ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam 70-741 All Questions

View all questions & answers for the 70-741 exam
Go to Exam

Exam 70-741 topic 1 question 116 discussion

Actual exam question from Microsoft's 70-741
Question #: 116
Topic #: 1
[All 70-741 Questions]

Your network contains an Active Directory domain named contoso.com that contains a domain controller named DC1. All DNS servers for the network run BIND
10.
Your perimeter network contains a DHCP server named DHCP1 that runs Windows Server 2016. DHCP1 is a member of a workgroup named WORKGROUP.
DHCP1 provides IP address leases to guests accessing the Wi-Fi network.
Several engineers access the network remotely by using a VPN connection to a remote access server that runs Windows Server 2016. All of the VPN connections use certificate-based authentication and are subject to access policies in Network Policy Server (NPS). Certificates are issued by an enterprise certification authority (CA) named CA1.
All Windows computers on the network are activated by using Key Management Service (KMS). On-premises users use Remote Desktop Services (RDS).
You plan to deploy IP Address Management (IPAM) to the network.
Which action can you perform on the network by using IPAM?

  • A. Manage the DNS zones on the DNS servers.
  • B. Audit logon events on the RDS server.
  • C. Audit authentication events from DC1.
  • D. Manage activations on the KMS server.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by dritter at March 3, 2019, 3:38 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
dan
Highly Voted 5 years, 5 months ago
dns and dhcp are not domain joined in the question. All relative things that IPAM could are no longer relevant. IPAM is domain joined and therefore can only give audit information based on the DC.
upvoted 20 times
...
Yebubbleman
Most Recent 3 years, 11 months ago
Watch out for the detail on BIND. If you're not careful, you'll assume that IPAM will manage the DNS servers here and you'll get the question wrong.
upvoted 1 times
...
lofzee
3 years, 11 months ago
gees. I fell for the trick in this question. If you don't read it properly.... then you're screwed :D The key pieces of information are : DNS runs BIND 10 - which is Ubuntu DNS and DHCP is in a workgroup. IPAM cannot manage things not in a domain and it cannot manage Ubuntu DNS, therefore, the only thing it can do it Auditing....
upvoted 1 times
...
panda
4 years ago
The link(*1) says: IPAM supports only Microsoft domain controllers, DHCP, DNS, and NPS servers running Windows Server® 2008 and above. B as RDS server isn't supported by IPAM. D as KMS server isn't supported by IPAM. A as DNS server running BIND isn't supported by IPAM. (*1)https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2012-R2-and-2012/jj878312(v=ws.11)
upvoted 2 times
...
V1980
4 years, 1 month ago
Last week I was asked this but instead of BIND they listed the servers in the scenario as 'linux servers' which is the same as BIND I believe.
upvoted 1 times
...
alexnt
4 years, 4 months ago
What about this variant? Which action can you perform on the network by using IPAM? A. Audit user and device logon event from NPS. B. Audit logon events on the RDS server. C. Audit configuration changes to the remote access server. D. Audit certificate enrollment requests on CA1. Offered Answer: A
upvoted 3 times
TA77
4 years, 3 months ago
user and device logon = authentication So, I guess it's correct
upvoted 6 times
...
...
Ario
4 years, 9 months ago
C is correct
upvoted 3 times
...
PatS
5 years, 1 month ago
C is correct! 100%
upvoted 3 times
...
MrRiver
5 years, 2 months ago
ALL DNS servers ad BIND (Linux) ... i don't know how the active directory should work with this ... but IPAM won't mange bind dns Servers ...
upvoted 4 times
...
RickSk
5 years, 5 months ago
I'm very confused by this one. Option A seems to me to be the obvious choice. Auditing authentication events isn't the job of IPAM, is it? What dritter's link asserts is that IPAM tracks IP addresses through a correlation of DHCP leases and authentication events on DCs and NPS; this would discard option C.
upvoted 2 times
...
TMW
5 years, 6 months ago
you can also manage the DNS zones on the DNS servers from IPAM. This should ask us to "select 2"
upvoted 3 times
Qaatloz
4 years, 11 months ago
This question tricks you because it mentiones that the dns-servers run Bind10 which is a free dns software but cannot be managed by microsoft tools. So the only option that remains is C
upvoted 20 times
...
...
dritter
5 years, 9 months ago
You can read about the technique behind IP address tracking here: https://docs.microsoft.com/en-us/powershell/module/ipamserver/get-ipamipaddressauditevent?view=win10-ps "IPAM enables IP address tracking through correlation of DHCP lease events with user and computer authentication events on managed domain controllers [...]"
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago