Free MCSE Braindumps, the best braindumps site for certification exams like 070-290, 070-270 and more!

QUESTION 44
You are the administrator of Alecnet 'ss network.
All computers in Alecnet 'ss office are portable computers installed with Windows
2000 Professional. All users have local user accounts on their computers and
permissions are being granted through group memberships. Mark, a user in the
sales department, has recently hired a new employee named Eric as his assistant
and now needs to have an user account for Eric. Eric will need the same permissions
that Mark has.
You have to create Eric's account and assign him the appropriate permissions with
the least amount of administrative effort.
What should you do?
A. Create a new local group. Create Eric's user account. Add Mark's user account and
Eric's user account to the new group.
B. Create Eric's user account. Copy Mark's profile to Eric's user account.
C. Create Eric's user account. Make Eric's user account a member of all the same groups
as Mark's user account.
D. Create Eric's user account. Copy the registry entries in the subkey that correspond to
Mark under HKEY_USERS to the subkey that corresponds to Eric.
Answer: C
Explanation: Since all Mark's permissions are being granted through group membership,
it would be the application of the minimum amount of administrative effort if you are to
make Eric's user accounts a member of the same groups as Mark's user account.
Incorrect answers:
A: There is no need to create a new local group and making only Eric and Mark's user
accounts members of this group. This will also work, but it involves unnecessary
administrative effort since there are already groups that contain the permissions as
needed.
B: When copying, you might loose permissions.
D: This option is not the solution since it suggests too much administrative effort.
Reference:
Rick Wallace, Self-Paced MCSE Training Kit (Exam 70-210)-Microsoft Windows 2000
Professional, Microsoft Press, Redmond, 2000, Chapter 14, Lesson 5
QUESTION 45
You are the workstation administrator for Alecnet .s
All client computers are installed with Windows 2000 Professional. One computer

named Workstation1 has two shared folders named Programs and Documents. The
Documents folder is shared using the default settings. You receive reports from
users that while they are logged on to Workstation2 they are denied access to both
shared folders on Workstation1. However, when they log on to Workstation1 they
can successfully access the Program folder but they are still denied access to the
Documents folder.
You want to give the users access to both shared folders while they are logged on to
either workstation.
What should you do?
To answer, select the appropriate action and drag the action to the correct shared
folder.
Answer:
Explanation:
NTFS permissions are permissions to files and folders. If a user can't gain access to a file
or folder and if the file or folder was copied, or if it was moved to another NTFS volume,
the permissions might have changed. You should check the permissions that are assigned
to the user account and to groups of which the user is a member. The user might not have
permission or might be denied access either individually or as a member of a group.
When you share a folder, you can control access to the folder by limiting the number of
users who can simultaneously gain access to it, and you can also control access to the

folder and its contents by assigning permissions to selected users and groups. Once you
have shared a folder, users must connect to the shared folder and must have the
appropriate permissions to gain access to it. After you have shared a folder, you might
want to modify it. You can stop sharing it, change its share name, and change user and
group permissions to gain access to it.
Reference:
Microsoft Corporation, Self-Paced MCSE Training Kit-Microsoft Windows 2000
Professional, Microsoft Press, Redmond, 1999, Chapter 14, Lessons 3 & 6 & Chapter 15,
Lesson 4
QUESTION 46
You are the administrator for Alecnet .sc o m's Windows 2000 network that
consists of 200 Windows 2000 Professional computers and 15 Windows 2000
Server computers.
All users have a home folder which they use to save their work in. The home folders
are located on one of the Windows 2000 Server computers. Encrypted File System
(EFS) is enabled on the NTFS partition that contains the home folders. A user
named Alecnet lse aves the company and you grant her manager the Full Control
NTFS permission to Jack's home folder. When the manager attempts to open any of
the files, she receives the following error message:
"Access is denied."
What should you do?
A. Use System File Checker (SFC) to decrypt the file.
B. Log on the network as the Recovery Agent. Decrypt the files for the manager.
C. Log on the network as the administrator. Use the cipher command to decrypt the files.
D. Log on the network as a member of the Backup Operators group. Decrypt the files for
the manager.
Answer: B
Explanation:
A user has asked for EFS to be configured on his or her Windows 2000 Professional
computer. You need to enable the Recovery Agent on the computer to be able to
unencrypt files if the user's private key has been deleted. In this case Jack left the
company ad her manager needs access to the files. Even with Full Control NTFS
permissions she could not get access, thus you need to make use of the recovery
agent to decrypt the files for the manager. Remember that the user who encrypts a
file is the only user who can access the file (except for the recovery agent).
Incorrect answers:
A: System file checker (sfc.exe) is a command-line utility that scans and verifies the
versions of all protected system files. System file checker (sfc.exe) will discover that a
protected file has been overwritten and replace it with the correct version of the file from
the %systemroot%\system32\dllcache folder. This is not going to grant the manager
access to the files in this case.
C: The Cipher utility allows you to encrypt files and folders as well as check the

encryption statistics. But this is not what should be used in this scenario.
D: Membership in the Backup Operators group enables a user to back up and restore file
systems regardless of permissions, ownership, encryption settings, or audit settings.
Membership in this group enables you to assign users the authority to back up file
systems without having to assign the users specific permissions to access the resources.
However, this is not what is required here.
Reference:
Gord Barker & Douglas Harrison, MCSE Training Guide: (Exam 70-210) ICA Windows
2000 Professional, New Riders Publishing, Indianapolis, 2000, pp. 270-271, 535, 572,
592
QUESTION 47
You are the administrator for Alecnet .sc o m's network that consists of 210
Windows 2000 Professional computers and eleven Windows 2000 Server computers.
All work files are saved in a home folder on a network server. The NTFS partition
that contains the home folders has Encrypting File System (EFS) enabled. A user
named Sandra leaves Alecnet .sc om. You decrypt the files for her manager. When
the manager attempts to open any of the files, he receives the following error
message:
"Access is denied."
You want the manager to be able to access the files.
What should do? (Each correct answer presents a complete solution. Choose two.)
A. Move the files from Sandra's folder to the manager's folder.
B. Grant the manager NTFS Full Control permission to the files.
C. Run the cipher command to create a new file encryption key for the manager.
D. Run the cipher command to generate an EFS recovery agent key and certificate.
E. Grant the manager NTFS List Folder Contents permissions to the folder containing
Sandra's files.
Answer: A, B
Explanation:
A: When a new file is created it inherits the permissions from its parent. A Move
operation creates a new version of the resource you are moving if you are moving the
resource to a different partition-for this reason, permissions of the parent are inherited. A
Move operation does not create a new version of the resource if you are moving the
resource to a different location on the same partition-for this reason, existing permissions
are moved along with the resource.
B: The NTFS Full Control permission allows a user to change permissions, take
ownership, delete subfolders and files, and perform the actions granted by all other
permissions.
Incorrect answers:
C, D: The Cipher utility allows you to encrypt files and folders as well as check the
encryption statistics. However, this does not guarantee the manager access to the files
because the files have been decrypted already and access was still denied.

E: The NTFS List Folder Contents permission allows a user to see the names of files and
subfolders in the folder. This is not the same as granting access.
Reference:
Gord Barker & Douglas Harrison, MCSE Training Guide: (Exam 70-210) ICA Windows
2000 Professional, New Riders Publishing, Indianapolis, 2000, pp. 114, 136
QUESTION 48
Yourhome computer is installed with Windows 2000 Professional and has 10 shared
folders that are available to your home network. You discover that one of the shared
folder named ShareA is unavailable to the network.
You want to fix this as quickly as possible by using an administrative tool. However,
you cannot remember the server location of Share
A. What should you do?
A. Use Windows Explorer to display the file paths of your shared folders.
B. Use Storage in Computer Management to view logical drive properties.
C. Use Event Viewer in Computer Management to search for shared folder error
messages.
D. Use System Tools in Computer Management to display the file paths of your shared
folders.
Answer: D
Explanation: The System Tools component of the Computer Management console
can be used to locate shared folders. The Computer Management console can be
accessed through the Administrative Tools applet in the Control Panel. In the
Computer Management console, expand System Tools, expand Shared Folders and
then open Shares to display all shared folders.
Incorrect Answers:
A: Windows Explorer does not show the location of shared folders in one place. To
locate shared folders through Windows Explorer, you would need to check each directory
and subdirectory for a shared folder icon.
B: Logical drives properties are used to display the capacity of the local logical drives on
the local computer and the security permissions that have been granted on the logical
drive. 'Storage' does not display the shared folders.
C: The Event viewer is used to view logs and error messages generated by Windows
2000. It cannot be used to show information on shares as it does not log any information
concerning shared folders.
Reference:
Rick Wallace, Self-Paced MCSE Training Kit (Exam 70-210)-Microsoft Windows 2000
Professional, Microsoft Press, Redmond, 2000, Chapter 14, Lesson 2
QUESTION 49
Exhibit:
From your Windows 2000 Professional computer, you need to map drive G to the
default administrative share on drive C of a server named AppSrv.

What can you do to map the drive?
A. Run the net share C$=G:\ command.
B. Run the net use G: \\AppSrv\C$ command.
C. Browse to AppSrv in Windows Explorer, and map drive G to the C$ share.
D. Browse to AppSrv in My Network Places, and map drive G to the C$ share.
Answer: B
Explanation: The root of each volume on a hard disk is automatically shared, and
the share name is the drive letter appended with a dollar sign ($). The appended
dollar sign causes the share to be hidden. One method of mapping a share to a
logical drive is to open the command prompt and type the command: NET USE
devicename: \\computername\sharename. In this scenario, the command translates
to the command: net use G: \\AppSrv\C$
Incorrect Answers:
A: The net share command is used to create shares not to connect to existing shares on
other computers in the network.
C: It is not possible to browse to the administrative share C$ on AppSrv since this is a
hidden share.
D: It is not possible to browse to the administrative share C$ on AppSrv since this is a
hidden share.
Reference:
Rick Wallace, Self-Paced MCSE Training Kit (Exam 70-210)-Microsoft Windows 2000
Professional, Microsoft Press, Redmond, 2000, Chapter 15, Lesson 3
QUESTION 50
From your Windows 2000 Professional client computer you wish perform some
routine administration on a server and you need to map drive G to the default
administrative share on drive C of a server named srv01.
Which command can you use?
A. Net share C$=G:\
B. Net share Admin$=G:\
C. Net use G: \\AppSrv01\C$
D. Net use G; \\AppSrv01\Admin$
Answer: C
Explanation: The root of each volume on a hard disk is automatically shared, and
the share name is the drive letter appended with a dollar sign ($). The appended
dollar sign causes the share to be hidden. One method of mapping a drive to a
logical drive is to open the command prompt and use the NET USE command. The
basic syntax of this command is: NET USE devicename:
\\computername\sharename. In this scenario this translates to the command: NET
USE G: \\AppSrv01\C$.

Incorrect answers:
A: Net share is used to share resources. It is not used to map drives.
B: Net share is used to share resources. It is not used to map drives.
D: Net use G; \\AppSrv01\Admin$ is syntactically incorrect. It also would map the
incorrect resource. Admin$ is the system root folder, which is C:\Winnt by default.
Reference:
Rick Wallace, Self-Paced MCSE Training Kit (Exam 70-210)-Microsoft Windows 2000
Professional, Microsoft Press, Redmond, 2000, Chapter 15, Lesson 3
QUESTION 51
On your Windows 2000 Professional home computer you have 17GB of private files
on drive D. These private files are shared as private_files on your home network.
You do not want this share to appear in the browse list. You want all other share
names to continue to appear in the browser list.
What should you do?
A. Stop the computer browser service, and disable the startup state.
B. Change the comment for the share to hidden:Yes
C. Change the share name to private_files$.
D. Add a hidden entry to the
HKLMSystem\currentcontrolset\services\larmanserver\shares\private_files registry value
entry.
Answer: C
Explanation: By appending a dollar sign to the end of the share name, the share is
hidden and the folder will not be shown in any browse list. Only users who know the
folder name can gain access to it if they also possess the proper permissions to it.
Incorrect answers:
A: If the computer browser service is stopped, users on the computer will not be able to
browse the network. The share would still be visible though.
B: A share will not become hidden by adding any comments to it. It will only be hidden
when the dollar sign is appended to the share name.
D: A share cannot be hidden by adding a hidden entry into the registry. It will only be
hidden when the dollar sign is appended to the share name.
Reference:
Rick Wallace, Self-Paced MCSE Training Kit (Exam 70-210)-Microsoft Windows 2000
Professional, Microsoft Press, Redmond, 2000, Chapter 15, Lesson 3
QUESTION 52
You have been assigned the task to configure five computers for dual boot with
Windows NT Workstation 4.0 and Windows 2000 Professional. All five computers
are fitted with an 8 GB hard disk.
You configure the hard disk on each computer to have two 4 GB partitions.
Windows NT Workstation is installed on drive C and Windows 2000 Professional on
drive D.

In Windows 2000 Professional, you configure a disk quota on drive D to prevent
users from saving work files on the disk. You restart your computer and load
Windows NT Workstation. You notice that users can save files to drive D.
You want to prevent users from saving the files to drive D in either operating
system. You also want to ensure that users can access both drives while using either
operating system.
What should you do?
A. Use Windows 2000 Professional to configure drive D as a dynamic partition.
B. Use Windows 2000 Professional to enable encrypting file system on drive D.
C. Use Windows NT workstation to configure NTFS permissions on drive D to deny the
users write permission.
D. Reinstall Windows NT Workstation after configuring disk quotas.
Answer: C
Explanation: You can use NTFS permissions to prevent users from saving files to a
specific drive, partition or folder. NTFS permissions can be set on Windows NT
computers that use the NTFS file system. Setting the NTFS permissions to deny
users write permissions will prevent the users from saving work files on the disk.
Incorrect answers:
A: Windows NT users cannot use dynamic partitions, as dynamic partitions are a storage
feature that has been introduced with Window 2000. Thus, configuring drive D as a
dynamic partition will prevent the Windows NT Workstation users from using the disk.
However, the Windows 2000 Professional users will still be able to make use of the drive
and to store files on the drive.
B: The Encrypting File System (EFS) is a file and folder security mechanism used to
prevent unauthorized users from accessing encrypted files. This does not prevent users
from saving files on the disk. It only prevents them from opening and reading encrypted
files.
D: Reinstalling Windows NT will not prevent users in Windows 2000 to save files on
disk D. As the installation process does not have an option to prevent users from saving
files to specified locations.
Reference:
Rick Wallace, Self-Paced MCSE Training Kit (Exam 70-210)-Microsoft Windows 2000
Professional, Microsoft Press, Redmond, 2000, Chapter 14, Lesson 3
QUESTION 53
All Windows NT Workstation 4.0 computers in your office was recently upgraded to
Windows 2000 Professional by you. A user named Maria need to be able to back up
files, share resources, and install programs on a client computer that she shares
with other users. You do not want Maria to be able to read other users' files.
What should you do to accomplish these goals? (Choose all that apply)
A. Add Maria's user account to the System group.
B. Add Maria's user account to the Interactive group.

C. Add Maria's user account to the Power Users group.
D. Add Maria's user account to the Administrators group.
E. Add Maria's user account to the Backup Operators group.
Answer: C, E
Explanation: By adding Maria's user account to the Power Users group Maria will
inherit the ability to share resources and install programs on the computer. To
grant Maria the ability to backup files she must be added to the Backup Operators
group, which has the permissions to backup files. As a member of this group Maria
will be able to backup files as she will inherit those rights by virtue of being a
member of that group. Maria will not have permissions to read the users' files as
neither the Power Users group nor the Backup Operators group have the
permissions to read other users' files.
Incorrect Answers:
A: The System group is a collection of the built-in groups. System groups do not have
specific memberships that can be modified. You cannot thus add users to system groups.
B: The Interactive group is a built-in group, which includes the user account of the user
who is currently logged on to the computer. User accounts cannot be added to this
built-in group.
D: Adding Maria's user account to the Administrators group would give her too much
permissions and rights. She would be able to perform all the required functions but she
will also be able to read other users' files.
Reference:
Rick Wallace, Self-Paced MCSE Training Kit (Exam 70-210)-Microsoft Windows 2000
Professional, Microsoft Press, Redmond, 2000, Chapter 14, Lesson 3
QUESTION 54
On your Windows 2000 Professional computer you have a shared folder named
AccSecured containing confidential financial data. Your company hires an intern
named Richard and you create a subfolder named intern, which Richard needs to
access. Richard is only allowed to access to the intern subfolder.
You create a user account named intern. You want to allow the intern user account
the ability to update, create, and delete files within the intern folder. You need to
prevent Richard from accessing any other files or folders within the AccSecured
folder.
What should you do? (Choose all that apply)
A. Map a network drive to the AccSecured\intern folder from Richard's computer.
B. Map a network drive to the AccSecured shared folder from Richard's computer.
C. Allow the intern user account modify permissions on the intern subfolder.
D. Allow the intern user account traverse folder/execute file permission on the
AccSecured folder.
E. Allow the intern user account list folder content permission on the AccSecured folder.
Remove read extended attributes and read permissions.

Answer: C, D
Explanation: The traverse folder/execute file permission" enables Richard to
traverse the AccSecured folder to reach the intern folder, while the modify
permissions on the intern folder allow Richard to modify information in the intern
subfolder.
Incorrect answers:
A: There is no need to map a network drive to the intern folder.
B: Richard only needs the traverse folder/execute file permission on the AccSecured
folder. He does not need to map the folder.
E: Richard should not be allowed to view the contents in the AccSecured folder.
Reference:
Rick Wallace, Self-Paced MCSE Training Kit (Exam 70-210)-Microsoft Windows 2000
Professional, Microsoft Press, Redmond, 2000, Chapter 14, Lesson 3
QUESTION 55
You are the desktop administrator for Alecnet .sc om's sales department.
Alecnet, sa user in the sales department, has a Windows XP Professional
computer with a single hard disk. The hard disk is formatted as NTFS. All Jack's
data is stored in a folder named C:\ Alecnet Fs i les1, which is shared as
Alecnet Fs i les1.
Alecnet ps o licy allows members of the Sales group and the Marketing group to
add files to the Alecnet Fs i les1 shared folder. A user named Philippe is a member
of the Sales group and Marketing group. Alecnet rse ports that Philippe is not
able to add files to the Alecnet Fs i les1 shared folder.
While troubleshooting the problem, you discover that the Sales global group has
Allow - Read permission for the Alecnet Fs i les1 shared folder, and that the
Marketing global group has Allow - Modify permission for the C:\ Alecnets
Files1 folder.
You need to ensure that users in the Sales group and the Marketing group can add
files to the Alecnet Fs i les1 shared folder.
Which two actions should you take? (Each correct answer presents part of the
solution. Choose two)
A. For the Alecnet Fs i les1 shared folder, grant the Everyone group Allow - Full
Control permission.
B. For the Alecnet Fs i les1 shared folder, grant the Marketing global group Allow -
Read permission.
C. For the CertK BillFiles1 shared folder, grant the Sales global group Allow - Change
permission.
D. For the C:\ Alecnet Fs i les1 folder, grant the Marketing global group Allow -
Read permission.
E. For the C:\ Alecnet Fs i les1 folder, grant the Sales global group Allow -
Modify permission.
F. For the C:\ Alecnet Fs i les1 folder, grant the Marketing global group Allow -
Write permission.

Answer: C, E
Explanation:
1. Apply the least restrictive permissions to files and folders and groups
2. Apply the least restrictive permissions to shares.
3. Apply the most restrictive permissions comparing the permissions found in 1 and 2.
The Modify permission allows the selected user or group to read, change, create, and
delete files but not to change permissions or take ownership of files. Selecting this check
box also selects the permissions listed below it on the Security tab and is equivalent to
assigning Write and Read & Execute permissions. Since Jack is a member of the Sales
group, you need to grant the Sales global group the Allow - Change permission for the
Alecnet Fs i les1 shared folder and the Allow - Modify permission for the
C:\ Alecnet Fs I les1 folder.
Full Control permission gives the selected user or group full control over the file or
folder. With Full Control permission, a user can do anything to an object-list the contents
of a folder, read and open files, create new files, delete files and subfolders, change
permissions on files and subfolders, and take ownership of files, for instance. Note that
selecting the Full Control check box on the Security tab also selects all permissions.
Read permission allows the selected user or group to list the contents of a folder, view
file attributes, read permissions, and synchronize files. This is the most basic permission.
Write permission allows the selected user or group to create files, write data, read
attributes and permissions, and synchronize files.
Incorrect answers:
A, B, D & F: Since members of the Sales Group and the Marketing group needs to be
able to add files to the Alecnet Fs i les1 shared folder and the Sales global group has
Allow - Read permission for the Alecnet Fs i les1 shared folder, and that the Marketing
global group has Allow - Modify permission for the C:\E PlanetLab Fs i les1 folder, you
only need to grant the Sales global group the Allow - Change permission for the
Alecnet Fs i les1 shared folder and the Allow - Modify permission for the
C:\ Alecnet Fs i les1
folder. Reference:
Ed Bott & Carl Siechert, Microsoft Windows Security for Windows XP and Windows
2000 Inside Out, Microsoft Press, Redmond, 2003, Part I, Chapter 5
QUESTION 56
You are the administrator of a Windows 2000 network.
You have been assigned the task to create a place for Alecnet 'ss engineering
and research departments to store secured files in on a Windows 2000
Professional computer. Members of the engineering department often participate
in projects with the research department.
To meet the file storage needs of both departments, the following requirements must
be met:
1. Users in the engineering department must have the ability to update the research
department's documents.
2. Users in the research department should not have the ability to view the
engineering department's documents.

3. Users in both departments should have the ability to update their own documents.
4. Users in the development department must have the ability to view both the
engineering and the research department's files.
You create two shared folders named Engineering and Research and remove the
inherited NTFS permissions on each shared folder. You create three groups named
Engineering, Research and Development, and add the appropriate user accounts
into the appropriate groups.
You want to grant permissions that meet all of these requirements. You want to
ensure that you do not grant more permissions than necessary.
What should you do?
To answer, select the appropriate permission setting for each group and drag the
setting under each folder.
Answer:
Explanation:
Read permission allows the selected user or group to list the contents of a folder, view
file attributes, read permissions, and synchronize files. This is the most basic permission.
The Modify permission allows the selected user or group to read, change, create, and
delete files but not to change permissions or take ownership of files. Selecting this check
box also selects the permissions listed below it on the Security tab and is equivalent to
assigning Write and Read & Execute permissions.
Reference:
Ed Bott & Carl Siechert, Microsoft Windows Security for Windows XP and Windows
2000 Inside Out, Microsoft Press, Redmond, 2003, Part I, Chapter 5

QUESTION 57
You are the administrator of Alecnet 'ss Windows 2000 network.
You need to store secured files for Alecnet 'ss accounting and legal departments
on a Windows 2000 Professional computer. You create two shared folders named
Accounting and Legal with the default NTFS and share permissions. You also create
two groups named Accounting and Legal and add the appropriate user accounts
into the appropriate groups.
To meet the security requirements for the shared folders the following criteria must
be met:
1. Users in both departments must be able to update their own files from the
network.
2. Users in the accounting department must be able to view the legal department's
documents from the network.
3. Users in the legal department must be prevented from being able to view the
accounting department's documents from the network.
You want to ensure that all security requirements are met using the least amount of
administrative effort.
What should you do?
A. Allow the Accounting group Read permission on the Accounting share and the Legal
shared folder. Allow the Legal group Read permissions on the Legal shared folder.
B. Allow the Accounting group Full Control permissions on the Accounting shared folder
and the Legal shared folder. Allow the Legal group Full Control permission on the Legal
shared folder.
C. Deny the Everyone group Full Control permissions on the Accounting shared folder.
D. Deny the Legal group Full Control permission on the Accounting shared folder.
Answer: D
Explanation: The shared folder permissions apply only when the folder is accessed over
the network. By default, the Everyone group is assigned Full Control for all new shared
folders. The default shared folder permission is Full Control, and it is assigned to the
Everyone group when you share the folder.
Full Control permission gives the selected user or group full control over the file or
folder. With Full Control permission, a user can do anything to an object-list the contents
of a folder, read and open files, create new files, delete files and subfolders, change
permissions on files and subfolders, and take ownership of files, for instance. Note that
selecting the Full Control check box on the Security tab also selects all permissions.
Read permission allows the selected user or group to list the contents of a folder, view
file attributes, read permissions, and synchronize files. This is the most basic permission.
Thus by denying the Legal group Full Control permission on the Accounting folder, you
will be complying with the security requirements with the least amount of administrative
control.
Reference:
Ed Bott & Carl Siechert, Microsoft Windows Security for Windows XP and Windows
2000 Inside Out, Microsoft Press, Redmond, 2003, Part I, Chapter 5

QUESTION 58
In order to distribute some reports to other technicians you need to create a web
share on your Windows 2000 Professional computer named Admin01. After you
have created a folder named reports you configure web sharing on Reports. The
share is named WebReports and allow Read permissions on the share.
You ask a user to test the web share by pointing to http://admin01/WebReports
from his computer. The user receives the following error message, 'You are not
authorized to view this page.'
You need to allow access to the folder. What must you do?
A. Allow write permission on WebReports.
B. Allow directory browsing permissions on WebReports.
C. In the IIS console, enable anonymous access to WebReports.
D. In the IIS console, set the execute permissions option to script and executables on
WebReports.
Answer: C
Explanation: The proper NTFS permissions, read permission, have already been
granted. To access the folder through Internet Explorer the folder must be
published in Internet Information Services (IIS), and authentication through IIS
must be provided. By enabling anonymous access in the IIS console the folder would
be accessible through Internet Explorer.
Incorrect answers:
A: Only read permission is required to view a page, not write permissions. And read
permission is already granted.
B: Via directory browsing, web site visitors are able to view the contents of directories
as a list of files. Directory browsing is not used to allow access to a web share.
D: The execute permission is only required to enable the user to run scripts and
executables. It is not required to view the web share.
Reference:
Rick Wallace, Self-Paced MCSE Training Kit (Exam 70-210)-Microsoft Windows 2000
Professional, Microsoft Press, Redmond, 2000, Chapter 20, Lesson 2
QUESTION 59
You are the administrator of the Coho Vineyard network that consists of 10
Windows 2000 Advanced Server computers and 250 Windows 2000 Professional
computers. The network is shared in two domains cohovineyard.com and
westcoastsales.com.
ServerA, a Windows 2000 Advanced Server, hosts the company's intranet site.
ServerA is in the cohovineyard.com domain and is running Internet Information
Services (IIS)