###BeginCaseStudy###
Case Study: 1
Fabrikam, Inc
Overview
General Overview
Fabrikam, Inc., is a plastics manufacturer.
Fabrikam has an Exchange Server organization that contains only servers that have
Exchange Server 2013 installed.
Physical Locations
Fabrikam has two main offices. The main offices are located in Tampa and
Charlotte. The company has 8, 000 users in each office.
Existing Environment
Active Directory Environment
Fabrikam has an Active Directory forest that contains one domain named
fabrikam.com.
Each office is configured as an Active Directory site.
The network contains four subnets. The subnets are configured as shown in the
following table.
All of the traffic from Subnet1 is routable to Subnet3. All of the traffic from Subnet2 is
routable to Subnet4.
All client computers are on Subnet1 and Subnet3 only. Subnet 192.168.1.0/24 and
subnet
192.168.10.0/24 are assigned as the MAPI network.
The network contains four domain controllers. The domain controllers are configured
as shown in the following table.
Network Infrastructure
The network contains the following components:
Two 10-gigabits per second WAN links that connect the Tampa office and the
Charlotte office. The links have a latency of less than 15 ms.
One IP-PBX that is located in the Tampa office. The IP-PBX can use only
unencrypted communications.
An Internet connection in the Tampa office and an Internet connection the Charlotte
office.
Exchange Environment
The network contains six servers that have Exchange Server 2013 installed. The
servers are configured as shown in the following table.
The Exchange Server environment has the following configurations:
Two data loss prevention (DLP) policies named DLP_Finance and DLP_PII.
DLP_Finance is based on a template named Financial Data – U.S. DLP_PII is based
on a template named PII (U.S.).
A mailbox database named UM that hosts only Unified Messaging (UM)-enabled
mailboxes and is replicated between the Mailbox servers in the Tampa office only.
A database availability group (DAG) named DAG1 that contains EX2, EX3, EX5, and
EX6. DAG1 is configured to use DHCP to obtain an IP address.
A Send connector named Tampa SMTP that uses SMTP1 as a smart host. The cost
of the Tampa SMTP connector is 10.
Mailbox servers in the Tampa office that provide outbound SMTP services to the
Internet.
A UM dial plan named UM1.
An SMTP relay device named SMTP2 in the Charlotte office.
An SMTP relay device named SMTP1 in the Tampa office.
No client access services are published to the Internet.
Requirements
Exchange Server Issues
The current Exchange Server environment has the following issues:
Due to power failures, the Exchange servers unexpectedly fail, causing databases to
fail over. During the database failovers, the preferred database is not activated,
causing an unexpected distribution of active databases.
An IRM template named No Print or Screenshot is deployed, but the template fails to
prevent users from taking screenshots of email messages.
Technical Requirements
You identify the following technical requirements:
Assign a static IP address to DAG1.
Block all personally identifiable information (PII) data and financial data without
exception.
Prevent the forwarding of email messages sent by users who have a value of Legal
in their Department field.
Ensure that the members of a group named HR1 can search all of the mailboxes for
sensitive email content.
Use Information Rights Management (IRM) to protect all of the voice mails left for the
telephone number of the human resource (HR) department.
Implement an archiving policy that moves all of the email messages from the mailbox
folders to an Archive mailbox after 30 days and permanently deletes all of the email
messages after 365 days.
###EndCaseStudy###
HOTSPOT
You need to configure transport rules to meet the technical requirements for the PII data and the
financial data. How should you configure the rules? To answer, disable the appropriate rule or rules
in the answer area.
Strange to me that this is the answer since it says “Block all personally identifiable information (PII) data and financial data without exception.” But given the options it does make the most sense.
It’s because it says which rules should you DISABLE. You want to turn off the allow override rules so that users can’t override them.
It’s hard to see, but I would say you just need to disable the 2 over ride rules.