Microsoft Exam 070-529: Microsoft .NET Framework 2.0 – Distributed Application Development

Exam : 070-529
Title : Microsoft .NET Framework 2.0 – Distributed Application Development
Ver : 02.14.07

QUESTION 1

You have a Web service that is deployed on an unsecured network. You need to implement encryption on the Web service. The implementation must be configurable at run time. What should you do?
A. Apply Web Services Enhancements (WSE) 3.0 security to the Web service that is configured to use an X.509 certificate with the Sign-Only protection level.
B. Write custom code in each Web method of the Web service that encrypts the data by using the DESCryptoServiceProvider class.
C. Write a custom SOAP extension attribute class to encrypt and decrypt the SOAP message. Apply the attribute to the Web service class.
D. Apply Web Services Enhancements (WSE) 3.0 security to the Web service that is configured to use an X.509 certificate with the Sign and Encrypt protection level.

Answer: D

Explanation:
Only by using an X.509 certificate with Sign and Encrypt protection (D) can the parties of the message ensure that the message has not only not been tampered with, but that it can only be read by parties with the appropriate certificate.

Encryption on Web Services that is configurable at runtime is done through Web Services Enhancements (WSE) 3.0 security in 2.0, thus writing custom code (B) or using a custom SOAP extension (C) is not the most efficient or correct answer.

Using an X.509 certificate with Sign-Only protection (A), makes a hash of the content, and ensures at the other end that the message has not been tampered with – but does not ensure that no-one has read it along the way.

Microsoft Exam 070-447: UPGRADE: MCDBA Skills to MCITP Database Administrator by Using Microsoft SQL Server 2005

Exam : 070-447
Title : UPGRADE: MCDBA Skills to MCITP Database Administrator by Using Microsoft SQL Server 2005
Ver : 02.26.07

QUESTION 1
You work as DBA at Certkiller .com. You administer two Windows Server 2003 computers named Certkiller A and Certkiller B. You install SQL Server 2005 on both Certkiller A and Certkiller B to host a new company database. Certkiller A hosts a read-write copy of the company database in which all changes are made. Certkiller B subscribes to a publication on Certkiller A and is only used for reporting. A Windows domain administrator provides you with a domain user account named SQLSRV to use as the security context for the SQL Server services. A password policy of 42 days exists in the Default Domain Group Policy object (GPO). You install the database on Certkiller A and Certkiller B and configure replication. Everything works fine for six weeks, but then all SQL Server services fail. You need to correct the problem.

What should you do?

A. Ask the Windows domain administrator to grant the Log on as service right to the SQLSRV domain user account.
B. Configure the SQLSRV domain user account with a new strong password. Configure the new password in the properties of each SQL Server service that failed.
C. Create a local user account on Certkiller A named Certkiller A and a local user account on Certkiller B named Certkiller B. Configure Certkiller A and Certkiller B to run under the context of the appropriate local user account.
D. Ask the Windows domain administrator to grant the SQLSRV domain user account membership in the Domain Admins group.

Answer: B
Explanation: The Default Domain Group Policy object requires that passwords are changed every 42 days. In order to correct this problem you have to change the password in the Active Directory AND configure the new password on both you SQL Servers to the newly changed password.

Microsoft Exam 070-350: Implementing Microsoft Internet Security and Acceleration (ISA) Server 2004

Exam : 070-350
Title : Implementing Microsoft Internet Security and Acceleration (ISA) Server 2004
Ver : 03.21.07

Example Questions out of 91 Questions:

QUESTION 1

You work as the network administrator at Certkiller .com. The Certkiller .com network consists of a single Active Directory domain named Certkiller .com. All servers on the Certkiller .com network run Windows Server 2003 and all client computers run Windows XP Professional.

The Certkiller .com network recently deployed three ISA Server 2004 computers to the domain which will be used by the client computers for Internet access. You have received instruction from the CIO to plan the implementation to ensure that the client computers view all three servers as one.

You are additionally required to ensure that the load on ISA Server 2004 is distributed among the three ISA Server 2004 computers.

What should you do?
A. The Windows Server 2003 computer should be configured as a Network Load Balancing (NLB) cluster
B. The Windows Server 2003 computer should be configured as a three-node Active/Passive cluster
C. All the Windows Server 2003 computers should be configured as stand-alone servers
D. All the Windows Server 2003 computers should be configured with the same IP address

Answer: A
Explanation: In the scenario the host record should be configured with the virtual IP address to the external interface of the NLB cluster. Since NLB is used as a cluster technique which is used to allow two or more servers to share the processing load it should be used in the scenario.

You might also likeclose