You have a computer that runs Windows 7. You need to record when an incoming connection is allowedthrough Windows firewall. What should you do?（）A、In Local Group Policy， modify the audit policy.B、In Local Group Policy， modify the system audit policy.C、Fr

第1题：

Your network contains an Active Directory domain. All servers run Windows Server 2008 R2.     You need to audit the deletion of registry keys on each server.     What should you do（）

• A、From Audit Policy， modify the Object Access settings and the Process Tracking settings.
• B、From Audit Policy， modify the System Events settings and the Privilege Use settings.
• C、From Advanced Audit Policy Configuration， modify the System settings and the Detailed Tracking settings.
• D、From Advanced Audit Policy Configuration， modify the Object Access settings and the Global Object Access Auditin

第2题：

You have a portable computer that runs Windows 7. The computer is joined to a domain. Multiple users logon to the computer. You need to prevent the computer from displaying the username of the last user whologged on. What should you do？（）

• A、From Control Panel， modify the User Profiles settings.
• B、From Control Panel， modify the Personalization settings.
• C、From the local computer policy， add a policy template.
• D、From the local computer policy， modify the local security policy.

第3题：

You have a portable computer that runs Windows 7. Windows Backup is configured to run every day at15:00. You need to prevent backups from automatically running when the computer is running on thebattery.  What should you do?（）

• A、From Backup and Restore， click Change settings.
• B、From Task Scheduler， modify the AutomaticBackup task.
• C、From Power Options， modify the settings of the current power plan.
• D、From the local computer policy， modify the power management settings.

第4题：

You have a computer that runs Windows XP Professional. Many users share the computer. You install a local print device on the computer. You need to ensure that only members of a local group named Engineering can print documents to the local print device. Which settings should you modify on the printer?（） 

• A、port
• B、priority
• C、security
• D、share

第5题：

You have a server named Server1 that runs Windows Server 2003 Service Pack 2 （SP2）.  You open the IP Security Monitor snap-in and see the information shown in the exhibit. （Click the Exhibit button.） You need to ensure that all communications to Server1 are encrypted.  What should you do？（）

• A、Modify the Local Security Policy on Server1.
• B、Modify the Research IPSec Policy Group Policy object.
• C、Enable Windows Firewall and do not allow exceptions.
• D、From the Properties of the Local Area Connection， modify the Authentication settings.

第6题：

You have a computer that runs Windows 7. You need to provide standard users the ability to update thedrivers for display adapters.  What should you modify from the Local Group Policy?（）

• A、device installation settings for the computer.
• B、display settings for the user.
• C、driver installation settings for the computer.
• D、driver installation settings for the user.

第7题：

You need to recommend a strategy for managing Windows Firewall that meets the companys technical requirements. What should you include in the recommendation？（）

• A、domain-based Group Policy objects （GPOs）
• B、local Group Policy objects （GPOs）
• C、Starter Group Policy objects （GPOs）
• D、System Starter Group Policy objects （GPOs）

第8题：

You have a computer that runs Windows 7. Multiple users log on to the computer. The computer has fiveremovable devices. You need to ensure that users can only access removable  devices that have beenpreviously installed on the computer.  What should you modify in the Local Group Policy ?（）

• A、Enable the Prevent redirection of USB devices setting.
• B、Enable the Prevent installation of removable devices setting.
• C、Disable the WPD Devices： Deny read access setting.
• D、Disable the Allow administrators to override Device Installation Restriction policies setting.

第9题：

Your network consists of a single Active Directory domain. You have a member server named Server1 that runs Windows Server 2003 Service Pack 2 （SP2）.You need to record all attempts by domain users and local users to log on to Server1. What should you do？（）

• A、In the Default Domain Controller Policy， enable success and failure for the Audit logon events policy setting.
• B、In the Default Domain Controller Policy， enable success and failure for the Audit account logon events policy setting.
• C、In the Local Security Policy on Server1， enable success and failure for the Audit logon events policy.
• D、In the Local Security Policy on Server1， enable success and failure for the Audit account logon events policy setting.

第10题：

第11题：

第12题：

第13题：

Your network contains an Active Directory domain. All domain controllers run Windows Server 2008  R2. Client computers run either Windows 7 or Windows Vista Service Pack 2 （SP2）.  You need to audit user access to the administrative shares on the client computers.   What should you do（）

• A、Deploy a logon script that runs Icacls.exe.
• B、Deploy a logon script that runs Auditpol.exe.
• C、From the Default Domain Policy， modify the Advanced Audit Policy Configuration.
• D、From the Default Domain Controllers Policy， modify the Advanced Audit Policy Configuration.

第14题：

You have a computer that runs Windows 7. You create an Encrypting File System (EFS) recovery key andcertificate. You need to ensure that your user account can decrypt all EFS files on the  computer.  Whatshould you do?（　）

• A、From Credential Manager， add a Windows credential.
• B、From Credential Manager， add a certificate-based credential.
• C、From the local computer policy， add a data recovery agent.
• D、From the local computer policy， modify the Restore files and directories setting.

第15题：

You have a computer that runs Windows 7. Multiple users log on to your computer. You enable auditing ona folder stored on your computer. You need to ensure that each access to the folder is logged.  What should you do?（）

• A、Start the Problem Steps Recorder.
• B、From Event Viewer， modify the properties of the Security log.
• C、From the local Group Policy， configure the Audit object access setting.
• D、From the local Group Policy， configure the Audit directory service Access setting.

第16题：

Your network contains an Active Directory domain named contoso.com. All domain controllers  and member servers run Windows Server 2008. All client computer run Windows 7.  From a client computer， you create an audit policy by using the Advanced Audit Policy  Configuration settings in the Default Domain Policy Group Policy object （GPO）.   You discover that the audit policy is not applied to the member servers.    The audit policy is  applied to the client computers.   You need to ensure that the audit policy is applied to all member servers and all client computers.     What should you do（）

• A、Add a WMI filter to the Default Domain Policy GPO
• B、Modify the security settings of the Default Domain Policy GPO
• C、Configure a startup script that runs auditpol.exe on the member servers.
• D、Configure a startup script that runs auditpol.exe on the domain controllers.

第17题：

Your network contains an Active Directory domain. All servers run Windows Server 2008 R2.   You need to audit the deletion of registry keys on each server.   What should you do（）

• A、From Audit Policy， modify the Object Access settings and the Process Tracking settings.
• B、From Audit Policy， modify the System Events settings and the Privilege Use settings.
• C、From Advanced Audit Policy Configuration， modify the System settings and the Detailed Tracking  settings.
• D、From Advanced Audit Policy Configuration， modify the Object Access settings and the Global Object  Access Auditing settings.

第18题：

You have a computer named Computer1 that runs Windows 7. You need to ensure that Computer1 canconnect to File Transfer Protocol (FTP) servers only while it is connected to a private network.  What should you do?（）

• A、From Windows Firewall with Advanced Security， create a new rule.
• B、From the local Group Policy， modify the application control policies.
• C、From Windows Firewall， modify the Allowed Programs and Features list.
• D、From Network and Sharing Center， modify the Advanced Sharing settings.

第19题：

Your network consists of a single Active Directory domain. The network contains a Terminal Server that runs Windows Server 2008， and client computers that run Windows Vista. All computers are members of the domain.   You deploy an application by using the TS RemoteApp Manager. The Terminal Servers security layer is set to Negotiate.  You need to ensure that domain users are not prompted for credentials when they access the application. What should you do？（）

• A、On the server， modify the Password Policy settings in the local Group Policy.
• B、On the server， modify the Credential Delegation settings in the local Group Policy.
• C、On all client computers， modify the Password Policy settings in the local Group Policy.
• D、On all client computers， modify the Credential Delegation settings in the local Group Policy.

第20题：

You have a computer named Computer1 that runs Windows 7. Computer1 has a shared printer. You needto configure Computer1 so that only Administrators are authorized to shut down the computer.  What should you do?（）

• A、From User Accounts， modify the user profiles settings.
• B、From User Accounts， modify the User Account Control （UAC） settings.
• C、From the local computer policy， modify the Security Options.
• D、From the local computer policy， modify the User Rights Assignment.

第21题：

第22题：

第23题：