Your network contains an Active Directory domain named contoso.com. Network Access Protection (NAP) is
deployed to the domain.
You need to create NAP event trace log files on a client computer.
What should you run?
A.
logman
B.
Register-ObjectEvent
C.
tracert
D.
Register-EngineEvent
Explanation:
You can enable NAP client tracing by using the command line. On computers running Windows Vista®, you can
enable tracing by using the NAP Client Configuration console. NAP client tracing files are written in Event Trace
Log (ETL) format. These are binary files representing trace data that must be decoded by Microsoft support
personnel. Use the –o option to specify the directory to which they are written. In the following example, files
are written to %systemroot%\tracing\nap. For more information, see Logman (http: //go.
microsoft.com/fwlink/?LinkId=143549).
To create NAP event trace log files on a client computerOpen a command line as an administrator.
Type
logman start QAgentRt -p {b0278a28-76f1-4e15-b1df-14b209a12613} 0xFFFFFFFF 9 -o
%systemroot%\tracing\nap\QAgentRt. etl –ets.
Note: To troubleshoot problems with WSHA, use the following GUID: 789e8f15-0cbf-4402-b0ed-0e22f90fdc8d.
Reproduce the scenario that you are troubleshooting.
Type logman stop QAgentRt -ets.
Close the command prompt window.
http: //technet. microsoft. com/en-us/library/dd348461%28v=ws. 10%29. aspx