Microsoft Microsoft Certifications 98-365 Questions & Answers
Question 141:
What protocol is used to query and modify data contained within a structure that reflect geographical or organizational structure?
A. LDAP
B. DNS
C. GlobalZones
D. Kerberos
Correct Answer: A
The Lightweight Directory Access Protocol, or LDAP, is an application protocol for querying and modifying data using directory services running over TCP/IP. Within the directory, the sets of objects are organized in a logical hierarchical manner so that you can easily find and manage them.
Question 142:
What logical unit of computers shares the same security database?
A. workgroup
B. domain
C. conglomerate
D. association
Correct Answer: B
A domain is a logical unit of computers that define a security boundary, and it is usually associated with Microsoft's Active Directory. The security of the domain is generally centralized and controlled by Windows servers acting as domain
controllers.
As a result, you can manage the security much easier for multiple computers while providing better security.
Question 143:
What type of environment has each computer keep its own security database?
A. workgroup
B. domain
C. conglomerate
D. association
Correct Answer: A
By default, a computer is part of a workgroup. A workgroup is usually associated with a peer-to- peer network in which user accounts are decentralized and stored on each individual computer.
Question 144:
In an Active Directory, which of the following represents a geographic location hosting networks?
A. Site
B. OU
C. Domain
D. Forest
Correct Answer: A
A site in Active Directory represents a geographic location hosting networks. Active Directory (AD) sites consist of well-connected networks defined by IP subnets that help define the physical structure of a user's Active Directory, and give the user control over replication traffic and authentication traffic. Because AD relies on IP, all LAN segments should have a defined IP subnet. This makes creating an AD straightforward; a user can simply group well-connected subnets to form a site.
Incorrect Answers:
B: An organizational unit (OU) is a type of Active Directory object (or container) in which user accounts, groups, computers, printers, applications, file shares, and other organizational units within a single domain can be placed.
C: In the Windows environment, a domain is a set of network resources that are part of a network and share a common directory database. A domain is administered as a unit with common rules and procedures. Each domain has a unique name. Users just have to log on to a domain to access the network resources within it.
D: A forest is a collection of Windows domains that do not necessarily share a common namespace. Forests simplify the management of multiple domains. All domains within a forest share a common schema and Global Catalog. Resources can be shared among the domains in a forest.
Question 145:
Which of the following statements are true about group nesting? Each correct answer represents a complete solution. Choose all that apply.
A. Windows allows group nesting where an administrator can place a group as a member of another group.
B. While nesting, an administrator should always keep in mind that the level of nesting should be maximized, as this will minimize the permission structure.
C. It is the process of nesting a group within other groups.
D. The main advantage of group nesting is that it requires less work when assigning privileges and permissions.
Correct Answer: ACD
Group nesting is the process of nesting a group within other groups. The main advantage of group nesting is that is requires less work when assigning privileges and permissions. Windows allows group nesting where an administrator can place a group as a member of another group. While nesting, an administrator should always keep in mind that the level of nesting should be minimized, as this will complicate the permission structure. Naming of the group is another aspect of planning group. An administrator should establish a convention for naming groups. A consistent naming convention will help administrators identify and keep track of group membership.
Question 146:
You work as a Server Administrator for company Inc. You need to make a computer running Windows Server 2016 a domain controller.
Which of the following steps will you take to accomplish the task? Each correct answer represents a part of the solution. (Choose two.)
A. Install Active Directory Domain Services.
B. Create an MX resource record.
C. Run the nslookup command.
D. Execute the dcpromo command.
Correct Answer: AD
To make a computer running Windows Server 2016 a domain controller, you should take the following steps:
Install Active Directory Domain Services.
Execute the dcpromo command. In Windows Server 2016, dcpromo is executed by clicking the link to complete the Active Directory configuration.
Incorrect Answers:
B: An MX resource record is used to specify which mail exchanger to contact for a specified domain and in what order to use each mail host.
C: The nslookup command is used to check records, domain host aliases, domain host services, and operating system information by querying Internet domain name servers.
Question 147:
You work as a Server Administrator for company Inc. The company has a Windows Active Directory-based multiple domain single forest network. The functional level of the forest is Windows Server 2016.
You want to allow some groups to take more control of their local network resources by delegating administrative control to a level of a domain tree.
What will you do? Each correct answer represents a part of the solution. (Choose two.)
A. Configure the Demilitarized zone (DMZ).
B. Create organizational units within a domain.
C. Provide administrative privileges to particular groups.
D. Delegate administrative control for specific organizational units to particular groups.
Correct Answer: BD
In order to allow some groups to take more control of their local network resources by delegating administrative control to a level of a domain tree, you should take the following steps:
Create organizational units within a domain.
Delegate administrative control for specific organizational units to particular users or groups.
Incorrect Answers:
A: DMZ provides a network the ability to use the Internet while maintaining its security.
C: Providing administrative privileges to particular groups is not required to accomplish the task.
Question 148:
You work as a Server Administrator for company Inc. The company has a Windows Active Directory-based single domain single forest network. The functional level of the forest is Windows Server 2016.
You are planning to create groups for assigning permissions.
Which of the following characteristics does the universal group have? Each correct answer represents a complete solution. (Choose two.)
A. It consists of global groups from multiple domains.
B. Members can only come from the local domain.
C. It has its memberships listed in the global catalog database.
D. Its members can access resources only from the local domain.
Correct Answer: AC
The universal group consists of global groups from multiple domains. It includes global groups, other universal groups, and user accounts. The universal group has its memberships listed in the global catalog database. Global catalogs replicate universal group membership; therefore, an administrator must limit the membership to global groups.
Incorrect Answers:
B: In the universal group, members can come from any domain.
D: Members of the universal group can access resources from any domain.
Question 149:
You work as a Network Administrator for NetTech Inc. The company has a Windows Server 2016 Active Directory-based network. The company has three departments named Sales, Purchase, and Marketing.
You are required to create organizational units (OU) structure for each department in the network.
Which of the following are the reasons for defining an OU? Each correct answer represents a complete solution. Choose all that apply.
A. To delegate administration.
B. To administer domain controllers.
C. To hide objects.
D. To administer group policy.
Correct Answer: ACD
Organizational units (OUs) are defined to delegate administration, to administer group policy, or to hide objects. Delegating administration is the prime reason for defining OUs.
Question 150:
Which of the following is an application protocol for querying and modifying data using directory services running over TCP/IP?
A. Kerberos
B. SNMP
C. UDP
D. LDAP
Correct Answer: D
The Lightweight Directory Access Protocol (LDAP) is a standard protocol, which provides access to the directory. It also provides a common language for LDAP clients and servers to communicate with each other. The LDAP is commonly used as standard in the industry. By using a directory service such as LDAP, information existing in multiple systems and formats can be brought at one place. LDAP is an application protocol for querying and modifying data using directory services running over TCP/IP.
Incorrect Answers:
A: Kerberos is a secure protocol that supports ticketing authentication. A ticket is granted in response to a client computer authentication request by the Kerberos authentication server, if the request contains valid user credentials and a valid Service Principal Name (SPN). The ticket is then used by the client computer to access network resources. To enable Kerberos authentication, the client and server computers must have a trusted connection to the domain Key Distribution Center (KDC). The task of KDC is to distribute shared secret keys to enable encryption.
B: Simple Network Management Protocol (SNMP) is a part of the TCP/IP protocol suite, which allows users to manage the network. SNMP is used to keep track of what is being used on the network and how the object is behaving.
C: User Datagram Protocol (UDP) is often used for one-to-many communications, using broadcast or multicast IP datagrams. Microsoft networking uses UDP for logon, browsing, and name resolution. UDP is a connectionless and unreliable communication protocol. It does not guarantee delivery or verify sequencing for any datagram. UDP provides faster transportation of data between TCP/IP hosts than TCP.
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Microsoft exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 98-365 exam preparations and Microsoft certification application, do not hesitate to visit our Vcedump.com to find your solutions here.