Latest MCTS 70-643 Real Exam Download 201-210

Ensurepass

QUESTION 201

Your network contains a Web server that runs Windows Server 2008 R2. The server has two Web sites named Site1 and Site2.

Site1 is accessed by using the name site1.contoso.com. Site2 is accessed by using the name site2.contoso.com. You plan to configure both Web sites to use SSL encryption.

You need to ensure that users can access Site1 by using the URL https://site1.contoso.com and Site2 by using the URL https://site2.contoso.com.

What should you configure for each Web site?

A. a different application pool

B. a different host header site binding

C. a different IP address site binding

D. a different port site binding

Correct Answer: C

QUESTION 202

You install the FTP Service role service on a server that runs Windows Server 2008 R2.

Users receive an error message when they attempt to upload files to the FTP site.

You need to allow authenticated users to upload files to the FTP site.

What should you do?

A. Run the ftp a 192.168.1.200 command on the server that runs Windows Server 2008 R2.

B. Run the appcmd unlock config command on the server that runs Windows Server 2008 R2.

C. Configure Write permissions on the FTP site. Configure the NTFS permissions on the FTP destination folder for the Authenticated Users group to Allow – Modify.

D. Configure Write permissions on the FTP site. Configure the NTFS permissions on the FTP destination folder for the Authenticated Users group to Allow Write attributes.

Correct Answer: C


QUESTION 203

You install the Web Server (IIS) server role on a server that runs Windows Server 2008 R2. Your company’s default Web site has an IP address of 10.10.0.1.

You add a Web site named HelpDesk. The HelpDesk Web site cannot be started.

You need to configure the HelpDesk Web site so that it can be started.

What should you do?

A. Run the iisreset /enable command on the server.

B. Configure the HelpDesk Web site to use a host header.

C. Run the appcmd add site /name: HelpDesk /id:2 /physicalPath: c:HelpDesk /binding:http/*:80:HelpDesk command on the server.

D. Run the set-location literalpath "d:HelpDesk_content" HelpDesk ID:2 location port:80 domain:HelpDesk command in the Microsoft Windows PowerShell tool on the server.

Correct Answer: B


QUESTION 204

Your company has a server that runs Windows Server 2008 R2. The server has the Web Server (IIS) server role installed.

You need to activate SSL for the default Web site.

Which two actions should you perform? (Each correct answer presents part of the solution. Choose two.)

A. Obtain and import a server certificate by using the IIS Manager console.

B. Select the Generate Key option in the Machine Key dialog box for the default Web site.

C. Add bindings for the HTTPS protocol to the default Web site by using the IIS Manager console.

D. Install the Digest Authentication component for the Web server role by using the Server Manager console.

Correct Answer: AC


QUESTION 205

Your company named Contoso, Ltd. runs Windows Server 2008 R2. You manage a Web server named web.contoso.com.

The Web server hosts two Web sites named www.contoso.com and webmail.contoso.com. Users connect to both the sites from the Internet by using HTTP.

The new company security policy has the following requirements:

The webmail.contoso.com site must be available for Internet users only through Secure HTTP (HTTPS). Two folders named Order and History on www.contoso.com must be available only through HTTPS.

All users must be able to connect to both sites without receiving any security warnings.

You need to add SSL certificates on web.contoso.com. You must meet the company security policy requirements.

What should you do first?

A. Generate a self-signed certificate for web.contoso.com.

B. Generate separate domain certificates for www.contoso.com and webmail.contoso.com.

C. Request one certificate from the public trusted certification authority for web.contoso.com.

D. Request separate certificates from the public trusted certification authority for www.contoso.com and webmail.contoso.com.

Correct Answer: D


QUESTION 206

You manage a member server that runs Windows Server 2008 R2. The server has the Web Server (IIS) server role installed.

The Web server hosts a Web site named Intranet1.

Only internal Active Directory user accounts have access to the Web site.

The authentication settings for Intranet1 are configured as shown:

clip_image001

You need to ensure that users authenticate to the Web site by using only the Microsoft Challenge Handshake Authentication Protocol version 2 (MS-CHAPv2) encrypted Active Directory credentials.

Which two actions should you perform? (Each correct answer presents part of the solution. Choose two.)

A. Add the Digest Authentication role service and the URL Authorization role service to the server.

B. Add the Windows Authentication role service to IIS. Configure the Windows Authentication setting to Enabled in the Intranet1 properties.

C. Configure the Basic Authentication setting to Disabled in the Intranet1 properties.

D. Configure the Default domain field for the Basic Authentication settings on Intranet1 by adding the name of the Active Directory domain.

E. Configure the Basic Authentication setting to Disabled and the Anonymous Authentication setting to Enabled in the Intranet1 properties.

Correct Answer: BC


QUESTION 207

You manage a server that runs Windows Server 2008 R2. The server has the Web Server (IIS) server role installed.

The Web developer at your company creates a new Web site that runs an ASP.NET 3.0 Web application.

The ASP.NET Web application must run under a security context that is separate from any other ASP.NET application on the Web server. You create a local user account and grant account rights and permissions to run the ASP.NET Web application.

You need to configure authentication for the new Web site to support the Web application.

What should you do?

A. Configure the Windows Authentication setting to Enabled.

B. Configure the Forms Authentication setting to Enabled by using all the default settings.

C. Configure the ASP.NET State Service to log on to the new local user account by using the Services console.

D. Configure the ASP.NET Impersonation setting to Enabled. Edit the ASP.NET Impersonation setting by specifying the new local user account.

Correct Answer: D


QUESTION 208

You have a server named Server1 that runs Windows Server 2008 R2. The server has the Web Server (IIS) server role installed. You have an SMTP gateway that connects to the Internet.

The internal firewall prevents all computers, except the SMTP gateway, from establishing connections over TCP port 25. You configure the SMTP gateway to relay e-mail for Server1.

You need to configure a Web site on Server1 to send e-mail to Internet users.

What should you do?

A. On Server1, install the SMTP Server feature.

B. On Server1, configure the SMTP E-mail feature for the Web site.

C. On an internal DNS server, create an MX record for Server1.

D. On an internal DNS server, create an MX record for the SMTP gateway.

Correct Answer: B


QUESTION 209

You have 10 servers that run Windows Server 2008 R2. The servers have the Web Server (IIS) server role installed. The servers are members of a Web server farm. The servers host the same Web site.

You need to configure the servers to meet the following requirements:

Allow changes to the Web server configurations that are made on one server to be made on all servers in the farm.

Minimize administrative effort to perform the configuration changes.

What should you do?

A. On all servers, configure the Shared Configuration settings.

B. On one server, configure the Shared Configuration setting.

C. On one server, create a scheduled task that copies the Intepub folder to the other servers.

D. Create a DFS Namespace. On each server configure the Inetpub folder as the target of the DFS Namespace.

Correct Answer: A


QUESTION 210

Your company named Contoso, Ltd. runs Windows Server 2008 R2. You manage a Web server named Server1.

Internet users access Server1 by using http://www.contoso.com and https://www.contoso.com. The Server1 server uses an SSL certificate from a public certification authority (CA).

You install an additional Web server named Server2.

You configure a Network Load Balancing cluster to distribute the incoming HTTP and HTTPS traffic between both Web servers.

You need to configure an SSL certificate on Server2 to support HTTPS connections.

You must ensure that all users can connect to https://www.contoso.com without receiving security warnings.

What should you do?

A. Open the Internet Information Services (IIS) Manager console on Server2. Create a self-signed certificate.

B. Open the Internet Information Services (IIS) Manager console on Server1. Export the SSL certificate to a .pfx file. Import the .pfx file to Server2.

C. Open the Certificates snap-in on Server1. Export the SSL certificate to a .cer file. Import the .cer file to Server2.

D. Request a new SSL certificate from the public CA. Use Server2 as the Common Name in the request. Install the new certificate on Server2.

Correct Answer: B

 

Download Latest 70-643 Real Free Tests , help you to pass exam 100%.