Download New Updated (June) Microsoft 70-663 Practice Test Topic 2, Volume B part04

Ensurepass

QUESTION 91  (Topic 2)

 

You have an Exchange Server 2010 organization.

 

You plan to delegate administration of the organization.

 

You have a group named Technicians that contains all the level-two technicians in the organization.

 

You need to ensure that the Technicians group can manage the properties of all the mailbox databases. The solution must minimize the number of permissions assigned to the Technicians group.

 

Which management role should you assign to the Technicians group?

 

A.

Help Desk

B.

Organization Management

C.

Recipient Management

D.

Server Management

 

Answer: B

Explanation:

clip_image002

 

clip_image004

 

 

 

Organization Management – The Organization Management role group is synonymous with the Exchange Full Administrator role in Exchange 2003 and the Exchange Organization Administrators role in Exchange 2007.

Essentially, membership of this management role group gives the user the ability to perform pretty much any task in Exchange 2010, with the main missing task being the ability to perform mailbox searches; that itself is achieved via the Discovery Management role group.

Server Management – This management role group gives the ability to manage all Exchange servers within the organization. Permissions granted as membership of this management role group therefore work at the Server Configuration level found in the Exchange Management Console and do not work at, say, the Organization Configuration level found in the Exchange Management Console.

http://technet.microsoft.com/en-us/library/dd638105.aspx

 

 

QUESTION 92  (Topic 2)

 

A corporate environment includes Exchange Server 2010 SP1 and an Active Directory Domain Services (AD DS) domain. Client computers run Microsoft Outlook 2010.

 

You need to recommend an approach for identifying when a mailbox is accessed by someone other than the mailbox owner.

 

What should you recomme
nd?

 

A.

Run a report from the Exchange Control Panel (ECP).

B.

Run the Get-LogonStatistics cmdlet.

C.

Search the message tracking logs.

D.

Run the Search-AdminAuditLog cmdlet.

 

Answer: A

Explanation: The Non-Owner Mailbox Access Report in the Exchange Control Panel lists the mailboxes that have been accessed by someone other than the person who owns the mailbox.

You have to enable mailbox audit logging for each mailbox that you want to run a non- owner mailbox access report for. If mailbox audit logging isn’t enabled, you won’t get any results when you run a report. To enable mailbox audit logging for a single mailbox, run the

 

 

 

following Windows PowerShell command:

Set-Mailbox “Florence Flipo” -AuditEnabled $true

 

clip_image006

 

 

QUESTION 93  (Topic 2)

 

A corporate environment includes an on-premise deployment of Exchange Server 2010 SP1 and client computers that run Microsoft Outlook 2010. An Active Directory Domain Services (AD DS) domain named contoso.com contains user accounts for all employees.

 

The company plans to move the mailboxes of the Sales team members to a cloud-based Exchange Server 2010 SP1 service provider. Sales team members will have primary email addresses of contoso.com and secondary email addresses of cloud.contoso.com.

 

You need to recommend a solution for ensuring that the Autodiscover service continues to configure Outlook for all users.

 

What should you recommend?

 

A.

Run the Export-AutoDiscoverConfig cmdlet.

B.

Mail-enable the on-premise AD DS user accounts of the Sales team members with email addresses of cloud.contoso.com.

C.

Create a new Autodiscover virtual directory.

D.

Configure the ExternalUrl property of the Autodiscover virtual directory to autodiscover.cloud.contoso.com.

 

Answer: C

Explanation:There are two domains: contoso.com and cloud.contoso.com. So there are two SMTP name spaces. When the client tries to connect to your Microsoft Exchange messaging environment, the client locates the Autodiscover service on the Internet by using the right side of the user’s e-mail address that was entered. Notice that, for the Autodiscover service to function correctly, this must be the user’s primary SMTP address.

The Autodiscover service URL will be either of the following URLs:

https://<smtp-address-domain>/autodiscover/autodiscover.xml https://autodiscover.<smtp-address-domain>/autodiscover/autodiscover.xml.

 

On-Premise

For on-premise users to use the autodiscover service (where a user’s mailbox resides on- premise) there needs to be an A host record (other options are available, see the white paper ) created in external DNS that points to the externally facing IP address of the configured listener on TMG for example(for more details on publishing Exchange 2010 with UAG and TMG please see the following white paper – http://www.microsoft.com/download/en/details.aspx?displaylang=en&id=8946)

 

Office 365

For user’s who have a mailbox located in O365 there needs to be a CNAME record created for the service address space office365.company.com that points to autodiscover.outlook.com.

Example ?autodiscover.office365.company.com ->; autodiscover.outlook.com When an on-premise mailbox is migrated to O365 their on-premise TargetAddress attribute will be updated to point to office365.company.com service namespace. Therefore when a user’s mailbox has been migrated to Office365 and Outlook attempts to autodiscover, Exchange will return the TargetAddress back to the user and Outlook will then lookup the autodiscover service at office365.company(which in turn points to O365) and will create the profile. See the diagram below for the process flow.

 

About Autodiscover:

Autodiscover service provides the following information to the client:

 

 

 

The user’s display name

Separate connection settings for internal and external connectivity The location of the user’s Mailbox server

The URLs for various Outlook features that govern functionality such as free/busy information, Unified Messaging, and the offline address book Outlook Anywhere server settings

 

When a user’s Exchange information is changed, Outlook automatically reconfigures the user’s profile using the Autodiscover service. For example, if a user’s mailbox is moved or the client can’t connect to the user’s mailbox or to available Exchange features, Outlook will contact the Autodiscover service and automatically update the user’s profile to include the information that’s required to connect to the mailbox and Exchange features.

 

For external access, or using DNS, the client locates the Autodiscover service on the Internet by using the primary SMTP domain address from the user’s e-mail address. New-AutodiscoverVirtualDirectory -Websitename <websitename> – BasicAuthentication:$true –

WindowsAuthentication:$true

 

clip_image008

 

 

QUESTION 94  (Topic 2)

 

 

A corporate environment includes Exchange Server 2010 and client computers that run Microsoft Outlook 2010.

 

The Exchange Server environment includes public folders.

 

Specific users must be able to perform the following tasks:

 

Create subfolders in the public folder hierarchy

Delete only items they create in the subfolders

 

You need to recommend a solution that enables the users to perform the tasks.< /span>

 

What should you recommend?

 

A.

Assign the users to the Editor role.

B.

Assign the users to the Owner role.

C.

Assign the users to the PublishingEditor role.

D.

Assign the users to the PublishingAuthor role.

 

Answer: D

 

 

QUESTION 95  (Topic 2)

 

Your network contains an Active Directory forest named contoso.com and two Active Directory sites named Site1 and Site2.

 

You plan to deploy an Exchange Server 2010 Service Pack 1 (SP1) organization.

 

An independent consultant recommends a design for the Exchange Server 2010 SP1 deployment as shown in the following table.

 

 

 

clip_image010

 

You need to recommend a change to the current Exchange Server 2010 SP1 design that will ensure that all users can access their mailbox if DC1 or DC2 fails.

 

Which change should you recommend?

 

A.

shadow redundancy

B.

an activation preference for a database

C.

a database availability group (DAG)

D.

Datacenter Activation Coordination (DAC) mode

E.

a DNS server on DC2

F.

delayed acknowledgments (ACKs)

G.

local continuous replication (LCR) on EX1, EX2, EX3, and EX4

H.

a single copy cluster (SCC)

I.

DNS round robin on DC1 and DC2

J.

Edge Transport server cloned configuration

K.

EdgeSync synchronization

L.

a Hosts file on EX1, EX2, EX3, and EX4

 

Answer: E

 

 

QUESTION 96  (Topic 2)

 

A corporate environm
ent includes Exchange Server 2007 SP2 and an Active Directory Domain Services (AD DS) domain named contoso.com. The Client Access server, cas01.contoso.com, has an SSL certificate. The SSL certificate includes mail.contoso.com and autodiscover.contoso.com. Outlook Anywhere is disabled. Client computers run Microsoft Office Outlook 2007.

 

 

After you transition the Exchange Server environment to Exchange Server 2010, Outlook displays a warning message indicating that the SSL certificate is not trusted for connections to cas01.contoso.com.

 

You need to recommend an approach to resolving the problem.

 

What should you recommend?

 

A.

Set the Client Access server AutoDiscoverServiceInternalUri property to autodiscover.contoso.com.

B.

Set the Client Access server array FQDN property to mail.contoso.com.

C.

Set the Autodiscover virtual directory ExternalUrl property to autodiscover.contoso.com.

D.

Set the Autodiscover virtual directory InternalUrl property to mail.contoso.com.

 

Answer: A

Explanation:Exchange 2010 publishes the AutoDiscoverServiceInternalUri in AD as soon as you install the server.

 

Outlook clients look for this property in AD and poll Autodiscover to check that there settings are correct. You are getting the certificate errors because the clients are seeing the new servers but cannot check their settings.

 

clip_image012

 

To configure the servers run the following:

Set-ClientAccessServer -AutoDiscoverServiceInternalUri:

https://CasArrayName.domain.com/

Autodiscover/Autodiscover.xml

Check the AutoDiscoverServiceInternalUri with the following command:

Get-ClientAccessServer | ft Identity,AutoDiscoverServiceInternalUri

 

 

 

clip_image014

 

 

QUESTION 97  (Topic 2)

 

You have an Exchange Server 2010 organization.

 

An Edge Transport server sends and receives all e-mail messages from the internet.

 

You notice that some servers on the Internet identify e-mail messages from your organization as spam.

 

You need to minimize the possibility that e-mail messages send from your organization are identified as spam.

 

What should you do?

 

A.

Implement Microsoft Forehead Security for Exchange Server.

B.

Create SenderID TXT records for the Edge Transport servers.

C.

Configure the Edge Transport servers to use a real-time block list (RBL).

D.

Install a server certificate from a trusted third-party certification authority (CA).

 

Answer: B

Explanation:In Exchange 2010, Sender ID makes spoofing more difficult. When you enable Sender ID, each message contains a Sender ID status in the metadata of the message. When an e- mail message is received, the Edge Transport server queries the sender’s DNS server to verify that the IP address from which the message was received is authorized to send messages for the domain that’s specified in the message headers. The IP address of the authorized sending server is referred to as the purported responsible address (PRA).

 

 

 

clip_image016

 

SPF records identify authorized outbound e-mail servers. If an SPF record is configured on the sender’s DNS server, the Edge Transport server parses the SPF record and determines whether the IP address from which the message was received is authorized to send e-mail on behalf of the domain that’s specified in the message.

 

clip_image018

 

The Edge Transport server updates the message metadata with the Sender ID status based on the SPF record. After the Edge Transport server updates the message metadata, the Edge Transport server delivers the message as it ordinarily would. http://technet.microsoft.com/en-us/library/aa996295.aspx

 

 

QUESTION 98  (Topic 2)

 

Your network contains two Active Directory forests. The forests contain domain controllers that run Windows Server 2008 R2. The forests are configured as shown in the following table.

 

 

 

clip_image020

 

A one-way forest trust exists from adatum.com to litwareinc.com.

 

You plan to deploy an Exchange Server 2010 Service Pack 1 (SP1) organization. The organization will contain Mailbox servers in litwareinc.com.

 

You need to ensure that users in adatum.com can access the mailboxes in the Exchange organization.

 

What should you do?

 

A.

Create a forest trust from litwareinc.com to adatum.com. Create linked mailboxes in litwareinc.com.

B.

Create a forest trust from litwareinc.com to adatum.com. Create resource mailboxes in litwareinc.com.

C.

Change the forest trust to an external trust. Create linked mailboxes in litwareinc.com.

D.

Deploy Mailbox servers to adatum.com. Create resource mailboxes in litwareinc.com.

 

Answer: A

Explanation:The domain where the user account requesting access is located is referred to as the trusted domain.

The domain that contains a shared resource that a user account is trying to access is referred to as the trusting domain.

From a domain controller in the Exchange forest, create a one-way outgoing trust so that the Exchange forest trusts the accounts forest.

 

 

 

clip_image022

 

Although we recommend that you create a forest trust, you can create either a forest trust or an external trust. Answer C is not correct here because we need trust fom Exchange to User forest.

 

clip_image024

 

 

 

clip_image026

 

Linked mailboxes are user mailboxes that are accessed by users in a separate, trusted forest. Linked mailboxes may be necessary for organizations that choose to deploy Exchange in a resource forest. Each mailbox that you create in the Exchange resource forest must have a disabled user object in the Exchange resource forest and an enabled user account in the accounts forest. Additionally, the accounts forest account must have access to log on to the linked mailbox that you create on the Exchange Server 2010 servers.

 

clip_image028

 

Every mailbox must have a user account associated with it. However, the user account that will access the linked mailbox doesn’t exist in the forest where Exchange is deployed.

 

 

 

Therefore, a disabled user account that exists in the same forest as Exchange must be created and associated with each linked mailbox, which is the new user account to which this wizard page is referring.

 

clip_image030

 

 

 

clip_image032

 

Master Account is a user account that can access the domain controller in the trusted forest. You can’t use the credentials with which you are currently logged on. On the Master Account page, complete the following fields:

Trusted forest or domain Click Browse to open the Select Trusted Forest or Domain dialog box. Use this dialog box to select the forest or domain that contains the master account, and then click OK. This enables the Browse button for the Linked domain controller field. Use the following Windows user account to access linked domain controller To access the domain controller in the trusted forest or domain, you can use credentials other than the ones with which you are currently logged on. If you want to specify a different user account, select this check box, and then use the User name and Password boxes to type your credentials.

Linked domain controller Click Browse to open the Select Domain Controller dialog box. Use this dialog box to select the linked domain controller that you want to use, and then click OK. Selecting a valid linked domain controller enables the Browse button for the Linked master account field.

 

Linked master account Click Browse to open the Select Master Account dialog box. Use this dialog box to select the user account that you want to use as the master account for the linked mailbox, and then click OK.

 

 

 

clip_image034

 

 

QUESTION 99  (Topic 2)

 

A corporate environment will include client computers that run Microsoft Outlook 2010. Email services will be provided to some users by a cloud-based Exchange Server 2010 SP1 service provider and to other users by an on-premise deployment of Exchange Server 2010 SP1.

 

You need to recommend a solution that will allow users in the cloud-based environment to receive internal Out of Office replies from users in the on-premise environment.

 

What should you recommend?

 

A.

Create an accepted domain.

B.

Create a transport rule.

C.

Create a remote domain.

D.

Create an organization relationship.

 

Answer: C

Explanation:The question is not talking about federation, therefore it is assumed that Federation does not exist.

You can create remote domain entries to define the settings for message transfer between the Microsoft Exchange Server 2010 organization and domains outside your Active Directory forest. When you create a remote domain entry, you control the types of messages that are sent to that domain. You can also apply message format policies and acceptable character sets for messages that are sent from users in your organization to the remote domain. The settings for remote domains are global configuration settings for the Exchange organization.

A remote domain is defined by the remote domain entry.

 

clip_image036

 

 

 

clip_image038

 

clip_image040

 

 

QUESTION 100  (Topic 2)

 

Your company has offices in New York and Miami. The offices connect to each other by using a dedicated WAN link. Each office has a direct connection to the Internet. An Active Directory site exists for each office. Each office contains one Mailbox server, two Hub Transport servers, and two Client Access servers. All servers have Exchange Server 2010 Service Pack 1 (SP1) installed and run Windows Server 2008 R2. The Mailbox servers are

 

 

configured as shown in the following table.

 

clip_image042

 

You need to recommend a high-availability solution for the Mailbox servers that meets the following requirements:

 

The mailbox databases must be automatically available if a single Mailbox server fails.

The mailbox databases must be automatically available if the WAN link between the offices fails.

The mailbox databases must be available if all of the Exchange servers in an office become unavailable, after an administrator performs a manual failover.

 

Which of the following solutions is the best recommendation? (More than one answer choice may achieve the goal. Select the BEST answer.)

 

A.

Add a Mailbox server to each office.

Create one database availability group (DAG).

Add all Mailbox servers to the DAG.

Add a file share witness to the Miami office.

Create a copy of each mailbox database.

B.

Add a Mailbox server to each office.

Create two database availability groups (DAGs).

Add one Mailbox server from each office to each DAG.

Add a file share witness to each office.

Create a copy of each mailbox database.

C.

Add two Mailbox servers to the Miami office.

Add one Mailbox server to the New York office.

Create
two database availability groups (DAGs).

Add all of the Mailbox servers in the Miami office to one of the DAGs. Add all of the Mailbox servers in the New York office to the other DAG. Add a file share witness to each office. Create a copy of each mailbox database.

D.

Add two Mailbox servers to each office.

Create one database availability group (DAG).

Add all of the Mailbox servers in the Miami office to the DAG.

Add a file share witness to the New York office.

Create a copy of each mailbox database.

 

Answer: B

 

Free VCE & PDF File for Microsoft 70-663 Real Exam

Instant Access to Free VCE Files: MCSE|MCSA|MCITP…
Instant Access to Free PDF Files: MCSE|MCSA|MCITP…