多项选择题
All consultants belong to a global group named TempWorkers. You place three file servers in a new organizational unit named SecureServers. The three file servers contain confidential data located in shared folders. You need to record any failed attempts made by the consultants to access the confidential data. Which two actions should you perform()
A.Create and link a new GPO to the SecureServers organizational unit Configure the Audit privilege use Failure audit policy setting.
B.Create and link a new GPO to the SecureServers organizational unit Configure the Audit object access Failure audit policy setting.
C.Create and link a new GPO to the SecureServers organizational unit Configure the Deny access to this computer from the network user rights setting for the TempWorkers global group.
D.On each shared folder on the three file servers, add the three servers to the Auditing tab Configure the Failed Full control setting in the Auditing Entry dialog.
E.On each shared folder on the three file servers, add the TempWorkers global group to the Auditing tab Configure the Failed Full control setting in the Auditing Entry dialog box.
相关考题
-
单项选择题
YourcompanyhasasingleActiveDirectorydomainnamedintranet.adatum.com.ThedomaincontrollersrunWindowsServer2008andtheDNSserverrole.Allcomputers,includingnon-domainmembers,dynamicallyregistertheirDNSrecords.Youneedtoconfiguretheintranet.adatum.comzonetoallowonlydomainmemberstodynamicallyregisterDNSrecords.Whatshouldyoudo()
A.Set dynamic updates to Secure Only.
B.Enable zone transfers to Name Servers.
C.Remove the Authenticated Users group.
D.Deny the Everyone group the Create All Child Objects permission. -
多项选择题
YourcompanyhasanorganizationalunitnamedProduction.TheProductionorganizationalunithasachildorganizationalunitnamedR&DYoucreateaGPOnamedSoftwareDeploymentandlinkittotheProductionorganizationalunit.YoucreateashadowgroupfortheR&Dorganizationalunit.YouneedtodeployanapplicationtousersintheProductionorganizationalunit.YoualsoneedtoensurethattheapplicationisnotdeployedtousersintheR&Dorganizationalunit.Whataretwopossiblewaystoachievethisgoal()
A.Configure the Enforce setting on the software deployment GPO.
B.Configure the Block Inheritance setting on the R&D organizational unit.
C.Configure the Block Inheritance setting on the Production organizational unit.
D.Configure security filtering on the Software Deployment GPO to Deny Apply group policy for the R&D security group. -
单项选择题
Your company, Contoso, Ltd., has a main office and a branch office. The offices are connected by a WAN link. Contoso has an Active Directory forest that contains a single domain named ad.contoso.com. The ad. contoso.com domain contains one domain controller named DC1 that is located in the main office. DC1 is configured as a DNS server for the ad.contoso.com DNS zone. This zone is configured as a standardprimary zone. You install a new domain controller named DC2 in the branch office. You install DNS on DC2. You need to ensure that the DNS service can update records and resolve DNS queries in the event that a WAN link fails. What should you do()
A.Create a new stub zone named ad.contoso.com on DC2.
B.Configure the DNS server on DC2 to forward requests to DC1.
C.Create a new standard secondary zone named ad.contoso.com on DC2.
D.Convert the ad.contoso.com zone on DC1 to an Active Directory-integrated zone.
