← Back to exam page

70-742 Identity with Windows Server 2016

Loading demo links...

Showing 4–6 of 15 questions

Question 4 (Install and Configure Active Directory Domain Services (AD DS))

HOTSPOT

Your network contains an Active Directory domain named contoso.com. You plan to automate user account management.

You need to find user accounts that meet specific criteria by using the find command in Active Directory Users and Computers. The solution must minimize administrative effort.

Which Find option should you use for each section? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

Answer is in the explanation below.

Question 5 (Install and Configure Active Directory Domain Services (AD DS))

Your network contains a single-domain Active Directory forest named contoso. com. The forest functional level is Windows Server 2016. The forest has Dynamic Access Control enabled. The domain contains two domain controllers named DC1 and DC2. Privileged user accounts used to manage Active Directory reside in a group named Contoso\AD_Admins.

You create an authentication policy named Policy1 and an authentication policy silo named Silo1.

You need to ensure that the accounts in the Contoso\AD_Admins group can sign in to the domain controllers only.

Which three configurations should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

Select all that apply, then click Submit answer.

  • Create an access control condition in Policy1.

  • Create a managed service account and add the account to Permitted Accounts in Silo1.

  • Add the domain controllers to the Contoso\AD_Admins group.

  • Add the privileged user accounts and the domain controllers to Permitted Accounts in Silo1.

  • Assign Silo1 to the privileged user accounts and the domain controllers.
Question 6 (Implement Identity Federation and Access Solutions)

You have an internal web server that hosts websites. The websites use HTTP and HTTPS.

You deploy a Web Application Proxy to your perimeter network.

You need to ensure that users from the Internet can access the websites by using HTTPS only. Internet access to the websites must use the Web Application Proxy.

Which two actions should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

Select all that apply, then click Submit answer.

  • From the web server, enable HTTP Redirect on the Web Application Proxy server.

  • Configure the Web Application Proxy to perform preauthentication by using Oauth2.

  • From the Remote Access Management Console, publish the websites. Configure pass-through authentication and select Enable HTTP to HTTPS redirection.

  • On external DNS name servers, create DNS entries that point to the private IP address of the web server.

  • On external DNS name servers, create DNS entries that point to the public IP address of the Web Application Proxy.