Section 2

Question 1

A service on Windows Server 2022 that can organize users, computers, and other resources into logical groups.

Answer 1

Active Directory Domain Services (AD DS)

Question 2

Each host has a specific role in the network. In the Windows environment, this model is also known as domain networking.

Answer 2

Client-server network model

Question 3

Installation option supports all server roles and includes basic server components. It can be managed using PowerShell and Windows Admin Center but does not include a GUI.

Answer 3

Server Core

Question 4

Windows Server licensing is dependent on the number of core processors and the number of users connecting to the server.

Answer 4

Windows Server licensing

Question 5

Each host functions independently.
Communication takes place using a commonly available public network, such as the internet.
The hosts are not connected by a local area network.

Answer 5

Stand-alone model

Question 6

Based on peer-to-peer networking.
None of the hosts in a workgroup have a specific role.
All hosts can function as both workstation and server.
All hosts in a workgroup can both provide network services and consume network services.
The hosts are linked together by some type of local network connection.
Hosts in the same workgroup can access shared resources on other hosts.

Answer 6

Workgroup

Question 7

Drawbacks of the workgroup model are:

Answer 7

Lack of scalability.
Lack of centralized configuration control.
Lack of centralized authentication.
Lack of centrally applied security settings.
Complex data backup process.

Question 8

Each host has a specific role in the network.
Servers provide file storage, authentication, email, and printing. A server may even be configured as a hypervisor, which allows the server to run multiple virtual machines. Virtual machines can be used as single-purpose servers, such as hosting enterprise applications that might be incompatible with other enterprise applications.
Clients request services from servers.

Answer 8

Client-server model

Question 9

Uses security principles, which are entities such as users and computers.

Answer 9

Domain networking

Question 10

Is known as domain networking in a Windows environment

Answer 10

Client-server model

Question 11

A collection of security principles that share a central authentication database called Active Directory.

Answer 11

Windows domain

Question 12

Is located on one or more servers in the domain.

Answer 12

Active Directory database

Question 13

Are much more efficient and scalable than workgroups due to a centralized management structure and function.

Answer 13

Domains

Question 14

Drawbacks of the client-server model include the following:

Answer 14

Increased implementation cost due to specialized hardware and software requirements.
Increased planning time required for implementation.
Increased implementation complexity.
Increased knowledge required to manage the implementation.

Question 15

What are the two main editions of Windows Server 2022?

Answer 15

Standard and Datacenter

Question 16

A built-in security software. It provides antivirus and firewall protection.

Answer 16

Windows Defender

Question 17

Role in Windows Server enables you to create and manage virtual machines.

Answer 17

Hyper-V

Question 18

Is a Windows web server. An IIS server receives and responds to client requests for HTML pages and files.

Answer 18

Internet Information Services (IIS)

Question 19

Admin can use to deploy the Windows operating system to computers across the network.

Answer 19

Windows Deployment Services

Question 20

Assigns an IP address, subnet mask, and default gateway to each client.

Answer 20

DHCP services

Question 21

Translates a domain name into its associated IP address.

Answer 21

DNS server

Question 22

Can be used to manage file servers – a centralized location for storing files that are shared with all users across a network.

Answer 22

File and Storage Services

Question 23

Distributes traffic across servers, ensuring a steady flow of information across a network.

Answer 23

Network load balancing

Question 24

Allows administrators an easy way to find and deploy Microsoft product updates.

Answer 24

Windows Server Update Services

Question 25

Access Licenses (CALs)
Supports up to 48 TB of RAM
Supports up to 64 64-bit sockets
Supports an unlimited number of cores
Storage Replica (One resource group and one partnership with a 2 TB volume)

Answer 25

Windows Server 2022 Standard

Question 26

Supports up to 25 users
Supports up to 50 devices

Answer 26

Windows Server 2022 Essentials

Question 27

Supports unlimited VMs
Shielded Hyper-V VMs for increased security and isolation
Supports up to 48 TB of RAM
Supports up to 64 64-bit sockets
Supports an unlimited number of cores
Software-defined networking
Unlimited Storage Replica
Storage Spaces Direct
Network Controller

Answer 27

Windows Server 2022 Datacenter

Question 28

Azure Extended Network
Hotpatching
Storage Spaces Direct

Answer 28

Windows Server 2022 Datacenter: Azure Edition

Question 29

Includes basic server components
Supports all server roles
Does not include a graphical user interface (GUI)
Can be managed remotely using PowerShell or Windows Admin Center
Is the recommended installation type for most organizations

Answer 29

Server Core

Question 30

Includes all server components
Supports all server roles
Includes a GUI
Takes up more installation space than Server Core

Answer 30

Server with Desktop Experience

Question 31

Describes the primary function of a server. Is a set of applications or services that enable a server to perform a very specific function on the network.

Answer 31

Server role

Question 32

Are specific programs that provide the functions of a role, and are sub-components of a role. Some roles, like DNS Server, have a single role service. Other roles, like Print and Document Services, have multiple role services, such as the Distributed Scan Server and Internet Printing.

Answer 32

Role services

Question 33

is a software program that is not directly related to a server role but adds functionality to the entire server. Includes management tools, communication protocols or clients, and clustering support.

Answer 33

Feature

Question 34

A distributed database that stores and manages network resources, such as users and computers. The role: Helps administrators securely manage information.
Facilitates resource sharing and collaboration between users.
Is required for directory-enabled applications, such as Microsoft Exchange Server, and for applying technologies, such as Group Policy.

Answer 34

Active Directory Domain Services (AD DS)

Question 35

An identity and access control feature that creates and manages public key certificates used in software security systems. The role: Provides customizable services for creating and managing public key certificates.
Enhances security by binding the identity, device, or service to a corresponding private key.
Includes features that allow you to manage certificate enrollment and revocation in various scalable environments.

Answer 35

Active Directory Certificate Services (AD CS)

Question 35

Active Directory Certificate Services (AD CS) Role services include:

Answer 35

Certificate Authority
Certificate Enrollment Policy Web Service
Certificate Enrollment Web Service
Certificate Enrollment Authority Web Enrollment
Network Device Enrollment Service
Online Responder

Question 36

Enables an organization to share identity information outside its network. This service allows users access to a partner organization using their login.

Answer 36

Active Directory Federation Services

Question 37

Specifies permissions for accessing folders and files. Role services include:
Active Directory Rights Management Server
Identify Federation Support

Answer 37

Active Directory Rights Management Services

Question 38

Includes technologies that help you set up and manage file servers. This role is valuable when users need access to the same files and applications, or if centralized backup and file management are essential to the organization.

Answer 38

File and Storage Services

Question 39

File and Storage Role services include:

Answer 39

File and iSCSI services
File server
DFS replication
Server for NFS
Storage services

Question 40

Provides attestation and Key Protection Services that shield virtual machines from malicious software or a potentially compromised host.

Answer 40

Host Guardian Service

Question 41

Provides the layer of software necessary for installing virtual guest operating systems within virtual machines.

Answer 41

Hyper-V hypervisor

Question 42

Provides the print management console to manage printers on multiple servers. Role services include:
Printer server
LPD service

Answer 42

Print and Document Services

Question 43

Administrators use to configure and manage systems across the network from a centralized location. Role services include:
DirectAccess and VPN (RAS)
Routing
Web Application Proxy

Answer 43

Remote Access

Question 44

Allows clients access to server-hosted desktops and applications, reducing the need to install software on individual workstations. Role services include:
Remote Desktop Virtualization Host
Remote Desktop Connection Broker
Remote Desktop Gateway
Remote Desktop Licensing
Remote Desktop Web Access

Answer 44

Remote Desktop Services

Question 45

Can be used to automate the delivery and management of Microsoft software volume licenses.

Answer 45

Volume Activation Services

Question 46

A disk imaging solution that you can use for remote deployment and automated installation of Microsoft Windows operating systems.

Answer 46

Windows Deployment Services (WDS)

Question 47

Allows administrators to manage and distribute updates through a management console. A WSUS server can also update other WSUS servers within the organization. Role services include:
WSUS services
SQL server connectivity
WID connectivity

Answer 47

Windows Server Update Server (WSUS)

Question 48

Is the web server service. Use IIS to host internal and external web sites or services that communicate using HTTP and support ASP.NET applications accessed through a web browser. Many other roles also use IIS to provide web-based administration or access.

Answer 48

Web Server (IIS)

Question 49

Provides high availability and scalability to your network by grouping servers into clusters.

Answer 49

Failover clustering

Question 50

Allows you to specify configurations for users and computers through Group Policy settings.

Answer 50

Group Policy Management

Question 51

By managing two or more servers as a single virtual cluster, NLB enhances the availability and scalability of internet server applications such as those used on web, FTP, firewall, proxy, virtual private network (VPN), and other mission-critical servers.

Answer 51

Network Load Balancing (NLB

Question 52

A security feature that protects a server by encrypting the operating system volume and verifying the integrity of other startup components. BitLocker is also called full volume encryption.

Answer 52

BitLocker Drive Encryption

Question 53

Provides backup and recovery for Windows Server systems.

Answer 53

Windows Server Backup

Question 54

Roles, role services, and features can be added using:

Answer 54

The Roles and Features wizard.
The Install-WindowsFeature PowerShell cmdlet.
A PowerShell script to install roles and features on several servers at once.

Question 55

Roles, role services, and features can be removed using:

Answer 55

The Remove Roles and Features wizard.
The Uninstall-WindowsFeature PowerShell cmdlet

Question 56

Refers to the command line interface (CLI) used to interact with a computer.

Answer 56

Command line

Question 57

A powerful scripting tool used to manage the Windows operating system from the command line. You can use it to write scripts that perform system administration and application management tasks much faster than by using the GUI.

Answer 57

PowerShell

Question 58

Commands that an administrator enters at the PowerShell prompt to perform system management tasks.

Answer 58

Cmdlets

Question 59

Are .NET programs that allow you to access data stores, such as the registry and certificate store, in a way similar to how you access the file system.

Answer 59

Providers

Question 60

Use to download help files from the internet onto a local file share.

Answer 60

Save-Help

Question 61

Use to download updates to help files from the internet onto a local file share.

Answer 61

Update-Help

Question 62

Use to access help files downloaded onto the local file share. These help topics include cmdlets, scripts, workflows, functions, and more.

If help files have not been downloaded, this command displays auto-generated help topics and gives you the option to download help files or access them online.

Answer 62

Get-Help

Question 63

The benefits of Server Core are:

Answer 63

Stable environment
Reduced system requirements:
Less RAM is required
OS files use less disk space
Fewer components to troubleshoot
Reduced servicing requirements
Fewer updates to install
Reduced attack surface:
Fewer services
Fewer open ports to target

Question 64

A Windows utility that displays information about system resource usage.

Answer 64

Task Manager

Question 65

A Windows tool used to examine how programs running on the server affect the computer’s performance.

Answer 65

Performance Monitor

Question 66

A Windows utility that displays real-time information about the way installed hardware and software uses resources.

Answer 66

Resource Monitor

Question 67

Part of the Performance Monitor tool that shows a historical record of system changes and events.

Answer 67

Reliability Monitor

Question 68

A baseline is a measurement of how a system was running at the specific time the measurement was taken.

Answer 68

Baseline

Question 69

Captures system performance statistics over a period of time. A DCS includes one or more data collectors that identify the specific objects and counters you want to track.

Answer 69

Data Collector Set (DCS)

Question 70

A tool that allows access to the graphical desktop environment of another Windows client system over a network connection.

Answer 70

Remote Desktop

Question 71

With Remote Desktop:

Answer 71

The remote host (called the server) is left running and ready to accept a connection.
The client establishes the connection and logs on.
The client computer can run programs, make configuration changes, or access data on the host computer.

Question 72

Remote Desktop software typically has the following three components:

Answer 72

The server software runs on the target desktop.
The client (or viewer) software runs on a remote system. When you run the client software, you see the desktop of the server system.
The remote desktop protocol is optimized to minimize the amount of traffic generated by this exchange.

Question 73

Was originally developed for UNIX. Applications using VNC include RealVNC, TightVNC, UltraVNC, and Vine Server.

Answer 73

Virtual Network Computing (VNC)

Question 74

Is the protocol used by Citrix products (XenApp, XenDesktop, NetScaler Gateway, etc.). ICA/HDX uses TCP and UDP port 1494 and 2598 for Session Reliability.

Answer 74

Independent computing architecture (ICA) with HDX (High-definition experience)

Question 75

Is the protocol developed by Microsoft and used in Microsoft Remote Desktop Services and Remote Assistance solutions. Aqua Connect has licensed RDP and created a version for macOS Server. RDP uses TCP and UDP port 3389.

Answer 75

Remote Desktop Protocol (RDP)

Question 76

Most remote desktop protocols support the following features:

Answer 76

Client software for a variety of operating systems.
Server software for a limited number of operating systems.
The ability to show a remote desktop in a browser without installing client software.
The redirection of printing, sound, or storage from the server to devices connected to the client.

Question 77

Is a role service that allows users with the Remote Desktop Connection client and an internet connection to securely access computers on an internal network.

Answer 77

RD Gateway

Question 78

What does RD Gateway enable connections to?

Answer 78

Remote Desktop Session Hosts and connections to other computers running Remote Desktop.

Question 79

How does RD Gateway encrypt the Remote Desktop Protocol (RDP)?

Answer 79

Using SSL over HTTP. This means that Remote Desktop communications use port 443, a port that is already allowed through most firewalls. This enables the remote connection without having to configure a separate VPN connection.

Question 80

What type of access does RD Gateway restrict?

Answer 80

Access to computers on the private network that are running RDP. You can also restrict specific servers.

Question 81

Identifies the users who can establish a connection through the RD Gateway server. The policy can restrict access based on:
User group membership.
Computer group membership.
Supported authentication method (either password or smart card.)

Answer 81

Connection and Authorization Policy (RD CAP)

Question 82

Identifies the internal resources that users can access. The policy restricts access:
Based on user group membership.
For specific groups of computers (identifies computers to which access is allowed).
On specific ports, either 3389, a custom port, or a port range.

Answer 82

Remote Authorization Policy (RD RAP)