CompTIA CompTIA Certifications SK0-005 Questions & Answers

• Question 321:

  An administrator is only able to log on to a server with a local account. The server has been successfully joined to the domain and can ping other servers by IP address.

  Which of the following locally defined settings is MOST likely misconfigured?

  A. DHCP

  B. WINS

  C. DNS

  D. TCP

  Correct Answer: C

  Since the administrator is only able to log on to the server with a local account, it is likely that the server is having difficulty resolving domain names to IP addresses. This suggests that there may be a misconfiguration in the Domain Name System (DNS) settings on the server.

  DNS is responsible for translating domain names into IP addresses, which allows computers to locate resources on the network. If the DNS settings on the server are incorrect, the server may not be able to locate domain resources, including domain controllers, which would prevent the administrator from logging on with a domain account.

  DHCP (A) is responsible for assigning IP addresses to devices on the network, and WINS (B) is an older technology used to resolve NetBIOS names to IP addresses. Neither of these services are directly related to logging on to a server with a domain account. TCP (D) is a protocol used to establish connections between devices on a network, and is not likely to be the source of the issue in this scenario.

• Question 322:

  Which of the following BEST describes a security control that requires validating the user's physical characteristics?

  A. OTP

  B. Biometrics

  C. RFID

  D. Security cameras

  Correct Answer: B

• Question 323:

  An administrator has set up a GPO to disable USB drive access on a company's servers. The GPO is set up as a computer con guration policy and does not use security groups ltering. The administrator is testing to ensure the policy is working correctly. A server in the accounting OU works as expected, but a server in the sales OU is still allowing access to USB drives. The administrator runs the gpupdate /force command and tries again; however, the server still allows access to the USB drive.

  Which of the following is the MOST likely cause?

  A. The WMI filter is not configured properly.

  B. Item-level targeting is not configured properly.

  C. The scope is not configured properly.

  D. Loopback processing is not configured properly.

  Correct Answer: B

  A nice detailed article on this can be found here "https://www.policypak.com/resources/pp-blog/gpo-item-level-targeting/"

• Question 324:

  A technician recently applied a patch to a working server. After rebooting, the technician notices the server is unable to connect to a nearby database server. The technician validates a connection can be made to the database from another host.

  Which of the following is the best NEXT step to restore connectivity?

  A. Enable HIDS.

  B. Change the service account permissions.

  C. Check the rewall rules.

  D. Roll back the applied patch.

  Correct Answer: D

  Have to bring server back up before troubleshooting.

• Question 325:

  Users report they are unable to access an application after a recent third-party patch update. The physical server that is hosting the application keeps crashing on reboot. Although the update was installed directly from the manufacturer's support website as recommended, it has now been recalled and removed from the website, as the update unintentionally installed unauthorized software after a reboot.

  Which of the following steps should the administrator perform to restore access to the application while minimizing downtime? (Choose two.)

  A. Uninstall recent updates.

  B. Reimage the server with a different OS.

  C. Run a port scan to verify open ports.

  D. Enable a GPO to uninstall the update.

  E. Scan and remove any malware.

  F. Reformat the server and restore the image from the latest backup.

  Correct Answer: AE

  A. Uninstall recent updates.

  E. Scan and remove any malware.

  The first step the administrator should take is to uninstall the recent update, as it is causing the server to crash and preventing access to the application. This will help to restore access to the application without any further downtime.

  In addition, the administrator should also scan and remove any malware that may have been inadvertently installed as a result of the unauthorized software that was installed by the recent update. This will help to ensure that the server is secure and prevent any future issues.

  Options B, C, D, and F are not necessary or recommended for this situation. Reimaging the server with a different OS or reformatting the server and restoring from backup would result in significant downtime and may not address the root cause of the issue. Running a port scan and enabling a GPO to uninstall the update are not necessary for resolving this issue.

• Question 326:

  An administrator is investigating a physical server that will not boot into the OS. The server has three hard drives configured in a RAID 5 array. The server passes POST, but the OS does not load. The administrator veri es the CPU and RAM are both seated correctly and checks the dual power supplies. The administrator then veri es all the BIOS settings are correct and connects a bootable USB drive in the server, and the OS loads correctly. Which of the following is causing the issue?

  A. The page le is too small.

  B. The CPU has failed.

  C. There are multiple failed hard drives.

  D. There are mismatched RAM modules.

  E. RAID 5 requires four drives.

  Correct Answer: C

• Question 327:

  Which of the following load-balancing methods would be BEST described as each connection selecting the next path?

  A. Least connection

  B. Source hashed

  C. Most recently used

  D. Round robin

  Correct Answer: D

  Round robin - Assigns connections in order Most recently used (MRU) - Attempts to use existing machines for the workload but can spin up new VMs if needed Weighted scheduling - Used when the server's hardware capabilities vary, allocating more connections to the more powerful servers

• Question 328:

  Which of the following should be configured in pairs on a server to provide network redundancy?

  A. MRU

  B. SCP

  C. DLP

  D. CPU

  E. NIC

  Correct Answer: E

  The network component that should be configured in pairs on a server to provide network redundancy is the NIC (Network Interface Card).

  NIC redundancy can be achieved by installing two NICs on a server and configuring them in a team or bond. This allows for the NICs to work in tandem and provide redundancy in case one of the NICs fails or experiences issues. If one NIC fails, the other NIC can continue to handle the network traffic, which helps to ensure that the server remains connected to the network and available.

  While other components listed may have redundancy options or configurations, they do not provide network redundancy in pairs on a server. MRU (Maximum Receive Unit) is a networking term that refers to the largest size of a packet that can be received on a network interface. SCP (Secure Copy Protocol) is a protocol used for securely transferring files between systems. DLP (Data Loss Prevention) is a strategy or technology used to prevent the loss or theft of sensitive data. CPU (Central Processing Unit) is a hardware component that processes instructions in a computer.

• Question 329:

  A new Windows server has been introduced to the network. The server administrator is trying to connect remotely to the server but is unsuccessful. Basic troubleshooting shows the server is visible on the network. Which of the following should be configured on the server to be able to connect remotely? (Choose two.)

  A. Remote desktop connection

  B. Remote procedure call

  C. Remote assistance

  D. Port 443

  E. Port 3389

  F. Port 5900

  Correct Answer: AE

• Question 330:

  An administrator has been asked to verify that all tra c egressing from a company is secured. The administrator con rms all the information that is sent over the network is encrypted. Which of the following describes the type of tra c being encrypted?

  A. Network encapsulation

  B. Off-site data

  C. Secure FTP

  D. Data in transit

  Correct Answer: D