###BeginCaseStudy###
Topic 1, Fabrikam inc.
Overview
Fabrikam. Inc. is an international manufacturing company that has 5,000 employees. The company has sales,
marketing research and human resources departments. Fabrikam has two main offices and three branch
offices. The main offices are located in New York and London. The branch offices are located in Seattle,
Montreal, and Paris. The offices connect to each other by using a WAN link. Each office connects directly to the
Internet. The WAN connections from the main offices to the branch offices are reliable.
Existing Environment
Exchange Environment
The Exchange Server organization contains servers that have either Exchange Server 2010 or Exchange Server
2013 installed. Each main office contains two Exchange Server 2013 servers. Each branch office contains one
Exchange Server 2010 server.
MX records are configured to deliver email to the offices in New York and London. Email is delivered to the
London office only if the New York office is unavailable.
Each office is configured to use a separate namespace for client access. The New York office is configured to
use a namespace of mail.fabrikam.com.
The servers in the New York and London offices are members of a database availability group (DAG).
Each mailbox database in the New York and London offices has three copies.
The technical support staff in the branch offices have administrative access to the existing Exchange servers
and are assigned Organization Management permissions.
Users from the sales department frequently send email messages that contain the Social Security number of
customers in the United States.
Problem Statements
Fabrikam identifies the following issues on the network:
Users in the Paris office report that when launching Microsoft Outlook, they receive a security alert
indicating a certificate name mismatch. The security alert is not generated when they connect to Outlook
Web Access. Users from the other offices do not report receiving the security alert.
Network administrators report that the mailbox databases in the New York office sometimes activate on
the Exchange servers in the London office, resulting in poor performance for the New York office users.
Planned Changes
Fabrikam plans to implement the following changes to the network:
Upgrade the organization to Exchange Server 2016 during the next six months.
Enable online document viewing and editing from Outlook on the web.
High Availability Requirements
Fabrikam identifies the following high-availability requirements for the planned deployment:
Mailbox databases that contain mailboxes for the New York office users must only be activated on the
servers in the London office manually.
All client access connections to the London and New York offices must use load-balanced namespaces.
The load balancing mechanism must perform health checks.
Security and compliance requirements
Fabrikam identifies the following security and compliance requirements:
After the planned upgrade, the maximum mailbox size must be 5 GB.
Administrators from the branch offices must be able to view the mailbox properties and reset the
passwords of the users, but must be prevented from changing the mailbox database configurations.
Users who are involved in legal disputes with customers must be prevented from permanently deleting
email messages pertaining to the dispute. The users must be able to delete all other messages
permanently.
If a user enters a Social Security number in an email message addressed to an external recipient, the user
must receive a notification before sending the message If the user sends the message. The message must
not be delivered. A compliance officer must be notified of the violation.
Connectivity requirements
Fabrikam identifies the following connectivity requirements:
Connections for inbound and outbound email must be initiated and terminated from an Edge Transport
server in the perimeter network.
All external client connections from the branch office users must be proxied from the New York office to
the branch offices.
The number of namespaces used for client access must be minimized.
###EndCaseStudy###
You need to recommend changes to the existing environment to meet the high-availability
requirements for the mailbox databases. What should you recommend?
A.
Run the Set-MailBoxDatabase cmdlet.
B.
Run the Set-DatabaseAvailabilityGroup cmdlet
C.
Run the Set-MailBoxServer cmdlet.
D.
Run the Set-MailBoxDatabaseCopy cmdlet.
B
B is correct
https://eightwone.com/2010/08/24/blocking-automatic-activation-in-dags/
The link you provided indicates C is correct.
Agree with you. Answer is C. The task is “Mailbox databases that contain mailboxes for the New York office users must only be activated on the servers in the London office manually”
You should use
Set-MailboxServer -Identity -DatabaseCopyAutoActivationPolicy Blocked
https://technet.microsoft.com/ru-ru/library/dd298046(v=exchg.160).aspx
Requirement says: “Mailbox databases that contain mailboxes for the New York office users must only be activated on the servers in the London office manually”
I think this means that we should prevent out-of-site activation using command:
Set-MailboxServer -Identity -DatabaseCopyAutoActivationPolicy IntrasiteOnly
So it could be C
You’re right.
The cmdlet Set-DatabaseAvailabilityGroup does not help, since it does not contain any parameters for blocking the activation of databases.
Hi,
I think you will get better explanation here why B should be the correct answer:
https://technet.microsoft.com/en-us/library/dd297934(v=exchg.160).aspx
also, I found useful this article:
http://powershell.ws/command/Set-DatabaseAvailabilityGroup/
Sorry, I don’t find the clue? Which parameter of Set-DatabaseAvailabilityGroup cmdlet affects to activation? Help me?
Answer is C.
Use the Shell to configure the activation policy for a server
This example configures the database copies on server MBX2 as blocked for activation.
Set-MailboxServer -Identity MBX2 -DatabaseCopyAutoActivationPolicy Blocked
This example configures the database copies on server MBX3 as blocked for out-of-site activation.
Set-MailboxServer -Identity MBX3 -DatabaseCopyAutoActivationPolicy IntrasiteOnly
This example configures the database copies on server MBX4 as unblocked for activation.
Set-MailboxServer -Identity MBX4 -DatabaseCopyAutoActivationPolicy Unrestricted
Answer could also be D, but you’d have to apply it to each database on each server, instead of using set-mailboxserver and applying it to each server.
Answer C takes less effort so it’s the correct answer.
From https://technet.microsoft.com/en-us/library/dd297934(v=exchg.160).aspx,
the parameter that specifics whether DAG networks should be automatically configured or not is ManualDagNetworkConfiguration
As in the HA requirements in the Case Study,
“Mailbox databases that contain mailboxes for New York office users must only be activated on the servers in the London office manually”
Hence, we have to manually configure the New York mailbox databases within the DAG (from London)
The only relevant part of this is that you quote the question properly. The link and your comments have nothing to do with the question.
If you block the activation using Set-MailboxServer in London Office, the local (London office) Databases are also denied auto activation, which is not the case.
It is clearly written, to be be applied only for NY users databases activation on London servers, not for local London databases.
So I’d rather use —
Suspend-MailboxDatabaseCopy –identity \ –ActivationOnly
I mean –
Suspend-MailboxDatabaseCopy –identity \ –ActivationOnly
Suspend-MailboxDatabaseCopy –identity DatabaseID\LondonServerID –ActivationOnly
The answer is C “Run the Set-MailBoxServer cmdlet”
Reference: https://technet.microsoft.com/en-us/library/dd298046(v=exchg.160).aspx
Scenario is relevant to this example.
This example configures the database copies on server MBX3 as blocked for out-of-site activation.
Set-MailboxServer -Identity MBX3 -DatabaseCopyAutoActivationPolicy IntrasiteOnly
New 70-345 Exam Questions and Answers Updated Recently (12/May/2017):
NEW QUESTION 1
You have a hybrid Exchange Server 2016 organization. Some of the mailboxes in the research department are hosted on-premises. Other mailboxes in the research department are stored in Microsoft Office 365. You need to search the mailboxes in the research department for email messages that contain a specific keyword in the message body. What should you do?
A. From the Exchange Online Exchange admin center, search the delivery reports.
B. Form the on-premises Exchange Center, search the delivery reports.
C. From the Exchange Online Exchange admin center, create a new In-Place eDiscovery & Hold.
D. From the Office 365 Compliance Center, create a new Compliance Search.
E. From the on-premises Exchange admin center, create a new In-Place eDiscovery & Hold.
Answer: E
NEW QUESTION 2
You have an Exchange Server 2016 organization. Some users access their mailbox by using an Android or an iOS device. You need to prevent the users from using OWA for Devices to access their mailbox. Which cmdlet should you use?
A. Set-CASMailbox
B. Set-MobileMailboxPolicy
C. Set-OWAVirtualDirectory
D. Set-OWAMailboxPolicy
Answer: A
NEW QUESTION 3
Your company has an Exchange Server 2016 organization. The organization contains 2,000 mailboxes and five Mailbox servers, including one server named EX1. Five hundred users retrieve email from their mailboxes by using an IMAP4 client application from the Internet. The users also connect to EX1 to send email messages. All of the email messages are secured by using TLS. An administrator recently replaced the company’s firewall. Users now report that they fail to send email messages from the IMAP4 client application. You verify that the users can retrieve email messages form their mailbox successfully. You need to recommend which TCP port must be allowed so that the users can send email messages from the IMAP4 application successfully. Which TCP port should you recommend?
A. 443
B. 587
C. 993
D. 995
Answer: C
NEW QUESTION 4
Your network contains the servers configured as shown in the following table:
Image URL: passleader.org/wp-content/uploads/2017/05/passleader-70-345-dumps-41.jpg
You run the New-DatabaseAvailabilityGroup cmdlet and you receive the following error message:
The task was unable to create the default witness directory on server FS01. Please manually specify a witness directory.
+ CategoryInfo: InvalidArgument:(:)[New-DatabaseAvailabilityGroup], DagFswUnableTo … ectoryException
+ FullyQualifiedErrorId: [Server=EX01, RequestId-81b106a2-21e7-4ac3-8a23-e2e13e54a9fa, TimeStamp=11/13/2015 3:09:02 PM]
[FailureCategory=CmdletDagFswUnableToBindWitnessDirectoryException]166B6E12,Microsoft.Exchange.Management.SystemConfigurationTasks.NewDatabaseAvailabilityGroup
+ PSComputerName: EX01.contoso.com
You need to ensure that you can create the database availability group (DAG) successfully by using the NewDatabaseAvailabilityGroup cmdlet. What should you do?
A. Add the Exchange Trusted Subsystem group to the local Administrators group on FS01.
B. Add the Delegated Setup role group to the local Administrators group on FS01.
C. Install the Failover Clustering feature on FS01.
D. Install the Remote Server Administration Tools feature on FS01.
Answer: A
NEW QUESTION 5
You have an Exchange Server 2016 organization. The organization contains a mailbox database named DB1. DB1 is stored on a volume named Volume1. You plan to use Exchange Native Data protection. You need to recommend a solution to prevent Volume1 from running out of space for transaction logs. What should you recommend?
A. an event history retention period
B. background database maintenance
C. circular logging
D. a size limit of the log directory for the managed folders
Answer: C
NEW QUESTION 6
You have an exchange Server 2016 organization that uses an SMTP domain named contoso.com. You need to encrypt all of the SMTP traffic from the organization to a partner organization. The partner organization uses an SMTP domain named litwareinc.com. Which three commands should you run on your server? Each correct answer presents part of the solution.
A. New-ReceiveConnector-Name “Connector1”-Usage Internet- Bindings 0.0.0.0:587- DomainSecureEnabled: $true
B. Set-TransportConfig-TLSSendDomainSecureList litwareinc.com
C. New-SendConnector-Usage Partner-Name “Connector1” -AddressSpaces “lintwareinc.com” -IgnoreSTARTTLS $false-DNSRoutingEnabled $true -DomainSecureEnabled $true
D. Set-TransportConfig- TLSReceiveDomainSecureList contoso.com
E. Set-TransportConfig-TLSReceiveDomainSecureList litwareinc.com
F. New-SendConnector- Usage Partner -Name “Connector1” -AddressSpaces “contoso.com” -IgnoreSTARTTLS $false-DNSRoutingEnabled $ture -DomainSecureEnabled $true
G. Set-TransportConfig-TLSSendDomainSecureList contoso.com
Answer: CEG
NEW QUESTION 7
You have an Exchange Server 2016 organization. The organization contains an Edge transport server. Users report that a message with the following anti-spam headers is delivered to their Inbox folder in Microsoft Outlook:
X-MS-Exchange-Organization-PCL: 7
X-MS-Exchange-Organization-SCL: 6
X-MS-Exchange-Organization-Antispam-Report: DV:3.1.3924.1409;SID:SenderIDStatus Fail;PCL:PhishingLevel SUSPICIOUS;CW:CustomList;PP:Presolved;TIME:TimeBasedFeatures
You need to prevent similar messages from being delivered. The solution must generate a non-delivery report (NDR) when the messages are prevented from being delivered to all user mailboxes. What should you do?
A. Set the SCL reject threshold to 7.
B. Run the Set-SenderIdConfig cmdlet.
C. Set the SCL delete threshold to 7.
D. Run the Set-TransportConfig cmdlet.
Answer: A
NEW QUESTION 8
You have an Exchange Server 2016 organization. The organization contains one Edge Transport server. A user reports that certain email messages expected from a specific recipient were never received. You need to search for messages that were blocked by the Edge Transport because they contain attachment types that are blocked by the organization. In which folder should you search?
A. QueueViewer
B. AgentLog
C. Connectivity
D. Routing
E. ProtocolLog
Answer: E
NEW QUESTION 9
You have an Exchange Server 2016 organization. Users store sales information in public folders. You need to create a public folder that can receive email from external users. Which three commands should you use? Each correct answer presents part of the solution.
A. Add-MailboxPermission
B. Add-PublicFolderClientPermission
C. Update-PublicFolderMailbox
D. Enable-MailPublicFolder
E. Add-RecipientPermission
F. New-PublicFolder
G. New-Mailbox
Answer: BDF
NEW QUESTION 10
……
P.S. These New 70-345 Exam Questions Were Just Updated From The Real 70-345 Exam, You Can Get The Newest 70-345 Dumps In PDF And VCE From — http://www.passleader.com/70-345.html (104q VCE and PDF)
Good Luck!
Besides, part of that new 104Q 70-345 dumps are available here:
https://drive.google.com/open?id=0B-ob6L_QjGLpck5vRk5XUVFQb00
Best Regards!
As far as I understand:
– the main office is composed of NY and London
– the main office hosts several databases, let’s just go with two for the sake of simplification
– there’s a DAG configured in the main office that spans between NY and London
– all active copies are on NY, London only hosts passive copies
– we want to prevent the automatic activation of DB copies on the London site
I believe we need to run Set-MailboxServer -Identity -DatabaseCopyAutoActivationPolicy Blocked. IMO. there’s no reason to set it to intra-site only because I don’t see any benefit. London does not have any active copies.
I agree with the C answeer. Read the article below:
http://www.msexchange.org/kbase/ExchangeServerTips/ExchangeServer2010/HighAvailability/PreventDatabaseCopiesfromAutomaticallyMountinginotherSites.html
PASSED the 70-345 exam yesterday with a good score of 82X!!!
I got 40 questions, including 2 Case Studies:
1. Fabrikam, Inc. (Few new questions appeared in this Case Study!!!)
2. Relecloud
I had many questions about the database availability group (DAG), please learning it deeply.
And, lots of questions about Azure, DNS, Exchange 2016 Server Deployment (AD FS setup), site links and WAN setup between offices……etc.
Also, I came across around 10-15 new questions that not available here.
One new question about IMAP4 over SSL (IMAPS) — port 993.
New question on setting auditlog for create new mailbox.
Questions on this site MAY not enough for passing, SOME NEW QUESTIONS ARE NOT AVAILABLE HERE!
I do recommend you to learn the NEWEST & VALID PassLeader 70-345 dumps here:
https://drive.google.com/open?id=0B-ob6L_QjGLpck5vRk5XUVFQb00
(IT IS THE NEWEST VERSION!!!)
Good Luck!!!