Microsoft MCSE 2003 Security 70-293 Exam

After you purchase,you can download this product yourself.Have any questions,please click live chat.

Free 70-293 Demo Download

just4exam offers free demo for MCSE 2003 Security 70-293 exam (Planning and Maintaining a Microsoft Windows Server 2003 Network Infrastructure). You can check out the interface, question quality and usability of our practice exams before you decide to buy it. We are the only one site can offer demo for almost all products.

Download 70-293 PDF

Exam 70-293 Preparation from just4exam braindumps include:

After you purchase our product, we will offer free update in time for 90 days.
100% Pass Guaranteed at First Attempt Or Full Refund
Immediate Download After Purchase
Comprehensive questions with complete details
Questions accompanied by exhibits
Verified Answers Researched by Industry Experts
Drag and Drop questions as experienced in the just4exam
Questions updated on regular basis
These questions and answers are backed by our GUARANTEE
Like actual certification exams our product is in multiple-choice questions (MCQs)

Passing the Microsoft 70-293 Exam:Passing the 70-293 exam has never been faster or easier, now with actual questions and answers, without the messy 70-293 braindumps that are frequently incorrect. just4exam Unlimited Access Exams are not only the cheaper way to pass without resorting to 70-293 dumps, but at only $ 45.00 you get access to the exam from every certification vendor.

Our 70-293 practice exams and study questions are composed by current and active Information Technology experts, who use their experience in preparing you for your future in IT.

Microsoft 70-293 Search Help Feel free to use search terms below while searching the Net for 70-293 exam:

70-293 brain dump simulations
70-293 brain dumps question
70-293 braindump work
70-293 master braindumps
70-293 braindump model
70-293 latest braindumps

Commitment to Your Success:

At just4exam we are committed to you ongoing success. Our braindumps are constantly being updated and compared to industry standards.

You are not about to purchase a disposable product. 70-293 braindumps updates are supplied free of charge. Regardless of how soon you decide to take the actual 70-293 examination certification, you will be able to walk into the testing room as confident as the Certification Administrator.

Skip all the worthless 70-293 exam tutorials and download 70-293 exam materials with real questions and answers and a price too unbelievable to pass up. Act now and download your Actual Tests today!

http://www.just4exam.net The safer.easier way to get MCSE 2003 Security Certification.
　
　
Exam : Microsoft 70-293
Title : Plan. and Maint. a MSWin Srvr2003 Net. Infrastructure


1. You are the network administrator for your company. The network consists of a single Active Directory domain.
The company's written security policy requires that computers in a file server role must have a minimum file size for event log settings. In the past, logged events were lost because the size of the event log files was too small. You want to ensure that the event log files are large enough to hold history. You also want the security event log to be cleared manually to ensure that no security information is lost. The application log must clear events as needed.
You create a security template named Fileserver.inf to meet the requirements. You need to test each file server and take the appropriate corrective action if needed. You audit a file server by using Fileserver.inf and receive the results shown in the exhibit. (Click the Exhibit button.)
You want to make only the changes that are required to meet the requirements.
Which two actions should you take? (Each correct answer presents part of the solution. Choose two.)
A. Correct the Maximum application log size setting on the file server.
B. Correct the Maximum security log size setting on the file server.
C. Correct the Maximum system log size setting on the file server.
D. Correct the Retention method for application log setting on the file server.
E. Correct the Retention method for security log setting on the file server.
F. Correct the Retention method for system log setting for the file server.
Answer: BE

2. You are a network administrator for your company. The network consists of a single Active Directory domain. All servers run Windows Server 2003. All client computers run Windows XP Professional.
The Active Directory domain contains three organizational units (OUs): Payroll Users, Payroll Servers, and Finance Servers. The Windows XP Professional computers used by the users in the payroll department are in the Payroll Users OU. The Windows Server 2003 computers used by the payroll department are in the Payroll Servers OU. The Windows Server 2003 computers used by the finance department are in the Finance Servers OU.
You are planning the baseline security configuration for the payroll department. The company's written security policy requires that all network communications with servers in the Payroll Servers OU must be secured by using IPsec. The written security policy states that IPSec must not be used on any other servers in the company.
You need to ensure that the baseline security configuration for the payroll department complies with the written security policy. You also need to ensure that members of the Payroll Users OU can access resources in the Payroll Servers OU and in the Finance Servers OU.
What should you do?
A. Create a Group Policy object (GPO) and assign the Secure Server (Require Security) IPSec policy setting. Link the GPO to only the Payroll Servers OU.
　Create a second GPO and assign the Client (Respond Only) IPSec policy setting. Link the second GPO to the Payroll Users OU.
B. Create a Group Policy object (GPO) and assign the Secure Server (Require Security) IPSec policy setting. Link the GPO to the Payroll Servers OU and to the Finance Servers OU.
　Create a second GPO and assign the Client (Respond Only) IPSec policy setting. Link the second GPO to the Payroll Users OU.
C. Create a Group Policy object (GPO) and assign the Server (Request Security) IPSec policy setting. Link the GPO to only the Payroll Servers OU.
　Create a second GPO and assign the Client (Respond Only) IPSec policy setting. Link the second GPO to the Payroll Users OU.
D. Create a Group Policy object (GPO) and assign the Server (Request Security) IPSec policy setting. Link the GPO to the Payroll Servers OU and to the Finance Servers OU.
　Create a second GPO and assign the Client (Respond Only) IPSec policy setting. Link the second GPO to the Payroll Users OU.
Answer: A

3. You are the network administrator for your company. The network consists of a single Active Directory domain. The network contains two Windows Server 2003 domain controllers, two Windows 2000 Server domain controllers, and two Windows NT Server 4.0 domain controllers.
All file servers for the finance department are located in an organizational unit (OU) named Finance Servers. All file servers for the payroll department are located in an OU named Payroll Servers. The Payroll Servers OU is a child OU of the Finance Servers OU.
The company's written security policy for the finance department states that departmental servers must have security settings that are enhanced from the default settings. The written security policy for the payroll department states that departmental servers must have enhanced security settings from the default settings, and auditing must be enabled for file or folder deletion.
You need to plan the security policy settings for the finance and payroll departments.
What should you do?
A. Create a Group Policy object (GPO) to apply the Compatws.inf security template to computer objects, and link it to the Finance Servers OU.
　Create a second GPO to enable the Audit object access audit policy on computer objects, and link it to the Payroll Servers OU.
B. Create a Group Policy object (GPO) to apply the Securews.inf security template to computer objects, and link it to the Finance Servers OU.
　Create a second GPO to enable the Audit object access audit policy on computer objects, and link it to the Payroll Servers OU.
C. Create a Group Policy object (GPO) to apply the Compatws.inf security template to computer objects, and link it to the Finance Servers OU.
　Create a second GPO to apply the Hisecws.inf security template to computer objects, and link it to the Payroll Servers OU.
D. Create a Group Policy object (GPO) to apply the Securews.inf security template to computer objects, and link it to the Finance Servers and to the Payroll Servers OUs.
　Create a second GPO to enable the Audit object access audit policy on computer objects, and link it to the Payroll Servers OU.
Answer: B

4. You are the network administrator for your company. The network consists of a single Active Directory domain. The functional level of the domain is Windows Server 2003. The domain contains an organizational unit (OU) named Servers that contains all of the company's Windows Server 2003 resource servers. The domain also contains an OU named Workstations that contains all of the company's Windows XP Professional client computers.
You configure a baseline security template for resource servers named Server.inf and a baseline security template for client computers named Workstation.inf. The Server.inf template contains hundreds of settings, including file and registry permission settings that have inheritance propagation enabled. The Workstation.inf template contains 20 security settings, none of which contain file or registry permissions settings.
The resource servers operate at near capacity during business hours.
You need to apply the baseline security templates so that the settings will be periodically enforced. You need to accomplish this task by using the minimum amount of administrative effort and while minimizing the performance impact on the resource servers.
What should you do?
A. Create a Group Policy object (GPO) and link it to the domain. Import both the Server.inf and the Workstation.inf templates into the GPO.
B. Import both the Server.inf and the Workstation.inf templates into the Default Domain Policy Group Policy object (GPO).
C. On each resource server, create a weekly scheduled task to apply the Server.inf settings during off-peak hours by using the secedit command. Create a Group Policy object (GPO) and link it to the Workstations OU. Import the Workstation.inf template into the GPO.
D. On each resource server, create a weekly scheduled task to apply the Server.inf settings during off-peak hours by using the secedit command. Import the Workstation.inf template into the Default Domain Policy Group Policy object (GPO).
Answer: C

5. You are a network administrator for your company. The network consists of a single Active Directory domain. The network contains 80 Web servers that run Windows 2000 Server. The IIS Lockdown Wizard is run on all Web servers as they are deployed.
Your company is planning to upgrade its Web servers to Windows Server 2003. You move all Web servers into an organizational unit (OU) named Web Servers.
You are planning a baseline security configuration for the Web servers. The company's written security policy states that all unnecessary services must be disabled on servers. Testing shows that the server upgrade process leaves the following unnecessary services enabled:
* SMTP
* Telnet
Your plan for the baseline security configuration for Web servers must comply with the written security policy.
You need to ensure that unnecessary services are always disabled on the Web servers.
What should you do?
A. Create a Group Policy object (GPO) to apply a logon script that disables the unnecessary services. Link the GPO to the Web Servers OU.
B. Create a Group Policy object (GPO) and import the Hisecws.inf security template. Link the GPO to the Web Servers OU.
C. Create a Group Policy object (GPO) to set the startup type of the unnecessary services to Disabled. Link the GPO to the Web Servers OU.
D. Create a Group Policy object (GPO) to apply a startup script to stop the unnecessary services. Link the GPO to the Web Servers OU.
Answer: C