Configure File and Print Services Flashcards
What does the following command do?
Manage-bde: status
Provides information about all drives on the computer, whether or not they are BitLocker-protected.
What does the following command do?
Manage-bde: on
Encrypts the drive and turns on BitLocker.
What does the following command do?
Manage-bde: off
Decrypts the drive and turns off BitLocker. All key protectors are removed when decryption is complete.
What does the following command do?
Manage-bde: pause
Pauses encryption or decryption.
What does the following command do?
Manage-bde: resume
Resumes encryption or decryption.
What does the following command do?
Manage-bde: lock
Prevents access to BitLocker-protected data.
What does the following command do?
Manage-bde: unlock
Allows access to BitLocker-protected data with a recovery password or a recovery key.
What does the following command do?
Manage-bde: autounlock
Manages automatic unlocking of data drives.
What does the following command do?
Manage-bde: protectors
Manages protection methods for the encryption key.
What does the following command do?
Manage-bde: tpm
Configures the computer’s Trusted Platform Module (TPM). This command is not supported on computers running Windows 8 or win8_server_2. To manage the TPM on these computers, use either the TPM Management MMC snap-in or the TPM Management cmdlets for Windows PowerShell.
What does the following command do?
Manage-bde: setidentifier
Sets the drive identifier field on the drive to the value specified in the Provide the unique identifiers for your organization Group Policy setting.
What does the following command do?
Manage-bde: ForceRecovery
Forces a BitLocker-protected drive into recovery mode on restart. This command deletes all TPM-related key protectors from the drive. When the computer restarts, only a recovery password or recovery key can be used to unlock the drive.
What does the following command do?
Manage-bde: changepassword
Modifies the password for a data drive.
What does the following command do?
Manage-bde: changepin
Modifies the PIN for an operating system drive.
What does the following command do?
Manage-bde: changekey
Modifies the startup key for an operating system drive.
What does the following command do?
Manage-bde: KeyPackage
Generates a key package for a drive.
What does the following command do?
Manage-bde: upgrade
Upgrades the BitLocker version.
What does the following command do?
Manage-bde: WipeFreeSpace
Wipes the free space on a drive.
What does the following command do?
Manage-bde:-? or /?
Displays brief Help at the command prompt.
What does the following command do?
Manage-bde: -help or -h
Displays complete Help at the command prompt.
What does the PowerShell CmdLet Do?
Add-BitLockerKeyProtector
Adds a key protector for a BitLocker volume.
What does the PowerShell CmdLet Do?
Backup-BitLockerKeyProtector
Saves a key protector for a BitLocker volume in AD DS.
What does the PowerShell CmdLet Do?
Clear-BitLockerAutoUnlock
Removes BitLocker automatic unlocking keys.
What does the PowerShell CmdLet Do?
Disable-BitLocker
Disables BitLocker Drive Encryption for a volume.
Note: This removes all key protectors and beings decrypting the content of the volume
What does the PowerShell CmdLet Do?
Disable-BitLockerAutoUnlock
Disables automatic unlocking for a BitLocker volume.
What does the PowerShell CmdLet Do?
Enable-BitLocker
Enables BitLocker Drive Encryption for a volume.
What does the PowerShell CmdLet Do?
Enable-BitLockerAutoUnlock
Enables automatic unlocking for a BitLocker volume.
Only supported on data volumes not the system drive
What does the PowerShell CmdLet Do?
Get-BitLockerVolume
Gets information about volumes that BitLocker can protect.
What does the PowerShell CmdLet Do?
Lock-BitLocker
Prevents access to encrypted data on a BitLocker volume.
What does the PowerShell CmdLet Do?
Remove-BitLockerKeyProtector
Removes a key protector for a BitLocker volume.
What does the PowerShell CmdLet Do?
Resume-BitLocker
Restores Bitlocker encryption for the specified volume.
What does the PowerShell CmdLet Do?
Suspend-BitLocker
Suspends Bitlocker encryption for the specified volume.
What does the PowerShell CmdLet Do?
Unlock-BitLocker
Restores access to data on a BitLocker volume.
How would you change the TPM owner password (owner authorization) on a computer running Windows Server 2012 R2? The data and computer system are proctected by BitLocker.
Via PowerShell and GUI
PS: Set-TpmOwnerAuth
or
GUI: Use the TPM Management MMC snap-in to change the password
How would you completely decrypt a drive protected by BitLocker?
Run either:
PS: Disable-BitLocker
or CMD: Manage-bde -off
How do you enable Network Unlock via GPO?
- WDS and Network Unlock must be installed
- WDS must have the Bitlocker Network Unlock Certificate Installed
- Configure the Group Policies
- Allow network unlock at startup
- BitLocker Drive Encryption Network Unlock Certificate - The certificate that you used for network unlock on WDS
Can you only have one Certificate for the Group Policy BitLocker Drive Encryption Network Unlock Certificate?
No you can add many certificates
What does the GPO Audit File Share do?
Auditing for attempts to access any Shared Folders
What does the GPO Audit detailed File Share do?
Audits all attemps to access files or folders on a shared folder. It logs an event every time a file or folder is accessed. Detailed File Share audit events include detailed information about the permissions or other criteria used to grant or deny access.
Note: There are no system access control lists (SACLs) for shared folders. If this policy setting is enabled, access to all shared files and folders on the system is audited.
What does the GPO Audit File System Global Object Access do?
This policy setting allows you to monitor a specific user or group and the files they access.
Note: You must also enable the Audit File System setting under Advanced Audit Policy Configuration\System Audit Policies\Object Access.
What does the GPO Audit File System do?
This policy setting allows you to audit user attempts to access file system objects. A security audit event is generated only for objects that have system access control lists (SACL) specified, and only if the type of access requested, such as Write, Read, or Modify and the account making the request match the settings in the SACL
DFS
What is the calculation used for determining how large your staging quota should be?
- Hub and Spoke
- IF Read/Write Members = 32 * (Average of 32 Largest files)
- IF Spoke are Read-Only = 16 * (Average of 16 largest files)
*
What does Dfsdiag SyncNow do?
Forces replication between DFS servers
What does the following PowerShell CmdLet Do?
Add-DfsrConnection
Creates a connection between members of a replication group.
What does the following PowerShell CmdLet Do?
Add-DfsrMember
Adds computers to a replication group.
What does the following PowerShell CmdLet Do?
ConvertFrom-DfsrGuid
Translates GUIDs to friendly names within a given replication group.
What does the following PowerShell CmdLet Do?
Export-DfsrClone
Exports the cloned DFS Replication database and volume configuration settings.
What does the following PowerShell CmdLet Do?
Get-DfsReplicatedFolder
Gets a replicated folder from a replication group.
What does the following PowerShell CmdLet Do?
Get-DfsReplicationGroup
Retrieves a replication group.
What does the following PowerShell CmdLet Do?
Get-DfsrBacklog
Retrieves the list of pending file updates between two DFS Replication partners.
What does the following PowerShell CmdLet Do?
Get-DfsrCloneState
Gets the status of a database cloning operation.
What does the following PowerShell CmdLet Do?
Get-DfsrConnection
Gets a connection between DFS Replication partners.
What does the following PowerShell CmdLet Do?
Get-DfsrConnectionSchedule
Gets a connection schedule between members of a replication group.
What does the following PowerShell CmdLet Do?
Get-DfsrFileHash
Gets a file hash.
What does the following PowerShell CmdLet Do?
Get-DfsrGroupSchedule
Retrieves a replication group schedule.
What does the following PowerShell CmdLet Do?
Get-DfsrIdRecord
Gets ID records for replicated files or folders from the DFS Replication database.
What does the following PowerShell CmdLet Do?
Get-DfsrMember
Gets member computers in a replication group.
What does the following PowerShell CmdLet Do?
Get-DfsrMembership
Gets membership settings for members of replication groups.
What does the following PowerShell CmdLet Do?
Get-DfsrPreservedFiles
Gets a list of files and folders that DFS Replication previously preserved.
What does the following PowerShell CmdLet Do?
Get-DfsrServiceConfiguration
Gets settings for the DFS Replication service on group members.
What does the following PowerShell CmdLet Do?
Get-DfsrState
Gets the DFS Replication state for a member.
What does the following PowerShell CmdLet Do?
Import-DfsrClone
Imports a cloned DFS Replication database and volume configuration settings.
What does the following PowerShell CmdLet Do?
New-DfsReplicatedFolder
Creates a replicated folder in a replication group.
What does the following PowerShell CmdLet Do?
New-DfsReplicationGroup
Creates a replication group.
What does the following PowerShell CmdLet Do?
Remove-DfsReplicatedFolder
Removes a replicated folder from a replication group.
What does the following PowerShell CmdLet Do?
Remove-DfsReplicationGroup
Removes a replication group.
What does the following PowerShell CmdLet Do?
Remove-DfsrConnection
Removes a connection between members of a replication group.
What does the following PowerShell CmdLet Do?
Remove-DfsrMember
Removes computers from a replication group.
What does the following PowerShell CmdLet Do?
Remove-DfsrPropagationTestFile
Removes DFS Replication propagation test files.
What does the following PowerShell CmdLet Do?
Reset-DfsrCloneState
Cancels a cloning operation.
What does the following PowerShell CmdLet Do?
Restore-DfsrPreservedFiles
Restores files and folders that DFS Replication previously preserved.
What does the following PowerShell CmdLet Do?
Set-DfsReplicatedFolder
Changes settings of a replicated folder.
What does the following PowerShell CmdLet Do?
Set-DfsReplicationGroup
Modifies a replication group.
What does the following PowerShell CmdLet Do?
Set-DfsrConnection
Changes the settings of a connection between members of a replication group.
What does the following PowerShell CmdLet Do?
Set-DfsrConnectionSchedule
Changes the settings of a connection schedule between members of a replication group.
What does the following PowerShell CmdLet Do?
Set-DfsrGroupSchedule
Modifies a replication group schedule.
What does the following PowerShell CmdLet Do?
Set-DfsrMember
Modifies member computer information in a replication group.
What does the following PowerShell CmdLet Do?
Set-DfsrMembership
Configures membership settings for replication group members.
What does the following PowerShell CmdLet Do?
Set-DfsrServiceConfiguration
Modifies settings for the DFS Replication service.
What does the following PowerShell CmdLet Do?
Start-DfsrPropagationTest
Creates a propagation test file in a replicated folder.
What does the following PowerShell CmdLet Do?
Suspend-DfsReplicationGroup
Suspends replication between computers regardless of schedule.
What does the following PowerShell CmdLet Do?
Sync-DfsReplicationGroup
Synchronizes replication between computers regardless of schedule.
What does the following PowerShell CmdLet Do?
Update-DfsrConfigurationFromAD
Initiates an update of the DFS Replication service.
What does the following PowerShell CmdLet Do?
Write-DfsrHealthReport
Generates a DFS Replication health report.
What does the following PowerShell CmdLet Do?
Write-DfsrPropagationReport
Generates reports for propagation test files in a replication group.
What does the following PowerShell CmdLet Do?
Get-DfsnAccess
Gets permissions for a DFS namespace folder.
What does the following PowerShell CmdLet Do?
Get-DfsnFolder
Gets settings for a DFS namespace folder.
What does the following PowerShell CmdLet Do?
Get-DfsnFolderTarget
Gets settings for targets of a DFS namespace folder.
What does the following PowerShell CmdLet Do?
Get-DfsnRoot
Gets settings for DFS namespaces.
What does the following PowerShell CmdLet Do?
Get-DfsnRootTarget
Gets settings for root targets of a DFS namespace.
What does the following PowerShell CmdLet Do?
Get-DfsnServerConfiguration
Gets DFS namespace settings for a DFSN root server.
What does the following PowerShell CmdLet Do?
Grant-DfsnAccess
Grants permissions to users and groups to access a DFS namespace folder.
What does the following PowerShell CmdLet Do?
Move-DfsnFolder
Moves or renames a DFS namespace folder.
What does the following PowerShell CmdLet Do?
New-DfsnFolder
Creates a folder in a DFS namespace.
What does the following PowerShell CmdLet Do?
New-DfsnFolderTarget
Adds a target to a DFS namespace folder.
What does the following PowerShell CmdLet Do?
New-DfsnRoot
Creates a DFS namespace.
What does the following PowerShell CmdLet Do?
New-DfsnRootTarget
Adds a root target to a DFS namespace.
What does the following PowerShell CmdLet Do?
Remove-DfsnAccess
Removes users and groups from the ACL for a folder in a DFS namespace.
What does the following PowerShell CmdLet Do?
Remove-DfsnFolder
Removes a DFS namespace folder.
What does the following PowerShell CmdLet Do?
Remove-DfsnFolderTarget
Removes a target for a DFS namespace folder.
What does the following PowerShell CmdLet Do?
Remove-DfsnRoot
Removes a DFS namespace.
What does the following PowerShell CmdLet Do?
Remove-DfsnRootTarget
Removes a target for a DFS namespace root.
What does the following PowerShell CmdLet Do?
Revoke-DfsnAccess
Revokes permissions for users to access and enumerate the contents of a DFS namespace folder.
What does the following PowerShell CmdLet Do?
Set-DfsnFolder
Changes settings for a DFS namespace folder.
What does the following PowerShell CmdLet Do?
Set-DfsnFolderTarget
Changes settings for a target of a DFS namespace folder.
What does the following PowerShell CmdLet Do?
Set-DfsnRoot
Changes settings for a DFS namespace.
What does the following PowerShell CmdLet Do?
Set-DfsnRootTarget
Changes settings for a root target of a DFS namespace.
What does the following PowerShell CmdLet Do?
Set-DfsnServerConfiguration
Changes settings for a DFS namespace root server.
You have an Active File Screen set up to block all scripting files. You need to allow PowerShell Files to be saved only a sub folder “Scripts” in “C:\Applicaitons\Custom”. How would you accomplish this task?
- Create a File Screen exclusion for “C:\Applications\Custom\Scripts”.
- You will need to add *.ps1 to the include list
If you need to install and update and ensure that the data on the system hard drive is secure. What should you do?
Use Suspend-Bitlocker
You have EFS enabled for the Domain. You have been assigned the right of EFS Recovery Agent. There is a problem with an EFS File on a client computer. You need to remove encryption. When you try you get an error, what do you need to do?
Add your EFS Certificate to the Computer
