Test Questions Chapters 2/3

Question 1

What should MDF and IDF documentation take into account? What shouldn’t it?

Answer 1

• -Power sources avaible
• -environmental equipment needed to control temp and humidty
• -distances the cable runs must span
• -shouldn’t take into account costs

Question 2

At what point in the installation process should patch panel ports and wall plates be labelled?

Answer 2

When the cables are attached to the connectors (not after they’re installed

Question 3

The business is deploying new software under a change request. Apart from the including the installation procedure, would the change request include a list of software and hardware upgrades required to run the new software?

Answer 3

Apparently, Yes. although i’ve never seen this in change management experience. You only include the items that are actually changing, not what is required to run it!

Question 4

1. Authorizing downtime
2. designating a maintenance window

Are 2 of the responsibilities of the change management team during the change process? True or FALSE

Answer 4

TRUE

Question 5

Which Microsoft tool built into the OS is used for baselining?

Answer 5

Performance Monitor

Question 6

on a Windows server enabling audit policies, it records information about both successful and failed access attempts in which of the below?
A. System B. Application C. Security D. Setup

Answer 6

Security log

Question 7

In datacentres, which diagram contains the precise location of devices?

Answer 7

Rack Diagram

Question 8

Network Maps aren’t draw to scale and don’t indicate the exact location of each device - TRUE or FALSE?

Answer 8

TRUE

Question 9

Which RAIDS provide fault tolerance?

Answer 9

RAID1 and RAID5 (RAID10 too if exam asks for it)

*RAID5 needs 3 discs or more!

Question 10

Power supplies in combined mode mean both supply the power at the same time. If one goes down the other can still provide power - TRUE or FALSE

Answer 10

FALSE. The first part is right, but if one goes down the other will not be able to fully provide the power needs.
Supplies can run in only 1 of two modes, Redundant or Combined

Question 11

Which types of back up doesn’t clear the archive bit after archiving?

Answer 11

Differential

Question 12

grandfather, father and son refers to what type of back up is done - TRUE or FALSE

Answer 12

FALSE. It refers to the backup jobs for daily, weekly and monthly

Question 13

Windows server can provide full, differential and incremental backups, TRUE or FALSE?

Answer 13

FALSE. Only Full and Incremental

*It also can’t backup to magnetic media

Question 14

Multilayer/content switches can provide load balancing, - TRUE or FALSE

Answer 14

TRUE

Question 15

Multilayer switch typically works up to what layer?

Answer 15

Layer 4

Question 16

UPS in online mode runs devices using battery power all the time - TRUE or FALSE?

Answer 16

TRUE. The mains power is directly wired to the batteries first. It means there’s no sag in power when the power fails.

Question 17

Which UPS mode switches to battery power during a power failure?

Answer 17

Standby

Question 18

Bonding
Link Aggregation
Port Aggregation
NIC teaming
are all equivalent terms for what?

Answer 18

Combining the bandwidth of two or more network adapters

Question 19

Disc duplexing involves using multiple discs, each with it’s own disc controller to provide fault tolerance. TRUE or FALSE?

Answer 19

TRUE

Question 20

What are computers known as in a network load-balancing cluster?
What are they known as in a fail-over cluster?

Answer 20

Hosts for load-balancing cluster

Nodes for failover cluster

Question 21

Which type of backup uses the archive bit but doesn’t reset it after backing up and provides a short RTO?

Answer 21

Differential

Question 22

Clustering, Load-Balancing, NIC teaming and NAT are concepts that frequently use virtual IP’s to provide high availability - TRUE or FALSE?

Answer 22

FALSE. Only Clustering and Load-balancing. NIC teaming doesn’t use virtual IP addresses. NAT isn’t a HA technology.

Question 23

RTO is what? What does it depend on?

Answer 23

Recovery Time Objective - the amount of time it takes to restore data from the most recent backup. IT depends on the amount of data and the speed of the backup medium

Question 24

What backup backs up all the data since the last backup of any kind?

Answer 24

Incremental

Question 25

The types of applications subscribers use while accessing their provider's services are covered by the SLA, true or false?

Answer 25

False

Question 26

What mechanism allows a backup job spanning multiple removable media types to execute more quickly by automatically inserting and removing media.

Answer 26

An autochanger

Question 27

What issue does RAID6 address? What's the minimum number of drives required?

Answer 27

It addresses the issue with RAID5 where if 2 drives fail at the same time there is a high likelihood of permanent data loss. It uses two blocks of parity requiring min of 4 drives.

Question 28

Which RAID levels provide fault tolerance with the down side of having the smallest amount of useable disc space?

Answer 28

RAID1 (50% between 2 discs) and RAID10 (I don't understand how this is 50%.)

Question 29

What is version skew and what can prevent it?

Answer 29

Version skew happens when a file is written/changed during a backup. The file is written to a directory that has already been backed up and thus won't appear on the backup location. Taking a snapshots prevents this.

Question 30

which unix utility displays performance info about the currently running processes?

Answer 30

the TOP command.

Question 31

Which SNMP versions don't include any security?

Answer 31

SNMPv1 | SNMPv2c

Question 32

A driver update is typically applied to hardware or software?

Answer 32

Software

Question 33

When does Microsoft release the latest OS patches for automatic download?

Answer 33

Second Tuesday of every month.

Question 34

Research Testing Backup Are part of what process?

Answer 34

Patch Evaluation. | *Rolling back is not part of it.

Question 35

Device driver updates are least likely to be updated of the kinds of updates usually undertaken. Unless it addresses a specific bug or issue - TRUE or FALSE?

Answer 35

TRUE

Question 36

to effectively monitor a network using SNMP, you must be sure that all of the equipment you purchase when designing and building your network supports the protocol - TRUE or FALSE?

Answer 36

TRUE

Question 37

SNMPv2 does not use a community string for security, TRUE or FALSE?

Answer 37

TRUE

Question 38

Port Scanners examine a system at what layer of the OSI?

Answer 38

Layer 4 - Transport (it looks for port numbers). | Ports can be described as 'system endpoints'

Question 39

web server logs need a traffic analysis application to interpret and the logs are stored as text files - TRUE or FALSE Is a protocol analyizer a traffic analyzer?

Answer 39

TRUE. No according to the test questions. Protocol analysers can't interpret web server logs, they interpret packets on the network

Question 40

Packet/protocol analyzers can look at data insight packets which can contain passwords in clear text - TRUE or FALSE?

Answer 40

TRUE | *packet sniffers can't look at the data inside packets

Question 41

packets that are dropped because they are destined for another interface are known as what?

Answer 41

Discards

Question 42

Security and Cycling are tasks assocaited with what? | What is meant by them?

Answer 42

Log Management. Security is need to keep the logs secure Cycling sets the period to keep the log for before being deleted.

Question 43

Nessus, Nmap and MBSA can all perform what?

Answer 43

Vulnerability scanning

Question 44

Which free tool is an inventory, assessment, and reporting tool that helps you assess your current IT infrastructure and determine the right Microsoft technologies for your IT needs?

Answer 44

MAP Toolkit. | *it does not perform vulnerability scanning

Question 45

Network mapping, Remediation and Penetration testing are NOT functions classified as vulnerability scanning. TRUE or FALSE?

Answer 45

TRUE

Question 46

Data Aggregation, Correlation, Retention and Forensic Analysis are processes in what?

Answer 46

SIEM

Question 47

In SIEM which process involves searching logs on multiple computers for specific information based on set criteria and time periods?

Answer 47

Forensic Analysis

Question 48

Which VPN protocol doesn't provide encryption within the tunnel?

Answer 48

L2TP - it uses IPSec *Technically, PPTP is the same as it relies on the underlying PPP to do that but the test questions didn't use this as an answer.

Question 49

SSH is not used to secure connections between web servers and web browsers, TRUE or FALSE?

Answer 49

TRUE

Question 50

the Authentication Header is a protocol in the TCP/IP suite that provides integrity services in the form of a digital signature - TRUE or FALSE

Answer 50

TRUE

Question 51

Phase 1 of IPsec connection establishment authenticates the endpoints using digitally signed certifcates or a PSK - TRUE or FALSE?

Answer 51

TRUE

Question 52

PHase 2 of IPSec connection is encrypted using the secure keys established in phase one and is responsible for negotiating another set of keys called the Secure Association - TRUE or FALSE

Answer 52

TRUE

Question 53

TFTP doesn't encrypt text sent to authenticate login - TRUE or FALSE

Answer 53

FALSE - it doesn't authenticate full stop.

Question 54

Which variant of FTP is suitable for systems booting with PXE by downloading boot image from the network?

Answer 54

TFTP. | It's because it doesn't need to authenticate.

Question 55

Out of band devices don't require an IP address to manage - TRUE or FALSE?

Answer 55

TRUE

Question 56

What 4 components are required for a computer to establish a remote TCP/IP connection.

Answer 56

1) Common protocols 2) Physical Layer connection 3) TCP/IP configuration 4) Host and remote software

Question 57

Browsing using a VPN is slower because you are using the remote network LAN which has to then pass all the requests down the VPN tunnel - TRUE or FALSE?

Answer 57

TRUE

Question 58

What are the two most common types of SSL VPNs?

Answer 58

SSL Portals - provides users with access to selected remote network resources SSL tunnels - client browser uses java or flash to connect

Question 59

- -plugging into the console port - -establishing a modem connection - -connecting dedicated ports on each device to a separate switch Are all forms of what?

Answer 59

Out-of-band management

Question 60

Which of the below is untrue about VNC 1. it's free 2. runs on many OSs 3. runs faster than competition 4. can run through a web browser

Answer 60

3. runs faster

Question 61

What policy specifies how and when users are permitted to access the company network?

Answer 61

Remote access policy

Question 62

Humidity levels lower than what can cause a build-up of static electricity?

Answer 62

50%

Question 63

Account lock thresholds specifies what?

Answer 63

the number of incorrect logon attempts that are allowed before the account is locked

Question 64

Reset account lockout threshold counter specifies what?

Answer 64

The amount of time that an account remains locked out

Question 65

What data-loss prevention term describes when data is being transmitted across the network?

Answer 65

Data-in-motion

Question 66

data-in-use describes end-point actions - TRUE or FALSE?

Answer 66

TRUE

Question 67

On-boarding and off-boarding are typically associated with Identity Management or Data-loss prevention?

Answer 67

Identity Management - users are added or removed from the IAM (Identity and Access Management system)

Question 68

--The Department of State --Department of Commerce and --Department of the Treasury are all capable of imposing international export controls on software products? TRUE or FALSE?

Answer 68

TRUE

Question 69

What is a fibre channel arbitrated loop (known as FC-AL) used for?

Answer 69

For direct connection to storage that isn't shared to other hosts (so when it's only used by one host)

Question 70

What is an organization's security incident response policy's primary goal? Identifying the cause of an incident or preventing an incident from occurring again?

Answer 70

Preventing an incident from occurring again

Question 71

Electrical fires are not something typically addressed by an IT departments incident response POLICIES. TRUE or FALSE?

Answer 71

TRUE

Question 72

Password history policy is not something design to prevent brute force attacks. TRUE or FALSE

Answer 72

TRUE

Question 73

Data preservation is not likely to be a procedural element of an IT asset disposal policy - TRUE or FALSE

Answer 73

TRUE (only according to the practice test book, this is contradicted in the review guide)