70-410 question 28 discussion


Your network contains an Active Directory domain named contoso.com. The domain
contains a domain controller named DC1 that runs Windows Server 2012 R2 and a client
computer named Computer1 that runs windows 8.
DC1 is configured as a DHCP server as shown in the exhibit. (Click the Exhibit button.)

Computer1 is configured to obtain an IP address automatically.
You notice that Computer1 is unable to obtain an IP address from DC1.
You need to ensure that Computer1 can receive an IP address from DC1.
What should you do?

  • A. Disable the Allow filters.
  • B. Disable the Deny filters.
  • C. Authorize DC1.contoso.com.
  • D. Activate Scope [] Contoso.com.
Created 10 months ago by aymanaly


explanation is not related to the right answer


yes, right answer as per explanation and actually is C


So, the right answer is A or C?


Yes, the correct answer is C


Wouldn't the answer be B? The red down arrow is on the Deny folder.


I am sorry but I am totally baffled by your theory. There is no indication that the scope is unauthorised. It has a green tick on the server at the top. So we know it is not C, right? If a RED arrow appears in either allow or denied it indicates that the the filter is off. Given that we have no red arrow on allow we can assume that there is a filter in action. If the allow filter is enabled it will deny all those that are NOT in the allow filter, which is why we need to disable it. As with all these questions they are lacking it so much detail but to be fair out of all of these it is the only real option. Forgive if I am wrong, just interested in getting things right.


"A" make sense as illustrated by the exhibit.Good input Shollingsworth!


Agreed, but unsure why the explanation in the answer talks about 'a red arrow indicates an unauthorised DHCP server' Shouldn't it cover the allow filter having a red down arrow.


If you see a red arrow on the ALLOW or DENY filter folder it means that it is not enabled. So in this case DENY is not enabled so this not DENYING anyone. The Allow filter however is enabled and thus cause an issue in this scenario. The Answer is referencing the red arrow on the server because one of the options was C: AUTHORIZE the server. They are clarifying that C is not an option as there is no red arrow on the server to indicate it is unauthorised. :)


Right Sholingsworth. Everything with a Red Arrow is desactivated. The server is authorized, the scope and the allow filter activated. So it's not C and D. Deny filter is not activated so it's not B. It can only be A by deduction. And as the Allow Filter role is to only accept MAC Addresses defined in the filter list, this is why Computer1 is not getting IP from DHCP, because it's MAC Address is not in the Allow Filter. Another solution could be to add Computer1 MAC Address in the Allow Filter List and keep it activated.


Scope is active, and DHCP is authorized. Only thing is wrong is Allow filter enabled - if there is no MAC configured for this filter no one can get IP right. So answer A is correct , disable Allow filter which is active but not configured (empty).


sholling is right, it's A...if there is an ALLOW filter, it's potentially filtering out who is allowed. If the Allow filters were disabled, there would also be a red down arrow on it.


Correct answer is A.


Correct answer is A. Allow filter in enabled.


totally agree - answer is A. Disable the allow filters


The correct answer is C. DHCP servers don't give out IP addresses if it's not authorized. Disabling the allow filters only disables PCs that are in the allowed list to receive IP addresses, but this image doesn't show the list of PCs in the Allow list.


A. Disable the Allow filters.


Allow filter is enabled! you can see Allow filter doesn't have that red drawn arrow sign.which means if you have enabled Allow filters, DHCP server will stop issuing IP addresses except that IP adresses/Devices/Publishers are in Allow Filters.So Computer1 is not getting IP address because it is not in Allow filter.So You need to add that Computer1 to the Allow filter at least or else you should disable the Allow filter.therfore answer A is correct!


This is really easy. The correct answer is A. The explanation is way off. This is basically mac filtering. By default both filters are disabled. If you enable mac filtering and have a blank list of mac addresses, the clients will not be able to obtain a lease from the DHCP Server because the mac of their network card is not allowed. https://technet.microsoft.com/en-us/library/ee956897(v=ws.10).aspx. Default operation is disabled on each filter. If the allow filter is enabled you must populate mac addresses in the list to allow clients to obtain a lease from DHCP. This is why A makes sense. A DHCP . This server is in fact authorized. If it wasn't authorized there wouldn't be a green check mark beside the IPv4 an IPv6 server icons. It would display a red arrow pointing down.