Cause all that matters here is passing the Microsoft 70-685 exam. Cause all that you need is a high score of 70-685 Pro: Windows 7, Enterprise Desktop Support Technician exam. The only one thing you need to do is downloading Ucertify 70-685 exam study guides now. We will not let you down with our money-back guarantee.
Q21. A user's computer fails. The help desk provides the user with a new computer. The user's Documents folder is restored from the backup.
The user reports that he can no longer access his encrypted files. The help desk recovers the files by using a data recovery agent (DRA).
You need to ensure that when users receive new computers, they can access their encrypted files without administrative intervention.
What should you request?
A. credential roaming be enabled
B. BitLocker be enabled on all computers
C. user accounts be trusted for delegation
D. the CA be configured for key archival and recovery
Answer: A
Q22. Five users from the main office travel to the branch office. The users bring their portable computers.
The help desk reports that the users are unable to access any network resources from the branch office.
Branch office users can access the network resources.
You need to ensure that the main office users can access all network resources by using their portable computers in the branch office. The solution must adhere to the corporate security guidelines.
What should you instruct the help desk to do on the portable computers?
A. Create a new VPN connection.
B. Add the users to the local Administrators group.
C. Add the users to the Network Configuration Operators group.
D. Configure the alternate configuration for the local area connection.
Answer: D
Q23. You need to recommend a solution to back up BitLocker recovery information based on the company's existing data protection requirements. The solution must include the backup destination and the solution prerequisites.
What should you recommend? (Choose all that apply.)
A. Upgrade all Windows XP client computers to Windows 7.
B. Store the BitLocker recovery information in Active Directory.
C. Create a GPO to enroll users for a Basic EFS certificate automatically.
D. Raise the forest functional level to Windows Server 2008 R2.
E. Store each user's BitLocker recovery information on USB keychain drives.
F. Import the BitLockerTPMSchemaExtension.ldf file to Active Directory.
Answer: BF
Q24. After you modify Corp GPO, users cannot log on to their computers.
You need to ensure that users can log on to their computers.
What should you do? (Choose all that apply.)
A. Modify Corp GPO so that the default rules are created
B. Log off the client computers and log back on
C. Restart the client computers
D. Modify Corp GPO so that all rules are deleted
Answer: AC
Q25. Your company has a main office and a branch office.
The network contains a single Active Directory domain. All computers are members of the domain.
Five users in the branch office report that their Windows 7 computer is slow when it runs multiple applications.
From your computer, you need to identify the application that uses the most processor on the computers.
Which tool should you use?
A. Performance Monitor
B. Reliability Monitor
C. Resource Monitor
D. System Information
Answer: A
Q26. All client computers on your company network run Windows 7. All servers in your company run Windows Server 2008 R2. Employees use a VPN connection to connect to the company network from a remote location.
Employees remain connected to the VPN server to browse the Internet for personal use.
You need to ensure that employees are unable to use the VPN connection for personal use.
What should you do?
A. Configure the VPN connection to append a connection-specific DNS suffix.
B. Configure the VPN connection to use machine certificates for authentication.
C. Use Group Policy to disable the Use default gateway on remote network setting on each client computer.
D. Use Group Policy to configure the firewall on each computer to block outgoing connections when using the VPN connection.
Answer: C
Q27. All client computers on your company network run Windows XP and are members of an Active Directory Domain Services domain.
You plan to migrate all computers to Windows 7. You also plan to deploy a new VPN server to support remote network access for the computers.
You need to ensure that all computers will be supported for remote access during the migration to Windows
What should you do?
A. Set the VPN server to Layer 2 Tunneling Protocol.
B. Set the VPN server to Secure Socket Tunneling Protocol.
C. Set the VPN server to Internet Key Exchange version 2.
D. Configure the Direct Access feature on the VPN server.
Answer: A
Q28. The help desk technicians discover that some computers have not installed the latest updates for Windows. The Windows Update log files on the computers show that to complete the installation of several updates the computers must be restarted.
You need to ensure that future updates are successfully installed on all computers.
What should you request?
A. the logon hours for all user accounts be set from 06:00 to 22:00
B. the Delay Restart for scheduled installations setting in the WSUS Policy GPO be set to disabled
C. the Allow Automatic Updates immediate installation setting in the WSUS Policy GPO be set to enabled
D. the No auto-restart with logged on users for scheduled automatic updates installations setting in the WSUS Policy GPO be set to disabled
Answer: D
Q29. Several mobile users access the Internet by using cellular connections.
The help desk reports a high volume of calls from mobile users who report the following connection problems:
When their cellular connections fail, their VPN connections also fail.
When their cellular connections are reestablished, they must manually connect to the VPN server.
You need to recommend a solution to ensure that the VPN connections are automatically reestablished.
What should you recommend?
A. Implement an IKEv2 VPN.
B. Implement an SSTP-based VPN.
C. Configure credential roaming.
D. Configure a Kerberos user ticket lifetime.
Answer: A
Q30. When visiting certain websites, users receive a message in Internet Explorer.
The message is shown in the exhibit:
You need to ensure that the Internet Explorer settings for all client computers follow company requirements.
What should you modify in Group Policy?
Exhibit:
A. Enable the Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Turn on Protected Mode setting.
B. Disable the Internet Explorer\Internet Control Panel\Prevent ignoring certificate errors setting.
C. Enable the Internet Explorer\Internet Control Panel\Prevent ignoring certificate errors setting.
D. Disable the Windows Components\Windows Error Reporting\Disable Windows Error Reporting setting.
E. Enable the Windows Components\Windows Error Reporting\Disable Windows Error Reporting setting.
F. Enable the Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Do not prompt for client certificate selection when no certificate or only one certificate setting.
Answer: C