Need some answers with explanations for 70-413 microsoft exam.

Dear Experts,

i am planning to take microsoft exam 70-413, Designing and Implementing Server Infrastructure.

i have some questions, can anyone please give me answers and explanation for these answers.
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

yo_beeDirector of Information TechnologyCommented:
I would say NO:
AppLocker is a computer configuration. Loop back is used to target user setting when the User object resides outside of the OU's hierarchy that the GPO is applying to. When you are looking to only apply computer setting loop back is not needed. This question wants you to see if you know whether AppLocker settings are computer or User settings. Since this is a computer setting loop back is a  moot point.

So say you have loaner laptops that you want to lock down a bit more or less then the policy's the user gets normally. You would create a new OU that is either at the bottom of the OU hierarchy so all other GPO's apply or if you want to isolate it completely block inheritance. Move all laptops into the new OU. Create a GPO with loop back and then configure the user settings you want to apply only when the user logs on to these computer.  


I am not 100%, but set-filestorageteir.

Since you are looking to make sure that the sales team can see the report you would want to SET it rather then GET. By using SET you should just be reapplying.

No the way those cmdlets are written are not all correct.
Each cmdlets have a verb-noun. Some of them are written Verb_Noun. I am not sure if this is a typo or there to trick you.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
yo_beeDirector of Information TechnologyCommented:
Just realized that you had more then 2 questions.
This is a practice exam? Are there explanations to the questions at the end of the practice exam?

Some additional things about these questions.  
1: Lots of Typos
2: Very vague questions with answers that do require a bit more information to choose the right one.
yo_beeDirector of Information TechnologyCommented:

Answer is NO.
Reason is If you apply this to the top level of your Domain the GPO will apply to all computers (Assuming that is what the question is targeting).  
If you do apply this GPO to the top level you will need to apply Security Filtering/Scope.
By default all GPO's apply to authenticated user group (Computers and Users are part of this)
You would change this to only apply to eh SalesDevices Group for it to work properly.
The 7 Worst Nightmares of a Sysadmin

Fear not! To defend your business’ IT systems we’re going to shine a light on the seven most sinister terrors that haunt sysadmins. That way you can be sure there’s nothing in your stack waiting to go bump in the night.

yo_beeDirector of Information TechnologyCommented:
Answer: E

This is the utility used to sync your on Premise AD Domain with O365.  
You can run this on 2008 server as well as any newer one.
yo_beeDirector of Information TechnologyCommented:

I would say B:

Since the questions is only asking about authentication (assuming that is what they mean by Access issues).
All these questions are extremely vague and leave a lot of room for interoperation and assumption.  

A: There is no need for BranchCache enable. This is for files that are access regularly and rather then going across the wire to get them each time they are cached locally.  You can install the DC, but since the question is targeting authentication the Branch Cache would make this a wrong answer.

B: Since this is the only one that really targets authentication only I feel that this is the right answer to choice.  It gets a replication of all the AD objects from the datacenter so a user that is trying to authenticate in a remote office can use this server as a point of challenge.  This being said the Sites and Services component in your AD needs to also be configured correctly.

C: Similar to A reason the UGM really does not come into play here

D: Also Similar to A there is no need for GC strictly for authentication.
yo_beeDirector of Information TechnologyCommented:
Yet another question that does not outline how the security is required.

Do you need strictly ONE-WAY trust or TWO-WAY trust.

If yo need strictly a One-Way  the Answer is B

A: I am not sure and have not heard of Selective Trust option

B: This is the only one that makes sense since it is a One-Way Trust with an External (which is why you do a trust to begin with).  If they are part of the same Forest they would be trust implicitly. The reference to the External means that it is not part of the same forest.
C: This can also be a choice if you have multiple Domains in your Forest and you want the external trust to have access to all them.

D: Two-Way is internal has access to external and external has access to internal. This answer is leaving some items out. For that reason I would say no to this answer as well.
Dan CraciunIT ConsultantCommented:
@yo-bee: this seem to be questions from Lead2pass, which is a Chinese site that makes money by getting questions from exams from Cisco, Microsoft, etc and sells the answers, so the users can memorize those answers and pass the exams without really understanding the curriculum.
yo_beeDirector of Information TechnologyCommented:
Then it really is a scam.
Dan CraciunIT ConsultantCommented:

This type of site is the reason why you should not trust that someone certified actually knows what he/she's doing, unless it's a practical exam and not multiple choice.

That's why RedHat and SANS certificates are so valued.
Dan CraciunIT ConsultantCommented:
If you look at that site, the scheme is quite clever: if you don't pass the exam, then you get your money back.
But to prove you did not pass you need to supply them with the test results. And then you don't actually get your money back, since there's a provision that you can ask for a refund only if you bought a non discounted item. And everything is on sale :)

Considering most certification tests only have a few hundred questions and they change once a year or less, the site always has the most recent questions. At no cost.
And for the questions that they can't answer, there's always Q&A sites like this one.
yo_beeDirector of Information TechnologyCommented:
I never do.

We test our candidates that are interviewing.
Most of the time they fail the exam of 20 questions.
yo_beeDirector of Information TechnologyCommented:
So I just became a teacher for this guy by explaining these questions.

He should look into another angle like free YouTube and things like that.
MCIT-LibyaAuthor Commented:
Thanks yo_bee for your explanations, i am going through them.

yes i agree that candidate should be tested not on the basis of certificates only, he should be given practical tasks
MCIT-LibyaAuthor Commented:
Dear yo_bee,

it is not a scam at all, The intentions to post the  question was absolutely to understand  the answer that why it is right, that's why i mentioned specifically about the explanations.
yo_beeDirector of Information TechnologyCommented:
I was not saying the asker is scamming, but the service leap2pass is not giving the customer the needed tools.

It was not me saying it was a scam, but rather a statement.

Sorry for any confusion in the way i conveyed this.

I know nothing about Leap2Pass.
MCIT-LibyaAuthor Commented:
Dear Dan Craciun,

I agree with you that such websites play negative role and give easy paths to the certifications.

i wanted to understand these questions that's why i put them here. It's not a scam at all just for the  understanding.
yo_beeDirector of Information TechnologyCommented:
I was more then happy to give my thoughts on the questions.  It is fun to answer these types of questions.

I just found them to be very limited with the information to deduce a solid answer or reason for my choice.

I know that the certs questions can be very tricky and are meant to challenge the applicant.

Good luck on the test. Please note I was not the one saying it was a scam, but verifying statements from other posters.
Dan CraciunIT ConsultantCommented:
@MCIT-Libya: I was not accusing you of anything.

I saw the site's name on the material you posted and was curious.  
I know that shortcuts are tempting.

Good luck on your tests.
MCIT-LibyaAuthor Commented:
Dear yo_bee,
Thanks a lot for understanding, let me go through your explanations and will ping you back if i need assistance.
yo_beeDirector of Information TechnologyCommented:
Will do. I did not answer them all, but the ones i did I feel I was on track .
MCIT-LibyaAuthor Commented:
Dear yo_bee and Dan Craciun,

i completely agree with you that such websites let you get the certificate without the proper knowledge that candidate should have.

i am trying my best not to be one of them :)

let me go through yo_bee answers and will get back if need more help.
yo_beeDirector of Information TechnologyCommented:
There are lots of good YouTube videos also that are free.
yo_beeDirector of Information TechnologyCommented:
was I correct with my answers and my reasons?
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2012

From novice to tech pro — start learning today.