2014 Latest Microsoft 70-687 Exam Dump Free Download!(51-60)

QUESTION 51
A company has an Active Directory Domain Services (AD DS) domain. All client computers run Windows 8. A local printer is shared from a client computer. The client computer user is a member of the Sales AD security group.
You need to ensure that members of the Sales security group can print to the shared printer and modify only their own print jobs. Which permission should you grant to the Sales group?

A.    Manage queue
B.    Print
C.    Manage documents
D.    Manage this printer
E.    Manage spooler

Answer: B

QUESTION 52
A company has an Active Directory Domain Services (AD DS) domain. All client computers run Windows Vista and are members of the domain.
A Group Policy object (GPO) configuring a software restriction policy is implemented in the domain to block a specific application. You upgrade a computer to Windows 8 and implement a GPO that configures an AppLocker rule in the domain. The blocked application runs on the Windows 8 computer but not on the Windows Vista computers.
You need to ensure that the application is blocked from running on all computers and the AppLocker rule is applied to the computers in the domain.
What should you do?

A.    Add the blocked application as an additional AppLocker rule to the GPO that configures AppLocker.
B.    Run the Get-AppLockerPolicy Windows PowerShell cmdlet.
C.    Run the Set-ExecutionPolicy Windows PowerShell cmdlet.
D.    Configure the software restriction policy as a local policy on the Windows 8 computer.
E.    Add the blocked application as a software restriction policy to the GPO that configures AppLocker.

Answer: A

QUESTION 53
A company has an Active Directory Domain Services (AD DS) domain. Client computers in the Test department run Windows 8 and are connected to the domain.
You need to ensure that Windows updates are not automatically applied and cannot be enabled by users. What should you do?

A.    Create a Group Policy object (GPO) to enable the Turn on recommended updates via Automatic
Updates policy setting.
B.    Configure Windows Update to install updates automatically.
C.    Create a Group Policy object (GPO) to configure the Remove access to use all Windows Update
features policy setting.
D.    Create a Group Policy object (GPO) to configure the Configure Automatic Updates policy setting.

Answer: C
Explanation:
Remove access to use all Windows Update features:
This Group Policy setting is located in User Configuration\Administrative Templates\Windows Components\Windows Update.
When you enable this setting, the operating system cannot be updated through Windows Update, and Automatic Updates is disabled. Users or administrators can still perform actions such as clicking the Windows Update option on the Start menu, and the Windows Update Web site will appear in the browser. However, it will not be possible to update the operating system through Windows Update, regardless of the type of account being used to log on.

QUESTION 54
A company has 100 client computers that run Windows 8.
You need to assign static IPv6 addresses to the client computers.
Which Windows Powershell cmdlet should you run?

A.    Set-NetTCPSetting
B.    Set-NetIPInterface
C.    Set-NetlPv6Protocol
D.    Set-NetIPAddress

Answer: D
Explanation:
Modifies IP address configuration properties of an existing IP address.

QUESTION 55
A company has an Active Directory Domain Services (AD DS) domain. All client computers run Windows 8 and are joined to the domain. All Sales department employees are members of the Sales organizational unit (CU). AppLocker rules control the installation of applicatior on client computers.
You create a new Group Policy object (GPO) to configure an AppLocker file hash rule. The file hash rule allows an application to run and links the application to the Sales OU. Several minutes later, you establish that the AppLocker rule is not present on some computers within SalesOU and the application cannot run.
You need to quickly ensure that the application can run.
What should you do?

A.    Run the Get-AppLockerPolicy Windows PowerShell cmdlet.
B.    Configure the AppLocker properties to enforce rules.
C.    Run the gpupdate /force command.
D.    Create a new AppLocker file hash condition.

Answer: C

QUESTION 56
You administer Windows 8 laptops in your company network. You install several custom desktop
applications on the laptops. You need to create a custom recovery image for Windows to use when selecting the Refresh your PC option. The custom recovery image must include the custom desktop applications.
Which command should you use to create the custom recovery image?

A.    Recdisc.exe
B.    Recover.exe
C.    Recimg.exe
D.    RecoveryDrive.exe

Answer: A

QUESTION 57
You administer Windows 8 client computers in your company network. A computer that is used by non-administrator users has a directory named C:\Folder1.
A shared collection of Microsoft Excel files is stored in the C:\Folder directory, with non-administrator users being granted modify permissions to the directory.
You discover that some files have been incorrectly modified by a user.
You need to determine which user made changes to the directory’s folder’s files.
Which two actions should you perform? (Each correct answer presents part of the solution.
Choose two.)

A.    Set local policy: Computer Configuration\Windows Settings\Security Settings\Local Policies\Audit
Policy \Audit object access to Failure.
B.    From the Auditing Entry for Folder1, set the Principal to Guests, and then set the Type to Failure
for the Modify permission.
C.    From the Auditing Entry for Folder1, set the Principal to Everyone, and then set the Type to Success
for the Modify permission.
D.    Set local policy: Computer Configuration\Windows Settings\Security Settings\Local Policies\Audit
Policy \Audit object access to Success.

Answer: CD
Explanation:
We must audit for success, as we want to know which user has modified the file.

QUESTION 58
A company has an Active Directory Domain Services (AD DS) domain. All client computers run Windows 8. Portable client computers no longer connect to the corporate wireless network.
You need to ensure that when the corporate wireless network is available, the computers always connect to it automatically. Which two actions would achieve the goal? (Each correct answer presents a complete solution.
Choose two.)

A.    Create a Group Policy object (GPO) to configure a wireless network policy. Link the GPO to the
organizational unit that contains the computers.
B.    Configure the corporate wireless network as an unmetered network.
C.    Configure the corporate wireless network as a preferred network.
D.    Manually connect to the corporate wireless network and select the option to connect automatically
to that network.

Answer: CD

QUESTION 59
A company has client computers that run Windows 8. The client computers are connected to a corporate private network. Users are currently unable to connect from their home computers to their work computers by using Remote Desktop.
You need to ensure that users can remotely connect to their office computers by using Remote Desktop. Users must not be able to access any other corporate network resource from their home computers. Which setting should you configure on the home computers?

A.    Virtual Private Network connection
B.    Remote Desktop local resources
C.    DirectAccess connection
D.    Remote Desktop Gateway IP address

Answer: D
Explanation:
http://technet.microsoft.com/en-us/library/cc731435.aspx
Remote Desktop Gateway allows a home computer to remote into the work computer. The Work computer can access corporate network resources, just as if the worker was at the workstation, but the HOME COMPUTER cannot access corporate resources.
RD RAPs will enable us to control remote user access to internal network resources. With RD CAPs we can control which Users or Computers can connect via RDP.
VPN provides the HOME computer with an IP Address directly of the Corporate private network, giving the HOME computer access to the corporate private resources

QUESTION 60
A company has 100 client computers that run Windows 8. The client computers are connected to a corporate private network. Users are currently unable to connect from their home computers to their work computers by using Remote Desktop.
You need to ensure that users can remotely connect to their office computers by using Remote Desktop. Users must not be able to access any other corporate network resource from their home computers. What should you do?

A.    Configure a Virtual Private Network connection.
B.    Configure the Remote Desktop Gateway IP address in the advanced Remote Desktop Connection
settings on each client.
C.    Configure the local resource settings of the Remote Desktop connection.
D.    Configure a DirectAccess connection.

Answer: B
Explanation:
While connecting the computers you will find a couple of options related to VPN and
Desktop Assistance.
See Understanding Authorization Policies for Remote Desktop Gateway:
http://technet.microsoft.com/en-us/library/cc731435.aspx
RD RAPs will enable us to control remote user access to internal network resources.
With RD CAPs we can control which Users or Computers can connect via RDP.
Configure the Remote Desktop Gateway IP address in the advanced Remote Desktop
Connection settings on each client.
 clip_image001
DirectAccess is for Windows Server 2008/2012/Win 7 Ultimate/Enterprise/Win 8 Enterprise
only.
RD Gateway setup is only for servers.
Create VPN through manage networks. File -> Allow incoming connections.
Connect through Internet and create VPN which will allow one computer at a time to view
the hosts resources, and only the hosts resources unlike standard VPNs.

Passing Microsoft 70-687 Exam successfully in a short time! Just using Braindump2go’s Latest Microsoft 70-687 Dump:http://www.braindump2go.com/70-687.html