Hello every one, I did 640 exam on 29/6/2009.

there is 2 labs with 10 tasks each and 30 multi chose question from 126q pass for sure adn the lab was: -GPM (local security setting) set password (cache/history) -GPM (local security setting) Do not display last user name -GPM = Configure GPO Link to Sales OU -GPM = Configure domain GPO disable user config -MMC = Enable "Company" attribute to replicate all global catalog servers = regsvr32 schmmgmt.dll>schema snap-in -AD Sites =Enable Global Catalog in Domain Controller -AD Sites = Change the cost -AD Sites = Raise domain functional level to windows 2008, Raise Forest functional level to windows 2008 domain -DNS = Configure DNS delegation from DC1 To DC2 in contoso.com -DNS = Configuring DNS debug Logging -DNS = create conditional fowarder and replicate all dns server in forest -DNS = Set scavenging records for all zones after 8 days -DNS = Allow zone transfer only to following IP 10.10.10.xx -AD User = preCreate RODC -AD User = Set the descriptions in Sales OU -AD User =Delegate reset password SalesIT group to Sales OU -ntdsutil = Configure reset dsrm password =run>ntdsutil>set dsrm password>reset password on server null -Event View = Add a task to Event Viewer in Directory services with ID 7036 and send emailtto:admin@contoso.com, from: admin@contoso.com, smtp server: SMTP.contoso.com, subject: any -Encrypted File System - Set replication schedule to ignore - Set DEFAULTSITEIPLINK to not replicate on Sundays - Set Branch location to enable universal name caching - DNS Debug logging New delegation Configure conditional forwarding Configure scavenging - RODC Pre-create RODC controller account - GPO Not show last user login name Password History Security Filltering Polling

I was not so lucky that day, becouse of the poor connection i lost most of my time could not finish the labs. i hope this would help u

NEW INFO on labs

083-640 New labs: -----------------------------------------GPO (local security setting) set password (cache/history) = 12 Group Policy Management > Computer > Windows Settings > Security Settings > Account Policies > Pwd Policy > enforce Password history -GPO (local security setting) Do not display last user name Group Policy Management > Computer > Windows Settings > Security Settings > Local Policies > Security Options > Interactive Logon : Don't display Last User Name -Configure GPM Link to Sales OU Just drag and drop -Change gpo security filter Click on the GPO > First Onglet (Scope) > Add -GPM delegate ITSales OU to Sales OU In GPM, click on the OU, Onglet Delegation ------------------------------------------Raise domain functional level to windows 2008 Active Directory Users & Computers > Right Click on the domain, Raise domain functional level -Raise Forest functional level to windows 2008 Active Directory Domains And Trusts > Right click on it > Raise forect functional level -Active directory sites and services> Change the cost = 50 in DEFAULTIPSITELINK Active directory sites and services > Inter-Site Transports > DEFAULTSITELINK (/!\Must be an Enterprise Admin) -Enable Global Catalog in Domain Controller Active directory sites and services > Sites > DEfault-First-Site-Name > Servers > DC01 > NTDS Settings > Right Click -----------------------------------------------Enable "PostalCode" attribute to replicate all global catalog servers Active Directory Users & Computers > View > Advanced Features > Click on a user> Attributes > PostalCode -Active Directory User and computers> Set the descriptions in Sales OU

Active Directory Users & Computers > OU > Right Click > Properties > Description ------------------------------------------------------Add a task to Event Viewer in Directory services with ID 7036 and send email Event Viewer > System > Select the event > Right click > Attach task to this event -Configuring DNS debug Logging Go to DNS Console > Right click on DNS Server > Properties > Debug Logging -DNS Server>create conditional fowarder and replicate all dns server in forest Go to DNS Console > Conditional Forwaerders > Right Click > Add -DNS Server>Set scavenging records for all zones after 8 days Go to DNS COnsole > Right click on Server Name > Scavenging -DNS Server>Allow zone transfer only to following IP 10.10.10.xx Go to DNS COnsole > Right click on a Zone > Zone Transfert -Disable round-robin and recursion Go to DNS COnsole > Right click on Server Name > Advanced > DeChecked Enable DNs Round Robin & Check Disable Recursion -Configure DNS delegation from DC1 To DC2 in contoso.com ----------------------------------------------------Configure reset dsrm password (in command prompt) CMD in Administrative Mode NTDSUTIL Set DSRM Password Reset Password on server DC001 Quit Quit ------------------------------------------------------change the TransportGG group to domain local and Distribution group Ad Users and Computers > Set to Universal before configuring it as Domain Local And Distribution Group -Change users description in AD USERS and comptuers Ad Users And Computers > Right Click > Properties > Description --------------------------------------------------------Active directory users and computers > Create RODC > Disable DNS and GC Active Directory Users And Computers > Domain Controllers OU > Pre Create an RODC -Remove a RODC, reset the passwords for users/computers, and export that list of users/computers to a txt Right click on the RODC > Delete > Check all the box + Export location

Added info: have 2008 loaded in a VM. I think I found a problem with one of your lab posts, Configure attribute to replicate to all Global Catalogs. I think it should be: __ Configure attribute to replicate to all Global Catalogs: Regsvr32 schmmgmt.dll CMD > MMC > AD Schema > Expand Attributes. Locate postalcode attribute, right click, properties. > Replicate this attribute to the Global Catalog.

Hey all, Passed yesterday 966/1000. Add this to your list: Configure all intersite links to Ignore schedules AD Sites and Services > Right click IP > Check ignore. Do the same for SMTP.

Hi All, Passed 83-640 with 966 - all info above 100% Valid. Used CBT Nuggets videos and same multi-choice questions as above. Some solution notes below: ============================================= Enforce Password History ============================================= Computer Configuration\Windows Settings\Security Settings\Password Policy ============================================ Interactive logon: Do not display last user name ============================================ Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options\ ============================================ Enable "PostalCode" attribute to replicate all GC servers ============================================ Run regsvr32 schmmgmt.dll Run MMC File - add/remove snap-in

Add Active Directory Schema Right click Active Directory Schemas, select Connect to Schema Operations Master Select Attributes Find postalCode, rightclick, properties Select Replicate this attribute to the Global Catalog ============================================ Raise Domain Functional Level to 2008 ============================================ From Active Directory Users and Computers, right click on the domain Select Raise domain functional level ============================================ Enable GC on Domain Controller ============================================ From Active Directory Sites and Services, right click NTDS Settings under applicable DC Server Select properties, check Global Catalog box ============================================= Add a task to Event Viewer for Services with ID 7036 ============================================= From Diagnostics\Event Viewer\Windows Logs\System, right click on log ID 7036 Select Attach Task to This Event ============================================= Configure DNS Delegation ============================================= From DNS manager, right click on dns for domain, select New Delegation Enter delegated domain name (eg west.contuso.com) Click Next then Add Enter server FQDN (eg server.west.contuso.com) and server IP address =========================================== Configure DNS Debugging =========================================== Right click on DNS Server, Properties, Debug Logging =========================================== DNS - Configure Conditional Forwarding ===========================================

Right click on conditional forwarders, configure FQDN and IP address =========================================== DNS - Zone Transfer settings =========================================== Right click on zone, Properties, Zone Transfers =========================================== Change Cost - ADDS =========================================== From Active Directory Sites and Services, select Intersite transports\IP\Site Link Right click, Properties Modify Cost ============================================= Reset DSRM Password from Command Prompt ============================================= Run ntdsutil set dsrm password reset password on server null