70-413 Exam Active Directory Infrastructure Design

Question 1

What is the recommended approach when designing an AD DS environment where two divisions require completely separate security boundaries?

Accepted Answer

Multiple forests with forest trusts

Answer

Multiple forests provide the strongest security isolation because each forest has its own schema, configuration, and administrative boundary.

Question 2

Which trust type improves authentication performance by creating a direct trust path between two domains in the same forest that are not directly connected?

Accepted Answer

Shortcut trust

Answer

Shortcut trusts create a direct Kerberos trust path between domains, bypassing the need to traverse the full domain tree hierarchy.

Question 3

When planning AD DS site link costs, what factor should primarily drive the cost values you assign?

Accepted Answer

Available network bandwidth between sites

Answer

Site link costs should inversely reflect available bandwidth so that replication traffic is directed over the most efficient network paths.

Question 4

Which Active Directory feature introduced in Windows Server 2008 R2 allows administrators to restore accidentally deleted objects while preserving all attributes?

Accepted Answer

Active Directory Recycle Bin

Answer

The Active Directory Recycle Bin allows full recovery of deleted objects including all linked and non-linked attributes without requiring a restore from backup.

Question 5

What is the minimum forest functional level required to enable the Active Directory Recycle Bin?

Accepted Answer

Windows Server 2008 R2

Answer

The Active Directory Recycle Bin feature requires the forest functional level to be raised to Windows Server 2008 R2 or higher.

70-413 Exam Practice Test

70-413 Exam Practice Test

70-413 Exam Active Directory Infrastructure Design