QUESTION 191
A company named Contoso Ltd. has three offices. Each office is configured as an Active Directory site and contains multiple Exchange servers. Each office has a team of network support technicians.
You are designing an Exchange organization for Contoso. All servers in the organization will have Exchange Server 2010 Service Pack 1 (SP1) installed.
You need to implement a security solution to ensure that the team of network support technicians can manage the Exchange servers in its respective office only.
Which of the following solutions is the best recommendation? (More than one answer choice may achieve the goal. Select the BEST answer.)
A. Three custom scopes and three management role groups
B. One management role and three Active Directory security groups
C. One custom scope and one management role group
D. Three custom scopes, three management roles, and three Active Directory security groups
Answer: A
QUESTION 192
An organization plans to utilize an on-premise Exchange Server 2010 SP1 environment for employees and a cloud-based Exchange Server 2010 SP1 service for contractors.
You need to recommend an anti-spam solution that meets the following requirements:
- Minimize the amount of spam received by the on-premise servers.
- Ensure that internal and external email delivery remains fully functional.
What should you recommend?
A. Point the MX records for the domain to the cloud-based servers. Configure the allowed IP addresses
on the send connector of the on-premise servers.
B. Point the MX records for the domain to the on-premise servers. Configure the allowed IP addresses
on the send connector of the cloud-based servers.
C. Point the MX records for the domain to the on-premise servers. Restrict the allowed IP addresses on
the receive connector of the cloud-based servers.
D. Point the MX records for the domain to the cloud-based servers. Restrict the allowed IP addresses on
the receive connector of the on-premise servers.
Answer: D
QUESTION 193
A corporate environment includes an on-premise deployment of Exchange Server 2010 SP1.
The company needs to share calendar availability information with a partner. The partner is using a cloud-based Exchange Server 2010 SP1 service.
You need to recommend a solution for sharing calendar availability information for all employees with the partner.
What should you recommend?
A. Create a federation trust and a TXT DNS record. Then create an organization relationship with the partner.
B. Create a federation trust and a CNAME DNS record. Then create an organization relationship with the partner.
C. Add the partner’s domain as an accepted domain. Then create a TXT DNS record and a transport rule.
D. Add the partner’s domain as an accepted domain. Then create a CNAME DNS record and a group policy
for all users.
Answer: A
QUESTION 194
A corporate environment will include Exchange Server 2010 in a single Active Directory Domain Services (AD DS) domain. The AD DS site topology is configured as shown in the exhibit. (Click the Exhibit button.)
You are designing the Exchange Server deployment plan.
You have the following requirements:
- Deploy Exchange Server 2010 servers in two AD DS sites.
- Maximize the security of the Exchange Server deployment.
You need to recommend a solution that meets the requirements.
Which two actions should you recommend? (Each correct answer presents part of the solution. Choose two.)
A. Configure DC2 as a read-only global catalog server.
B. Configure DC3 as a writable global catalog server.
C. Deploy a Mailbox server, a Hub Transport server, and a Client Access server in Site A and in Site B.
D. Deploy a Mailbox server, a Hub Transport server, and a Client Access server in Site A and in Site C.
Answer: BD
QUESTION 195
A company named Contoso, Ltd. has offices in Montreal, Seattle, and Denver. An Active Directory site exists for each office. Only the Montreal site is connected to the Internet.
You are designing an Exchange organization for Contoso. All servers in the organization will have Exchange Server 2010 Service Pack 1 (SP1) installed.
Each office will contain two Exchange servers that each has the Mailbox, Hub Transport, and Client Access server roles installed.
You need to recommend a deployment solution for the Client Access servers.
Which of the following solutions is the best recommendation? (More than one answer choice may achieve the goal. Select the BEST answer.)
A. One Client Access server array in each office
Round-robin DNS in each office
B. A load balancing solution in each office
Round-robin DNS in the Montreal office
C. One Client Access server array in each office
A load balancing solution in each office
D. One Client Access server array that contains all of the Client Access servers A load balancing solution
in the Montreal office
Answer: C
QUESTION 196
A corporate environment includes Exchange Server 2010 with multiple Client Access servers. Employees connect to the Exchange Server environment from their Exchange ActiveSync璭nabled mobile devices.
You need to recommend a solution for preventing the mobile devices from using removable storage.
What should you recommend?
A. Configure the ActiveSync virtual directory on all Client Access servers.
B. Create an Exchange ActiveSync mailbox policy and apply the policy to all mailboxes.
C. Create a Group Policy Object (GPO) that enforces the use of BitLocker To Go and apply the GPO to
all users.
D. Create a Group Policy Object (GPO) that enforces the use of BitLocker To Go and apply the GPO to
all member servers.
Answer: B
QUESTION 197
A corporate environment includes an on-premise implementation of Exchange Server 2010 SP1.
The company intends to use a cloud-based Exchange Server 2010 SP1 provider to provide email service for the Sales team. All other mailboxes will remain in the on-premise environment.
You have the following requirements:
- Ensure that all users can access mailboxes by using corporate Active Directory Domain Services (AD DS) credentials.
- Ensure that all users can access a global address list (GAL) that includes all email addresses.
You need to recommend a coexistence solution that meets the requirements.
Which two actions should you recommend? (Each correct answer presents part of the solution. Choose two.)
A. Implement Active Directory Federation Services 2.0 (AD FS 2.0).
B. Implement Microsoft Forefront Unified Access Gateway 2010 (UAG 2010).
C. Synchronize AD DS from the on-premise environment to the cloud-based environment.
D. Synchronize AD DS from the cloud-based environment to the on-premise environment.
Answer: AC
QUESTION 198
A corporate environment includes Exchange Server 2010. Client computers run Windows 7 and Microsoft Outlook 2010. The client computers are joined to an Active Directory Domain Services (AD DS) domain.
You need to recommend an email security solution that meets the following requirements:
- Protect email messages from being read by unauthorized users.
- Protect attachments, including text files, PDF files, and XPS files.
- Encrypt selected email messages when they are sent.
What should you recommend?
A. message classification
B. Mutual Transport Layer Security (MTLS)
C. Secure/Multipurpose Internet Mail Extensions (S/MIME)
D. Active Directory Rights Management Services (AD RMS)
Answer: C
QUESTION 199
You are designing an Exchange organization for a company named Contoso, Ltd. All servers in the organization will have Exchange Server 2010 Service Pack 1 (SP1) installed.
Users connect to their mailboxes by using either Microsoft Office Outlook 2003, Microsoft Office Outlook 2007, or Microsoft Outlook 2010.
You need to recommend a solution that protects confidential e-mail messages against eavesdropping and tampering. The e-mail messages must be protected while they are in transit and once they are stored.
Which of the following solutions is the best recommendation? (More than one answer choice may achieve the goal. Select the BEST answer.)
A. Deploy Active Directory Rights Management Services (AD RMS), and then create transport rules
based on message classifications.
B. Deploy certificates from a trusted root certification authority (CA) on all transport servers, and then
configure Domain Security.
C Issue X.509 digital certificates to all users, and then instruct the users to protect their confidential
e-mail messages by using S/MIME.
C. Require RPC encryption for all mailbox databases, and then instruct all Outlook 2003 users to connect
by using Outlook Web App (OWA) only.
D. Deploy Active Directory Rights Management Services (AD RMS), and then instruct users to protect
their confidential e-mail messages by using Outlook Protection Rules.
Answer: C
QUESTION 200
You have a Microsoft Forefront Threat Management Gateway (TMG) 2010 server that provides all Internet access for your company.
You have two Mailbox servers configured in a database availability group (DAG), two Client Access servers, and two Hub Transport servers.
You need to recommend changes to the environment to ensure that users can access Outlook Web App (OWA) from the Internet if any single server fails.
What should you recommend?
A. Configure a Client Access server array.
B. Deploy a second TMG server and create a TMG array.
C. Implement Windows Network Load Balancing for the Client Access servers.
D. Deploy two Edge Transport servers that are configured to use EdgeSync synchronization.
Answer: B
Free Download Pass4sure Microsoft 70-663 Exam Question with PDF & VCE
