做?()
A、创建一个新的安全模版,开启审核帐户登陆事件,审核任何成功和失败的尝试。创建一个新的GPO,把它链接到域中,导入该安全模版到新的GPO中
B、创建一个新的安全模版,开启审核帐户登陆事件,审核任何成功和失败的尝试。创建一个新的GPO,把它链接到域控制器的OU中,导入该安全模版到新的GPO中
C、创建一个新的安全模版,开启审核登陆事件,审核任何成功和失败的尝试。创建一个新的GPO,把它链接到域控制器的OU中,导入该安全模版到新的GPO中
D、创建一个新的安全模版,开启审核登陆事件,审核任何成功和失败的尝试。创建一个新的GPO,把它链接到域中,导入该安全模版到新的GPO中
您需要为在西雅图呼叫中心的客户计算机设计桌面和安全设置。您的解决方案必须使用最小的管理操作。您应该执行哪2个操作?()
A在每台呼叫中心的客户计算机,配置一项本地政策只包括Allowed Windows Programs list.列出的批执行的程序
B使用NTFS权限,为所有未批准的可执行文件分配拒绝-读的权限给域的计算机帐户
C设计一个软件限制策略的GPO给呼叫中心全部的客户计算机
D设计一个执行IPSec策略的GPO给呼叫中心全部的客户计算机。保证,IPSec策略拒绝与所有不是公司管理的网络服务器的连接操作