Your network contains an enterprise root certification authority (CA) named CA1.
Multiple computers on the network successfully enroll for certificates that will expire in one year. The certificates are based on a template named Secure_Computer. The template uses schema version 2.
You need to ensure that new certificates based on Secure_Computer are valid for three years.
What should you do?

• A.Modify the Validity period for the certificate template.
• B.Instruct users to request certificates by using the Certificates console.
• C.Modify the Validity period for the root CA certificate.
• D.Instruct users to request certificates by running the certreq.exe command.

Comment: *

Name: *

Email: *

Verification: *

Your network contains an Active Directory domain named contoso.com. The domain contains four servers named Server1, Server2, Server3, and Server4 that run Windows Server 2016.
Server1 has IP Address Management (IPAM) installed. Server2, Server3, and Server 4 have the DHCP Server role installed. IPAM manages Server2, Server3, and Server4.
A domain user named User1 is a member of the groups shown in the following table.

Which actions can User1 perform? To answer, select the appropriate options in the answer area.

Correct Answer:

Explanation:
Box 1: Can be performed by User1
DHCP Administrators can create DHCP scopes.
Box 2: Cannot be performed by User1
DHCP Users cannot create scopes.
Box 3: Cannot be performed by User1
IPAM users cannot creates copes.
References: https://technet.microsoft.com/en-us/library/dn741281(v=ws.11).aspx#create_access_scope

Comment: *

Name: *

Email: *

Verification: *

Your network contains an Active Directory forest named contoso.com. They connect to the forest by using ldp.exe and receive the output as shown in the following exhibit.

Use drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.

Correct Answer:

Comment: *

Name: *

Email: *

Verification: *

DRAG DROP
You network contains an Active Directory domain named contoso.com. The domain contains an enterprise certification authority (CA).
A user named Admin1 is a member of the Domain Admins group.
You need to ensure that you can archive keys on the CA. The solution must use Admin1 as a key recovery agent.
Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Correct Answer:

Comment: *

Name: *

Email: *

Verification: *

You have a server named Server1 that has the Active Directory Federation Services server role installed.
You need to configure Server1 as the authorization server. Server1 will be used to authorize access to a web API from a web application. The web application will use OAuth 2.0 and OpenID Connect to access the web API as the authenticated user. The solution must minimize administrative effort.
What should you do first?

• A.Run New-AdfsApplicationGroup
• B.Add a web API application
• C.Run Add-AdfsNativeClientApplication
• D.Run Add-AdfsWebApiApplication

Comment: *

Name: *

Email: *

Verification: *