Welcome to Certifiable, your exam-prep headquarters. Here you'll find questions about some of the tricky areas that are fair game for the certification exams.

Questions (June 28, 2002)
Answers (June 28, 2002)

This week's questions cover topics for Exam 70-210: Installing, Configuring, and Administering Microsoft Windows 2000 Professional.

Questions (June 28, 2002)

Question 1
You work at a special effects company and run a 3D animation program on your Windows 2000 Professional workstation, which has a 3GB SCSI hard disk and 128MB of RAM. The animation program requires a lot of RAM, and your system must swap pages from memory to the pagefile regularly. You want to maximize the performance of your system's pagefile and minimize the amount of fragmentation that occurs in that file. Which of the following options represents the best way for you to configure your pagefile? (Choose the best answer.)

  1. Set the initial size to 64MB and the maximum size to 192MB.
  2. Set the initial size to 2048MB and the maximum size to 2048MB.
  3. Set the initial size to 256MB and the maximum size to 256MB.
  4. Set the initial size to 128MB and the maximum size to 128MB.
  5. Set the initial size to 192MB and the maximum size to 128MB.
  6. Set the initial size to 256MB and the maximum size to 128MB.

Question 2
You're concerned that someone might be able to gain unauthorized access to several documents that you share with other members of a workgroup called PROJEXT. You have local administrator rights to your workstation, and each of your colleagues has local administrator rights to their workstations.

You've configured the NTFS permissions so that only the appropriate colleagues have access to the shared files. You also want to configure your workstation so that the data you send to other machines travels in an encrypted format.

You configure your machine with an IP Security (IPSec) policy of Client (Respond Only). However, when you use a packet sniffer to test the IPSec policy, you find that not all the data you send from your machine is encrypted. Which of the following descriptions offers the best explanation for this behavior? (Choose the best answer.)

  1. The Client (Respond Policy) doesn't secure data unless the destination computer requests it, so data you send from a machine with the IPSec policy of Client (Respond Policy) isn't necessarily encrypted.
  2. The domain policy is overwriting the local policy on your machine. Domain policy always overrides any conflicting settings at the local level.
  3. IPSec encrypts data on the local hard disk but won't encrypt data that travels over the network. To encrypt data you send over the network, you must use Encrypting File System (EFS).
  4. NTFS permissions always override IPSec policy settings. If the user receiving the data has NTFS permission of Read or greater, the data won't travel in an encrypted format.

Question 3
You have a Dell Laptop that you take with you when you travel between your home, your office, and your cabin in the Rockies. At the office, you plug the laptop into a docking station to access the network through the docking station's built in NIC. When you're at home or at the cabin, you use a dialup VPN connection to access the company network.

You want to disable devices such as the NIC and DVD-ROM drive when away from the office docking station. What profile should you create for your laptop to prevent Windows 2000 Professional from attempting to start the docking station network adapter and the DVD-ROM drive when you're out of the office? (Choose the best answer.)

  1. Low profile
  2. Personal roaming profile
  3. Hardware profile
  4. Mandatory roaming profile
  5. Local profile

Answers (June 28, 2002)

Answer to Question 1
The correct answer is C—Set the initial size to 256MB and the maximum size to 256MB. Microsoft recommends that to achieve the best performance, set the pagefile's initial size to no less than the recommended size that appears under "Total paging file size for all drives." The recommended size is equivalent to 1.5 times the amount of RAM on your system—which on your system is 192MB. However, the question presents only one option with 192MB as the initial size, and that option's maximum size is invalid.

If you run memory-intensive applications, you should increase the pagefile size to a number that's greater than the recommended size. Setting the initial pagefile size to equal to the maximum pagefile size can reduce pagefile fragmentation and improve performance. Note that you can't set the initial size to a number that's greater than the maximum size.

Answer to Question 2
The correct answer is A—The Client (Respond Policy) doesn't secure data unless the destination computer requests it, so data you send from a machine with the IPSec policy of Client (Respond Policy) isn't necessarily encrypted.

IPSec is a suite of cryptography-based protection services and security protocols. Because IPSec requires no changes to applications or protocols, you can easily deploy it on existing networks.

Answer to Question 3
The correct answer is C—Mandatory roaming profile. Hardware profiles tell Win2K which devices to start when a system boots and which settings to use for each device. When you install Win2K, the system creates a default hardware profile. By default, this hardware profile enables every device that's installed on the computer.

Hardware profiles are useful when you have different configurations when you're on the network or away from the network. Hardware profiles let you change the devices that your computer uses when you move from location to location.