70_685 questions • Exam prepare

Exam contains 115 questions

Page 9 of 20

Question 49 🔥

All client computers on your company network run Windows 7. The computers are members of a Windows Server 2008 Active Directory Domain Services domain.Malicious software is spreading automatically from removable drives.You need to ensure that malicious software does not automatically run on the computers.What should you do?

Which database solution meets these requirements?

A. Disable the Windows Installer by using Domain Group Policy.

B. Disable the Autoplay function by using Domain Group Policy.

C. Disable the ActiveX installation policy by using Domain Group Policy.

D. Prevent the installation of unsigned drivers by using Domain Group Policy.

Discussion of the question

Question 50 🔥

A client computers on your company network run Windows 7. Employees log on to their computers as Standard users.There is a zero-day malicious software attack affecting your network. Employees receive User AccountControl (UAC) messages frequently requesting permission to elevate privileges. You know that this malicious software attack is responsible for these UAC prompts.You need to ensure that employees are unable to provide elevated credentials.What should you do?

Which database solution meets these requirements?

A. Configure the Group Policy User Account Control: Only elevate executables that are signed and validated setting to Disabled.

B. Configure the Group Policy User Account Control: Switch to the secure desktop when prompting for elevation setting to Disabled.

C. Configure the Group Policy User Account Control: Behavior of the elevation prompt for standard users setting to Automatically deny elevation requests.

D. Configure the Group Policy User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode setting to Prompt for consent

Discussion of the question

Question 51 🔥

You have an Active Directory domain. All client computers run Windows 7 and are joined to the domain.The help desk reports that several users recently downloaded and installed malware.You discover that the users modified the Windows Defender settings on their computers.You need to recommend a solution to prevent users from modifying their Windows Defender settings.What should you recommend?

Which database solution meets these requirements?

A. Modify the User Account Control (UAC) settings.

B. Modify the membership of the local Administrators group.

C. From Program and Features, modify the Windows Features.

D. From a Group Policy object (GPO), modify the Windows Defender settings.

Discussion of the question

Question 52 🔥

All client computers on your company network run Windows 7. The computers are members of a Windows Server 2008 R2 domain.You need to ensure that data stored on removable drives is encrypted.What should you do?

Which database solution meets these requirements?

A. Set the Removable Disks:Deny write access option by using Group Policy.

B. Set the Control use of BitLocker on removable drives option to Allow users to apply BitLocker on removable drives by using Group Policy.

C. Set the Configure use of passwords for removable data drives option to Require password for removable data drive by using Group Policy.

D. Enable the Deny write access to removable drives not protected by BitLocker option by using Group Policy.

Discussion of the question

Question 53 🔥

All client computers on your company network run Windows 7. Your company has a Windows Server2008 domain.You plan to use Group Policy to enable BitLocker Drive Encryption (BDE).You need to ensure that the following requirements are met:✑ All BitLocker recovery keys are stored in a central location.✑ Data is encrypted only after a backup of the recovery key is available.What should you do?

Which database solution meets these requirements?

A. Run the manage-bde -on -ForceRecovery command.

B. Enable the Choose default folder for recovery password setting.

C. Enable the Store BitLocker recovery information in Active Directory Domain Services setting.

D. Enable the Choose how users can recover BitLocker encrypted drives setting. Set the 256-bit recovery key to Require recovery password.

Discussion of the question

Question 54 🔥

All client computers on your company network run Windows 7 and are members of a Windows Server 2008 R2 domain. The R&D department staff are local administrators on their computers and are members of the R&D global security group.A new version of a business software application is available on the network.You plan to apply an AppLocker security policy to the R&D group.You need to ensure that members of the R&D group are not allowed to upgrade the software.What should you do?

Which database solution meets these requirements?

A. Create an Audit only restriction based on the version of the software.

B. Create an Audit only restriction based on the publisher of the software.

C. Create an Enforce rule restriction based on the version of the software.

D. Create an Enforce rule restriction based on the publisher of the software.

Discussion of the question

Ready to Pass Your Certification Test

microsoft 70_685

Exam contains 115 questions

Lorem ipsum dolor sit amet consectetur. Eget sed turpis aenean sit aenean. Integer at nam ullamcorper a.

Company

Product

Resources

Follow us