| Q: | You are an Exchange administrator, and you have a single Exchange Server 2007 server with 250 mailboxes. Your management wants you to implement what is needed to make sure that messages they send cannot be read by anyone other than the intended recipient. What should you implement?
|
| A: | D.Encrypting messages will make sure that only the intended recipient can view the contents. Sender filtering, recipient filtering, and content filtering are used to prevent spam from entering the exchange organization. Digital signatures will allow the recipient of the message to be sure the sender actually sent the message but the message itself will not be encrypted when sent. |
| Q: | You are an Exchange administrator, and you have an Exchange Server 2007 organization with one Client Access server/Hub Transport server Exchange Server 2007 instance, and one Exchange Server 2007 Mailbox server with 250 mailboxes. Your Exchange server receives more spam messages than legitimate emails, and you want to reduce the number of spam messages that reach your messaging environment, but you do not want to invest in new hardware or software. What are your options?
Deploy antispam agents on the Mailbox server. Deploy antispam agents on the Hub Transport server. Deploy the Edge Transport server role in your environment. Use Exchange Hosted Services.
|
| A: | D. You don't want to invest in new hardware and software, so you cannot go for the Edge Transport server role. You want to stop spam before it reaches your messaging environment, thereby eliminating the possibility of deploying the antispam agents on the Hub Transport server. It is not possible to deploy antispam agents on the Mailbox server. You can only choose to use Exchange Hosted Services. |
| Q: | You are an Exchange administrator, and you have an Exchange Server 2007 organization with one Client Access server/Hub Transport server Exchange Server 2007 instance and one Exchange Server 2007 Mailbox server with 250 mailboxes. Your Exchange server receives more spam messages than legitimate mails, and you want to reduce the number of spam messages that reach your users' mailboxes, but you do not want to invest in new hardware or software. What are your options?
Deploy antispam agents on the Mailbox server. Deploy antispam agents on the Hub Transport server. Deploy the Edge Transport server role in your environment. Use Exchange Hosted Services.
|
| A: | B. You don't want to invest in new hardware and software, so you cannot go for the Edge Transport server role. Since you want to reduce the amount of spam that reaches your users' mailboxes, you should enable the antispam transport agents on your Hub Transport server. You don't want to stop spam from entering your organization, you just want to stop spam from reaching the user's mailboxes, thereby there is no requirement to go for Exchange Hosted Services. |
| Q: | You are an Exchange administrator, and you have a single Exchange Server 2007 server that houses 300 mailboxes. You would like to keep track of the emails that are sent and received by the legal department in your organization. You are using a Standard Edition license of Exchange Server 2007, and you currently have five stores in use. What should you do? Choose two answers; each part presents part of the solution.
Create a mail-enabled universal distribution group, U_Legal_Department, and make every user of the legal department a member of that group. Create a journaling rule that will journal every email sent and received by members of the mail-enabled universal group U_Legal_Department. Move all mailboxes of users in the legal department to a new mailbox store, Store_Legal. Enable journaling on the new store, Store_Legal.
|
| A: | A and B. Because you are using the Standard Edition version of Exchange Server 2007, you are not able to create an additional store since you already have the maximum number of stores in use. The Standard Edition version of Exchange only supports the creation of five stores. You can, however, create a new universal distribution group and use a new feature available in Exchange Server 2007: per-distribution-group journaling. |
| Q: | You are an Exchange administrator responsible for an Exchange 2007 organization that contains two Exchange 2007 Mailbox servers, one Client Access server, and one Hub Transport server. Your company recently acquired an Exchange 2007 organization. You do not intend to merge the two companies, but it is important that you secure all mail flow between the two organizations that have a dedicated T1 Line to link them together. What should you do?
Create a dedicated SMTP Send connector and require authentication. Create a dedicated SMTP Send connector. Install and configure MIIS. Install and configure the Exchange organization's connector.
|
| A: | A. It is best practice to enable authentication to provide additional security for email sent from associated organizations. Creating a dedicated SMTP Send Connector does not provide secure mail flow if you don't require authentication. Installing and configuring MIIS would enable directory synchronization which is not asked for in this scenario. The Exchange organization's connector does not exist. |
| Q: | You are an Exchange administrator responsible for a single Exchange Server 2007 organization. You've received a request that when other SMTP servers perform Sender ID filtering your domain name cannot be spoofed by nonauthorized users. What should you create?
Register an SPF record in DNS. Create an SPF record in the registry of your Exchange server. Register an MX record in DNS. Register an MX record in the registry of your Exchange server record in DNS.
|
| A: | A. Sender ID filtering can provide you with a valid result only if the sender's domain has a Sender Policy Framework (SPF) record registered in DNS. |
| Q: | You are an Exchange administrator responsible for an Exchange 2007 organization that contains two Exchange 2007 Mailbox servers, one Client Access server, and one Hub Transport server. Your legal department requests that you include a disclaimer with all messages that are sent out from your Exchange organization. How can you accomplish this with the least amount of administrative effort?
Create and register a transport event sink on your Exchange Hub Transport server. Create a transport rule that adds a disclaimer to all messages that are sent outside the organization. Create a transport rule that adds a disclaimer to all messages that are sent inside the organization. Educate your users to add a signature to all messages they send outside.
|
| A: | B. You can use the Exchange Management Console or Exchange Management Shell to configure disclaimers on computers that have the Hub Transport server role installed. Creating and registering a transport event sink is not recommended. Educating your users will require more effort than creating a transport rule. You shouldn't apply a transport rule to messages that are sent inside your organization, because you only want messages that go outside the organization to receive a disclaimer. |
| Q: | You are an Exchange administrator responsible for an Exchange 2007 organization that contains two Exchange 2007 Mailbox servers, one Client Access server, and one Hub Transport server. Your management would like you to investigate if it is possible to prepend the word SPAM to every message that is delivered to a user's Junk E-Mail folder. How can you accomplish this with the least amount of administrative effort?
Configure a transport rule to prepend the subject of an email with SPAM when a message reaches a predefined SCL. Configure a journaling rule to prepend the subject of an email with SPAM when a message reaches a predefined SCL. Create and register a transport event sink to prepend the subject of a mail with SPAM when a message reaches a predefined SCL. Create and deploy a group policy to prepend the subject of an email with SPAM when a message reaches a predefined SCL.
|
| A: | A. You can configure a transport rule to prepend a subject with a string, and you can specify the value of the SCL as a condition. A journaling rule is used to journal messages, and therefore not valid for changing a message subject. Creating a transport event sink would require administrative effort to create and deploy it. Group policies cannot be used to change the subject of a mail. |
| Q: | You are an Exchange administrator responsible for an Exchange 2007 organization that contains two Exchange 2007 Mailbox servers, one Client Access server, and one Hub Transport server. Your management requests that you keep the size of your database files under control. You have reached an agreement with your management to control the size of the mailboxes by managing the amount of time messages are retained in the Deleted Items folder. You are required to create two kinds of policies; the first one enables a user to keep items in the Deleted Items folder for 7 days, the second one for 60 days. What should you do to successfully configure these requirements? Select three; each answer is a part of the solution.
Create two mailbox stores. Create two new managed default folders, type Deleted Items. Move users to the mailbox store that is configured with the required deleted item retention time. Create two new managed folder policies, each one responsible for a different managed default folder, both called Deleted Items, and attach it to the users needed. Create managed content settings that reflect the specified criteria for each new managed default folder, type Deleted Items. Configure the required deleted item retention time for the mailbox stores.
|
| A: | B, C, and E. Deleted item retention time is the amount of time that messages that are deleted from the mailbox are available for recovery. We are covering the messages that are still in the mailbox, in the Deleted Items folder, so deleted item retention time doesn't matter here. Instead, it is feasible to create two new Deleted Items managed folders and specify for each one different managed content settings, and use managed folder policy to hand them out to the users that need those settings. |
| Q: | You are an Exchange administrator, and you have a single Exchange Server 2007 that houses 300 mailboxes. You have recently deployed an Exchange Server 2007 Edge Transport server, and you need to configure a way to reject any mail that is coming from any known relayers. What should you configure?
|
| A: | D. You can configure connection filtering to check with real-time Block lists if the connecting SMTP server is a known relaying server. |
| Q: | You are an Exchange administrator, and you have a single Exchange Server 2007 server that houses 300 mailboxes. You have recently deployed an Exchange Server 2007 Edge Transport server, and you need to configure a way to reject as much mail as possible from domain spoofers. What should you configure?
|
| A: | C. Sender ID filtering will check if the sender (or most probable sender) is sending the mail using the SMTP services of a server that is authorized to send mail from that sender's domain. If there is an SPF record configured for the SMTP mail domain, you can check if domain spoofing is done. Sender filtering only provides the ability to block mail from specific domains, without checking if it's spoofed or not. Recipient filtering is used to filter mail sent to specified recipients, and Connection filtering is used to check if the connection was initiated from a valid IP address. |
| Q: | You are an Exchange administrator responsible for an Exchange 2007 organization that contains two Exchange 2007 Mailbox servers, one Client Access server, and one Hub Transport server. You would like to grant your network administrator the permission to give existing users a mailbox on your Exchange servers. What role should you delegate to your network administrator?
Exchange Organization Administrator Exchange Recipient Administrator Exchange View-Only Administrator Exchange Server Administrator
|
| A: | B. A user needs to have the Exchange Recipient Administrator role in order to be able to give users a mailbox. |
| Q: | You are an Exchange administrator responsible for an Exchange 2007 organization that contains two Exchange 2007 Mailbox servers, one Client Access server, and one Hub Transport server. You recently hired a new Exchange administrator and added her to the Domain Admins group, but you need to grant her all permissions to the entire Exchange organization. What role should you delegate to your new colleague?
Exchange Organization Administrator Exchange Recipient Administrator Exchange View-Only Administrator Exchange Server Administrator
|
| A: | A. To be able to fully manage an Exchange organization, a user needs to be delegated the Exchange Organization Administrator role. |
| Q: | You are an Exchange administrator responsible for an Exchange 2007 organization that contains two Exchange 2007 Mailbox servers, one Client Access server, and one Hub Transport server. All your users use Microsoft Office Outlook 2007. Your management has decided that it has to be possible for users to mark every email they send to a customer as A/C Confidential. What should you do? Select two; each option is part of the solution.
Deploy a local file (Classifications.xml) on the client computers. Create and deploy a registry key on the client computers that enables the use of message classifications. Deploy a local file (Classifications.xml) on the Exchange Mailbox servers. Create and deploy a registry key on the Exchange Mailbox servers that enables the use of message classifications.
|
| A: | A and B. If you want to enable the use of message classifications in Outlook, you need to deploy on the client computer a local file (Classifications.xml) that contains the definitions of the message classifications. And you also need to create and deploy a registry key that will enable the use of message classification by referencing the Classifications.xml file on the client computer. You don't need to add a registry key on the Exchange Mailbox servers, and you don't need to deploy a local file on the Exchange Mailbox servers. |
| Q: | You are an Exchange administrator, and you have a single Exchange Server 2007 server that houses 300 mailboxes. A single user in your organization asks you if there is a way to restrict permissions on an email message he's sending to a customer. He wants to prevent the customer from forwarding or copying the contents of the email message. The user in question uses Microsoft Office Outlook 2007. What can you offer him?
Information Rights Management A secure SMTP connection to that customer's mail organization
|
| A: | C. Information Rights Management can be used in Microsoft Office Outlook 2003 and Microsoft Office Outlook 2007 to prevent email forwarding, copying, editing, or printing. Implementing signing and sealing will not prevent a user from forwarding or copying the contents of an email message. A secure SMTP connection only secures the SMTP mail flow, but does not imply that the email message is not able to be forwarded or copied. |
| Q: | You are an Exchange administrator responsible for an Exchange 2007 organization that contains two Exchange 2007 Mailbox servers, one Client Access server, and one Hub Transport server. Your users use either Microsoft Office Outlook 2000 or Microsoft Office Outlook XP to open their mailboxes. All your clients are running Windows XP Professional SP2. Your management wants you to deploy and configure a Rights Management server. What should you do first so that your clients can use the abilities offered by IRM? Select two; each answer is a complete solution.
Upgrade Microsoft Office Outlook to Microsoft Office 2003 Upgrade Microsoft Office Outlook to Microsoft Office 2007 Deploy Windows Rights Management server
|
| A: | B and C. You need at least Microsoft Office Outlook 2003 to be able to use the services provided by IRM. You can use the abilities offered by IRM by running Office Outlook 2003 (or later) on XP Professional. You don't need to have Windows Rights Management server, since you can use the limited-trial version offered by Microsoft. |
| Q: | You are an Exchange administrator, and you have a single Exchange Server 2007 server that houses 300 mailboxes. Your management wants customers to be sure that messages they receive from your organization are sent by your organization. In addition, your management wants to make sure that in case someone outside your organization altered the message, the recipient knows about this. What should you implement?
|
| A: | E. Digital signatures provide authentication, nonrepudiation, and data integrity. By digitally signing your email messages, you enable recipients to verify if the email message has been sent by the person or organization that claims to have sent the message, and you enable recipients to verify if the message has been altered. |
| Q: | You are an Exchange administrator responsible for an Exchange 2007 organization that contains two Exchange 2007 Mailbox servers, one Client Access server, and one Hub Transport server. You recently hired a new Exchange administrator who will be responsible for your Hub Transport server and your Client Access server. What role should you delegate to your new colleague?
Exchange Organization Administrator Exchange Recipient Administrator Exchange View-Only Administrator Exchange Server Administrator
|
| A: | D. You need to delegate the role of Exchange Server Administrator since you want your new colleague to have full control over the specified servers' configuration data. |
| Q: | You are an Exchange administrator, and you have a single Exchange Server 2007 server that houses 300 mailboxes. You recently deployed an Edge Transport server role. You would like to configure your Edge Transport server to block all messages that contain attachments with an extension .XYZ. What should you do?
Enable and configure attachment filtering on your Exchange Server 2007 server. Enable and configure attachment filtering on your Edge Transport server. Enable and configure content filtering on your Hub Transport server. Enable and configure content filtering on your Edge Transport server.
|
| A: | B. Attachment filtering allows you to block attachments from entering your Exchange organization, by attachment content type, or by attachment file name. You can enable and configure attachment filtering only on the edge Transport server. Content filtering is set as an SCL value for messages so you can configure your Edge or Hub Transport server to block them, quarantine them, or deliver them to a user's junk mail folder. |
| Q: | You are an Exchange administrator responsible for an Exchange 2007 organization that contains two Exchange 2007 Mailbox servers, one Client Access server, and one Hub Transport server. You would like to enable attachment filtering, and you choose to deploy an Edge Transport server. You would like to have blocked attachments sent to a quarantine mailbox; what should you do?
Enable and configure attachment filtering. Enable and configure content filtering. Enable and configure recipient filtering. Enable and configure Microsoft Forefront Security for Exchange Server.
|
| A: | D. Forefront Security for Exchange Server enables you to quarantine blocked attachments. Attachment filtering, content filtering, and recipient filtering do not allow you as an administrator to have blocked attachments sent to a quarantine mailbox. |
