|
You need to design a patch management solution that distributes and applies security patches. Your solution must meet business and security requirements. What should you do?
Use one new SUS server in each of the four offices to download all security patches. Test the security patches. Use SUS to deploy the security patches to computers in each office.
Use one new SUS server in Philadelphia and one in Los Angeles to download all security patches. Use a GPO that is based on user configuration for each domain to deploy security patches to servers in each geographic location.
Use a new SUS server in Philadelphia, Los Angeles, and Minneapolis to download all security patches. Use SUS to deploy security patches to computers in their respective offices. Configure the Wilmington computers to use the SUS server in Philadelphia.
Use one new SUS server in Philadelphia and one in Los Angeles to download all security patches. Test the security patches. Deploy security patches to servers in each geographic region.
| ||||||||||||||||
|
You need to design the configuration of IIS and SQL Server machines to meet the requirements in the written security policy. What should you do?
Log on to a domain controller and use MBSA to scan all servers for Windows vulnerabilities.
Create a startup script in a GPO and link it to the SQL Server machines and Web Servers
U and GPO that runs MBSA when the computer starts up.
Create a script that runs the MBSA against the SQL Server and IIS servers and schedule it to run weekly.
Log on to each SQL Server machine and each IIS machine and use MBSA to scan each server locally.
| ||||||||||||||||
|
You need to make sure that the executives’ laptops are secured and that the configuration that secures them is different than the configuration used to secure the desktops that they use. All client computer accounts are in the ClientComputers OU. What should you do to ease the application of the configuration information in a GPO to the laptops without causing the same settings to be applied to the desktops?
Create an OU for laptops and move all of the laptop objects into it.
Create a software restriction policy that prevents laptop computers from executing software that isn’t allowed.
Use the Security Configuration And Analysis tool and set the -portable switch so that it will apply only to laptop computers.
Use the MBSA utility and set the -portable switch so that it will apply only to laptop computers.
| ||||||||||||||||
|
You need to deploy patches to the computers in each department, and you need to make sure that your solution meets with the approval of the system administrator. What should you do?
Create a single SUS server to approve patches for the enterprise.
Create a single SUS server for each department to approve patches.
Create a single SUS server for each site to approve patches.
Create a single SUS server for each office to approve patches.
| ||||||||||||||||
|
Due to an acquisition, a new office has been added to your infrastructure in Phoenix. The Phoenix site has a high-speed link directly to the Los Angeles office. You need to redesign the Software Update Services (SUS) infrastructure for the company. You will need to decide whether or not each of the new SUS servers will be receiving new updates directly from Microsoft servers on the Internet or from another SUS server within the company. Your solution must use the fewest number of SUS servers that retrieve their updates from the Internet while still preserving Internet bandwidth. What should you do? To answer place the appropriate SUS server with the appropriate site. Some options may be used more than once, others may not be used at all.
|
Answers