Microsoft - AZ-800: Administering Windows Server Hybrid Core Infrastructure
Sample Questions
Question: 249
Measured Skill: Implement and manage an on-premises and hybrid networking infrastructure (15-20%)
Note: This is a lab or performance-based testing (PBT) question. To answer, you will perform a set of tasks in a live environment. Some functionality (e.g. copy and paste) will not be possible by design. The right mouse button may not be able to be used. Scoring is based on the outcome of performing the tasks stated in the lab. It doesn't matter how you accomplish the goal.
You need to configure SRV1 as a DNS server. SRV1 must be able resolve names from the contoso.com domain by using DC1. All other names must be resolved by using the root hint servers.
To complete this task, sign in to the required computer or computers.
(This question has to be solved in a lab environment. Click on Solution to see a valid example solution. Answer "True" if you can solve the problem, otherwise select "False".)Correct answer: ASolution:
We need to install the DNS Server role on SRV1 and configure conditional forwarding to resolve names from the contoso.com domain to DC1.
Step 01: Sign in to srv1.contoso.com and click "Add roles and features" from the Server Manager Dashboard.
Step 02: From the Add Roles and Features Wizard, cllick "Next". On the Select installation type page, click "Next" again.
Step 03: On the Server Selection page, click "Next". On the Server Roles page, mark the DNS Server role for installation.
Step 04: Click "Next" until you reach the Confirmation page. Click "Install" to install the DNS Server server role.
Step 05: The DNS Server role was installed successfully. Click "Close". Then, start the DNS-Manager from the Tools menu of Server Manager.
Step 06: From the context menu of the Conditional Forwarders node click "New Conditional Forwarder".
Step 07: Enter cotoso.com as the domain name and the IP address or the DNS name of DC1 as the master server for the zone. Then, click "OK".
Step 08: The conditional forwarder was created successfully. The nslookup dc1.contoso.com command verifies that dc1.contoso.com was resolved to its IP address by DC1.
Reference: Domain Name System (DNS)
Question: 250
Measured Skill: Implement and manage an on-premises and hybrid networking infrastructure (15-20%)
Note: This is a lab or performance-based testing (PBT) question. To answer, you will perform a set of tasks in a live environment. Some functionality (e.g. copy and paste) will not be possible by design. The right mouse button may not be able to be used. Scoring is based on the outcome of performing the tasks stated in the lab. It doesn't matter how you accomplish the goal.
You need to ensure that a DHCP scope named scope1 on SRV1 can service client requests.
To complete this task, sign in to the required computer or computers.
(This question has to be solved in a lab environment. Click on Solution to see a valid example solution. Answer "True" if you can solve the problem, otherwise select "False".)Correct answer: ASolution:
We need to authorize the DHCP server running on SRV1 in Active Directory Domain Services (AD DS) and make sure that Scope1 is activated.
Step 01: Sign in to srv1.contoso.com and open the DHCP management console either from Server Manager or by starting dhcpmgmt.msc. The red arrow pointing downwards in the symbol of the Ipv4 and IPv6 nodes indicates that the server is not authorized. The red arrow in the symbol of Scope1 indicates the scope is disabled and clients can't retrieve IP addresses from the scope.
Step 02: Open Server Manager. Click the Notifications symbol, then click the "Complete DHCP configuration" link.
Step 03: Click "Next".
Step 04: Click "Commit".
Step 05: The DNS Server has been authorized successfully. Click "Close", then switch back to the DCHP management console.
Step 06: Select srv1.contoso.com and hit F5 to refresh the view. Note that the IPv4 and the IPV6 symbols are marked green. Right-click Scope1 and choose activate to activate the address scope and to finish the task.
Reference: Quickstart: Install and configure DHCP Server
Question: 251
Measured Skill: Implement and manage an on-premises and hybrid networking infrastructure (15-20%)
Note: This is a lab or performance-based testing (PBT) question. To answer, you will perform a set of tasks in a live environment. Some functionality (e.g. copy and paste) will not be possible by design. The right mouse button may not be able to be used. Scoring is based on the outcome of performing the tasks stated in the lab. It doesn't matter how you accomplish the goal.
You need to ensure that all DHCP clients that get an IP address from SRV1 will be configured to use DC1 as a DNS server.
To complete this task, sign in to the required computer or computers.
(This question has to be solved in a lab environment. Click on Solution to see a valid example solution. Answer "True" if you can solve the problem, otherwise select "False".)Correct answer: ASolution:
We need to configure the name server option from the DHCP server options. The DHCP server options apply to all existing and future newly created IP address ranges.
Step 01: Sign in to srv1.contoso.com and open the DHCP management console either from Server Manager or by starting dhcpmgmt.msc. From the conext menu of the Ipv4 Server Options, select "Configure Options".
Step 02: Select 005 Name Servers and type in the dc1.contoso.com as the server name. Then, click "Resolve" and add the resolved IP address to the list of name servers. Click "OK" to close the dialog and to finish the task.
Reference: DHCP scopes
Question: 252
Measured Skill: Manage storage and file services (15-20%)
Note: This is a lab or performance-based testing (PBT) question. To answer, you will perform a set of tasks in a live environment. Some functionality (e.g. copy and paste) will not be possible by design. The right mouse button may not be able to be used. Scoring is based on the outcome of performing the tasks stated in the lab. It doesn't matter how you accomplish the goal.
You need to prevent domain users from saving executable files in a share named \\SRV1\Data. The users must be able to save other files to the share.
To complete this task, sign in to the required computer or computers.
(This question has to be solved in a lab environment. Click on Solution to see a valid example solution. Answer "True" if you can solve the problem, otherwise select "False".)Correct answer: ASolution:
We need to install the File Server Resource Manager and configure a file screen for the Data folder that prevents users from savings executables to the folder.
Step 01: Sign in to srv1.contoso.com and install the File Server Resource Manager role service of the File and Storage Services role as shown below.
Step 02: Start the File Server Resource Manager from the Tools menu of Server Manager. Expand the "File Screening Management" node and select "Create File Screen" from the context menu of the "File Screen" node.
Step 03: Browser for the file path of the Data folder and select the "Block Executable Files" file screen template. Then click Create to create the file screen and to finish the task.
Reference: File Screening Management
Question: 253
Measured Skill: Manage storage and file services (15-20%)
Note: This is a lab or performance-based testing (PBT) question. To answer, you will perform a set of tasks in a live environment. Some functionality (e.g. copy and paste) will not be possible by design. The right mouse button may not be able to be used. Scoring is based on the outcome of performing the tasks stated in the lab. It doesn't matter how you accomplish the goal.
You need to ensure that the Azure file share named share1 can sync to on-premises servers.
The required source files are located in a folder named \\dc1.contoso.com\install.
You do NOT need to specify the on-premises servers at this time.
To complete this task, sign in to the required computer or computers.
(This question has to be solved in a lab environment. Click on Solution to see a valid example solution. Answer "True" if you can solve the problem, otherwise select "False".)Correct answer: ASolution:
We need to deploy Azure File Sync by creating a synch group and preparing the on-premises servers (no specific server is mentioned) by installing the Azure File Sync agent using Group Policy. We don't need to register the servers.
Step 01: Sign in to dc1.contoso.com, start Microsoft Edge, and sign in to the Azure Portal (portal.azure.com). Type Azure File Sync into the search box and click "Create". Select or create a resource group and enter a name for the new service instance. Then, click "Review + Create".
Step 02: Click "Create". Once the resource is created, click the "Go to resource" button.
Step 03: From Sync groups, click "Create a sync group".
Step 04: Enter a name for the new sync group and select the storage account. Then, select share1 as the cloud endpoint Azure File Share and click "Create".
Step 05: The sync group was created successfully. Now we need to deploy the Azure File Sync agent to the on-premises servers.
Step 06: Open the Group Policy Management console (gpmc.msc). Choose "Create a GPO in this domain, and Link it here" from the context menu of the organizational unit (OU) that contains the servers. Enter a name for the new GPO and click "OK".
Step 07: Open the GPO to edit. Under Software Installation in the Software Settings of the Computer Configuration, select "New Package" and assign the Storage Sync Agent installation packet located in the \\dc1.contoso.com\install network share.
References:
What is Azure File Sync?
Planning for an Azure File Sync deployment
Deploy Azure File Sync