Breathing of 70-342 practice test materials and lab for Microsoft certification for IT engineers, Real Success Guaranteed with Updated 70-342 pdf dumps vce Materials. 100% PASS Advanced Solutions of Microsoft Exchange Server 2013 exam Today!
Q76. (Topic 6)
You plan to deploy 20 Client Access servers that will have Exchange Server 2013 installed.
You need to prepare the certificate required for the planned deployment. The solution must ensure that the same certificate can be used on all of the Client Access servers.
What should you do first?
A. From the Exchange Admin Center, create a new certificate request.
B. On each Client Access server, start the Certificates console and run the Certificate Import Wizard.
C. On all of the Client Access servers, delete the default self-signed certificates.
D. On one of the Client Access servers, run the Remove-ExchangeCertificate cmdlet.
Answer: A
Explanation:
You can use the EAC to generate certificate requests that work with most certificate
issuers.
Note:
To prevent clients from receiving errors regarding untrusted certificates, the certificate
that's used by your Exchange server must be issued by someone that the client trusts.
Although most clients can be configured to trust any certificate or certificate issuer, it's
simpler to use a trusted third-party certificate on your Exchange server. This is because most clients already trust their root certificates. There are several third-party certificate issuers that offer certificates configured specifically for Exchange.
Q77. (Topic 3)
You need to recommend which tasks must be performed to meet the security requirements for Tailspin Toys.
Which two tasks should you recommend? (Each correct answer presents part of the solution. Choose two.)
A. Run the set-transportserver –transportsyncenabled $true command.
B. Run the set-transportconfig –tlsreceivedomainsecurelist tailspintoys.com command.
C. Run the set-transportservice –transportsyncenabled $true command.
D. Create a new Receive connector.
E. Create a new Send connector.
Answer: B,D
Explanation:
* Scenario:
Secure all of the email messages from the users at Tailspin Toys to the Contoso users.
Ensure that all of the messages can be secured if the certificates at Tailspin Toys are
issued by a trusted third-party certification authority (CA).
* Configuring Domain Security on Exchange Server 2013
1. Establish certificate trust between organizations
2. Configure Domain Security
TLSReceiveDomainSecureList – specifies the domains from which you want to receive
domain secured email by using mutual Transport Layer Security (TLS) authentication.
3. Configure connectors
Reference: Configuring Domain Security on Exchange Server 2013
Q78. (Topic 6)
You have an Exchange Server 2013 organization and a Microsoft Lync Server 2013 environment.
You plan to integrate Lync Server 2013 and Exchange Server 2013 Unified Messaging (UM) services.
You need to identify which actions will complete when you run the exchucutil.psl Windows PowerShell script.
Which three actions should you identify? Each correct answer presents part of the solution.
A. A UM hunt group will be created for each UM IP gateway
B. Permission to read Active Directory UM container objects will be assigned to the Lync server
C. The TLS listening port will be changed on the Client Access servers
D. The Lync server will be added to the SIP dial plan
E. A UM IP gateway will be created for each Lync Server pool
F. A UM auto attendant will be created for each UM IP gateway
Answer: A,B,E
Explanation:
When you’re integrating Microsoft Lync Server with Exchange Unified Messaging (UM), you have to run the ExchUcUtil.ps1 script in the Shell. The ExchUcUtil.ps1 script does the following:
* Creates a UM hunt group for each UM IP gateway. The pilot identifier of each hunt group specifies the UM SIP URI dial plan used by the Lync Server Front End pool or Standard Edition server that’s associated with the UM IP gateway.
* Grants Lync Server permission to read Active Directory UM container objects such as UM dial plans, auto attendants, UM IP gateways, and UM hunt groups.
* Creates a UM IP gateway for each Lync Server pool.
Reference: Configure UM to work with Lync Server
https://technet.microsoft.com/en-us/library/jj966276%28v=exchg.150%29.aspx
Q79. DRAG DROP - (Topic 6)
You have an Exchange Server organization named adatum.com. The organization contains servers that have Exchange Server 2010 and Exchange Server 2013 installed.
The company executives require that all email messages remain stored for three years.
You create two retention tags named Ret1 and Ret2. Ret1 moves the email messages to an Archive mailbox after one year. Ret2 permanently deletes the email messages after three years.
You need to meet the company executives' requirements. The solution must ensure that all email messages that are older than two years are removed as quickly as possible.
Which three actions should you perform in sequence? (To answer, move the appropriate three actions from the list of actions to the answer area and arrange them in the correct order.)
Answer:
Q80. (Topic 6)
You have an Exchange Server 2013 organization.
A distribution group named Sales_Reports is used to distribute confidential information to all of the senior managers in your company.
You need to recommend a solution to ensure that all unencrypted messages sent to the Sales_Reports group are encrypted on the server automatically before they are stored in the mailboxes of the managers.
Which two technologies should you include in the recommendation? Each correct answer presents part of the solution.
A. A transport rule
B. S/MIME
C. Active Directory Certificate Services (AD CS)
D. Active Directory Rights Management Services (AD RMS)
E. TLS
Answer: A,B
Explanation:
A: As an administrator, you can create transport rules to enable Microsoft Office 365 Message Encryption. This service lets you encrypt outgoing email messages and remove encryption from incoming encrypted replies to those messages, depending on conditions defined in the rule.
B: Encrypted e-mail messages Messages that are encrypted using S/MIME. Transport rules can access envelope headers contained in encrypted messages and process messages based on predicates that inspect them. Rules with predicates that require inspection of message content, or actions that modify content, can't be processed.
Reference: Understanding How Transport Rules Are Applied
https://technet.microsoft.com/en-us/library/bb124703%28v=exchg.141%29.aspx
Q81. DRAG DROP - (Topic 4)
You restore the files of DB3 to EX3.
You need to mount DB3 on EX3. The solution must ensure that email messages sent to the users of DB3 while the database was offline are delivered once DB3 is mounted.
Which three actions should you perform in sequence? (To answer, move the appropriate three actions from the list of actions to the answer area and arrange them in the correct order.)
Answer:
Q82. (Topic 6)
You have an Exchange Server 2013 organization.
You successfully migrate the public folders from a previous version of Exchange Server.
You discover that one of the public folder mailboxes almost reached its quota size.
You need to move some of the public folders in the public folder mailbox to another public
folder mailbox.
What should you run?
A. Set-PublicFolderMailbox
B. Merge PublicFolderMailbox.ps1
C. Split-PublicFolderMailbox.ps1
D. New-PublicFolderMigrationRequest
Answer: C
Explanation:
* Split-PublicFolderMailbox.ps1
Splits the given public folder mailbox based on the size of the folders.
* If the content of a public folder mailbox begins to exceed your mailbox quotas, you may
need to move public folders to a different public folder mailbox. There are a couple ways to
do this. To move one or more public folders that don’t contain subfolders, you can use the
PublicFolderMoveRequest cmdlets.
Reference: Move a Public Folder to a Different Public Folder Mailbox
Q83. (Topic 6)
You plan to deploy 20 Client Access servers that will have Exchange Server 2013 installed.
You need to prepare the certificate required for the planned deployment. The solution must ensure that the same certificate can be used on all of the Client Access servers.
What should you do first?
A. On each Client Access server, start the Certificates console and run the Certificate Import Wizard.
B. From the Exchange Admin Center, create a new certificate request.
C. On all of the Client Access servers, run the Get-ExchangeCertificate cmdlet.
D. On one of the Client Access servers, run the New-ExchangeCertificate cmdlet and specify the BinaryEncoding parameter.
Answer: B
Explanation:
Configuring server certificates In Exchange 2013, you can use the Certificate Wizard to request a digital certificate from a certification authority. After you’ve requested a digital certificate, you’ll need to install it on the Client Access server.
Reference: Exchange 2013 Client Access server configuration
https://technet.microsoft.com/en-us/library/hh529912(v=exchg.150).aspx
Q84. (Topic 6)
You have an Exchange Server 2013 organization that is integrated with Information Rights Management (IRM).
A user is unable to create and read IRM-protected messages from a mobile device. The user can open IRM- protected messages *missing text*.
You need to identify the most likely cause of the issue.
What should you identify?
A. the value of DevicePasswordEnabled of a mobile device policy
B. the value of AllowNonProvisionableDevices of a mobile device policy
C. the Exchange ActiveSync protocol version
D. the value of RequireDeviceEncryption of a mobile device policy
Answer: D
Explanation:
Mobile IRM protection in Exchange 2013 When you set the RequireDeviceEncryption parameter to $true, mobile devices that don't support device encryption will be unable to connect.
Note: Using IRM in Exchange ActiveSync, mobile device users can:
* Create IRM-protected messages.
* Read IRM-protected messages.
* Reply to and forward IRM-protected messages.
Reference: Information Rights Management in Exchange ActiveSync
https://technet.microsoft.com/en-us/library/ff657743(v=exchg.150).aspx
Q85. (Topic 6)
You have an Exchange Server 2013 organization.
A user is involved in a possible litigation matter.
You need to protect all of the messages in a mailbox from permanent deletion.
Which cmdlet should you use?
A. Enable-InboxRule
B. Add-MailboxPermisssion
C. Set-Mailbox
D. Set-Retention Policy
Answer: C
Explanation:
This example configures April Stewart's mailbox to retain deleted items for 30 days.
Set-Mailbox -Identity - "April Stewart" -RetainDeletedItemsFor 30
Note: When a user deletes items from the Deleted Items default folder by using the Delete,
Shift+Delete, or Empty Deleted Items Folder actions, the items are moved to the
Recoverable Items\Deletions folder. The duration that deleted items remain in this folder is
based on the deleted item retention settings configured for the mailbox database or the
mailbox.
Incorrect:
Not D: The Set-Retention Policy is used in a cloud environment only.
Reference: Configure Deleted Item retention and Recoverable Items quotas
https://technet.microsoft.com/en-us/library/ee364752%28v=exchg.150%29.aspx
Q86. (Topic 6)
You have an Exchange Server 2013 organization.
You successfully migrate the public folders from a previous version of Exchange Server.
You discover that one of the public folder mailboxes almost reached its quota size.
You need to move some of the public folders in the public folder mailbox to another public folder mailbox.
What should you run?
A. Update-PublicFolderMailbox
B. New-PublicFolderMoveRequest
C. New-PublicFolderMigrationRequest
D. Set-PublicFolderMailbox
Answer: B
Explanation:
* If the content of a public folder mailbox begins to exceed your mailbox quotas, you may need to move public folders to a different public folder mailbox. There are a couple ways to do this. To move one or more public folders that don’t contain subfolders, you can use the PublicFolderMoveRequest cmdlets.
* Use the New-PublicFolderMoveRequest cmdlet to begin the process of moving public folder contents between public folder mailboxes. Moving public folders only moves the physical contents of the public folder; it doesn't change the logical hierarchy. When the move request is completed, you must run the Remove-PublicFolderMoveRequest cmdlet to remove the request or wait until the time specified in the CompletedRequestAgeLimit parameter has passed. The request must be removed before you can run another move request.
Incorrect:
Not A: Use the Update-PublicFolderMailbox cmdlet to update the hierarchy for public
folders.
Not C: Use the New-PublicFolderMigrationRequest cmdlet to begin the process of
migrating public folders from Microsoft Exchange Server 2007 or Exchange Server 2010 to
Exchange Server 2013.
Reference: Move a Public Folder to a Different Public Folder Mailbox
Q87. HOTSPOT - (Topic 6)
You have an Exchange Server 2013 organization.
You need to create a single transport rule that applies to messages sent from users in the organization to users that are outside of the organization. Which two options should you use? To answer, select the two appropriate options in the answer area.
Answer:
Q88. HOTSPOT - (Topic 6)
Your company has a main office and a disaster recovery site. An Active Directory site named MainSite exists for the main office. An Active Directory site named DRSite exists for the disaster recovery site. The two sites connect to each other by using a WAN link. All users work in the main office.
You have an Exchange Server 2013 organization. The organization contains six servers. The servers are configured as shown in the following table.
All of the Mailbox servers are members of a database availability group (DAG) named
DAG1.
After a WAN link failure, you discover that all of the active mailbox database copies are
located on MBX3, even though MBX1 and MBX2 are still running.
You need to prevent an automatic failover of DAG1 if the WAN link between the two sites
fails but the servers in both sites are still running.
The solution must prevent two active copies of the same database.
What should you do? (To answer, select the appropriate options in the answer area.)
Answer:
Q89. (Topic 2)
You need to recommend a solution for the memos. The solution must meet the compliance requirements.
What should you include in the recommendation?
A. Secure/Multipurpose Internet Mail Extensions (S/MIME)
B. Information Rights Management (IRM)
C. Domain Security
D. Data loss prevention (DLP) policies
Answer: B
Explanation:
* Scenario: Management occasionally sends the staff internal memos that contain confidential information, such as sales figures. The memos must be protected so that unauthorized users cannot read the memos and internal users cannot forward the memos to external recipients.
* With the IRM features in Exchange 2013, your organization and your users can control the rights recipients have for e-mail. IRM also helps allow or restrict recipient actions such as forwarding a message to other recipients, printing a message or attachment, or extracting message or attachment content by copying and pasting. IRM protection can be applied by users in Microsoft Outlook or Microsoft Office Outlook Web App, or it can be based on your organization's messaging policies and applied using transport protection rules or Outlook protection rules.
Reference: Information Rights Management
Q90. (Topic 2)
You need to recommend a solution for the voice mail traffic. The solution must meet the technical requirements.
Which two configurations should you include in the recommendation? (Each correct answer presents part of the solution. Choose two.)
A. A dial plan.
B. A server certificate
C. A transport rule
D. A data loss prevention (DLP) policy
E. A call answering rule
Answer: A,B Explanation:
* Scenario: Voice mail traffic between the telephone system and the Exchange Server environment must be encrypted.
A: Use the EAC to configure Protected Voice Mail from authenticated callers . In the EAC, navigate to Unified Messaging > UM dial plans. In the list view, select the UM dial plan you want to modify, and then click Edit. . On the UM Dial Plan page, under UM Mailbox Policies, select the UM mailbox policy you want to manage, and then click Edit. . On the UM Mailbox Policy page > Protected voice mail, under Protect voice
message from authenticated callers, select one of the following options: . Click Save.
B:
* In on-premises and hybrid deployments, you can configure a Client Access and Mailbox server to use mutual Transport Layer Security (mutual TLS) to encrypt the SIP and RTP traffic sent and received from other devices and servers. When you configure the dial plan to use SIP secured mode, only the SIP signaling traffic will be encrypted, and the RTP media channels will still use TCP, which isn’t encrypted. However, when you configure the dial plan to use Secured mode, both the SIP signaling traffic and the RTP media channels are encrypted. An encrypted signaling media channel that uses Secure Realtime Transport Protocol (SRTP) also uses mutual TLS to encrypt the VoIP data.
* When you’re deploying Transport Layer Security (TLS) with UM, the certificates that are used on the Client Access server and the Mailbox server both must contain the local computer's fully qualified domain name (FQDN) in the certificate’s Subject Name. To work around this issue, use a public certificate and import the certificate on all Client Access and Mailbox servers, any VoIP gateways, IP PBXs, and all the Lync servers.