网友您好, 请在下方输入框内输入要搜索的题目:
题目内容
(请给出正确答案)
Your network consists of a single Active Directory domain. The domain contains an organizational unit (OU) named SecureServers. The SecureServers OU contains a computer account for a server named Server1. You link a Group Policy object (GPO) to the SecureServers OU. In the GPO, you assign an IPSec policy that requires encryption for all communications. You notice that all communications to Server1 are unencrypted.You need to ensure that all communications to Server1 are encrypted immediately. What should you do?()
- A、On Server1, run gpudate.exe.
- B、On Server1, run gpresult.exe.
- C、From the properties of the GPO, enable the Enforced option.
- D、From the properties on the SecureServers OU, enable the Block policy inheritance setting.
参考答案
更多 “ Your network consists of a single Active Directory domain. The domain contains an organizational unit (OU) named SecureServers. The SecureServers OU contains a computer account for a server named Server1. You link a Group Policy object (GPO) to the SecureServers OU. In the GPO, you assign an IPSec policy that requires encryption for all communications. You notice that all communications to Server1 are unencrypted.You need to ensure that all communications to Server1 are encrypted immediately. What should you do?()A、On Server1, run gpudate.exe.B、On Server1, run gpresult.exe.C、From the properties of the GPO, enable the Enforced option.D、From the properties on the SecureServers OU, enable the Block policy inheritance setting.” 相关考题
考题
Your network consists of a single Active Directory domain. User accounts for engineering department are located in an OU named Engineering. You need to create a password policy for the engineering department that is different from your domain password policy. What should you do()A、Create a new GPO. Link the GPO to the Engineering OU.B、Create a new GPO. Link the GPO to the domain. Block policy inheritance on all OUs except for the Engineering OU.C、Create a global security group and add all the user accounts for the engineering department to the group. Create a new Password Policy Object (PSO) and apply it to the group.D、Create a domain local security group and add all the user accounts for the engineering department to the group. From the Active Directory Users and Computer console, select the group and run the Delegation of Control Wizard.
考题
Your network consists of a single Active Directory domain. All domain controllers run Windows Server 2008 R2. Auditing is configured to log changes made to the Managed By attribute on group objects in an organizational unit named OU1. You need to log changes made to the Description attribute on all group objects in OU1 only. What should you do()A、Run auditpol.exe.B、Modify the auditing entry for OU1.C、Modify the auditing entry for the domain.D、Create a new Group Policy object (GPO). Enable the Audit account management policy setting. Link the GPO to OU1.
考题
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3). You have an organizational unit (OU) named Accounting. You create a Group Policy object (GPO) and link it to the Accounting OU. You join a new client computer to the domain. You discover that the new client computer fails to receive the settings from the new GPO. You need to ensure that the new GPO is applied to the new computer. What should you do? ()A、Move the computer account to the Accounting OU.B、Modify the Location attribute of the computer account.C、Modify the Managed By attribute of the computer account.D、Enable the Trust computer for delegation option on the computer account.
考题
Your network consists of a single Active Directory domain. All domain controllers run Windows Server 2003 Service Pack 2 (SP2). You have an organizational unit (OU) that contains 1,000 computer accounts. You need to move the computer accounts to a new OU. Which tool should you use? ()A、Active Directory Domains and TrustsB、Active Directory Users and ComputersC、Csvde.exeD、Dsmod.exe
考题
ou are the network administrator for your company. The network consists of a single Active Directory domain. All servers run Windows Server 2003. All client computers run Windows XP Professional.Two of the servers on the network contain highly confidential documents. The company’s written security policy states that all network connections with these servers must be encrypted by using an IPSec policy.You place the two servers in an organizational unit (OU) named SecureServers. You configure a Group Policy object (GPO) that requires encryption for all connections. You assign the GPO to the SecureServers OU. You need to verify that users are connecting to the two servers by using encrypted connections. What should you do?()A、Run the net view command.B、Run the gpresult command.C、Use the IP Security Monitor console.D、Use the IPSec Policy Management console.
考题
Your network consists of a single Active Directory domain. All domain controllers run Windows Server 2008 R2. Auditing is configured to log changes made to the Managed By attribute on group objects in an organizational unit named OU1. You need to log changes made to the Description attribute on all group objects in OU1 only. What should you do()A、Run auditpol.exe.B、Modify the auditing entry for OU1.C、Modify the auditing entry for the domain.D、Create a new Group Policy object (GPO). Enable the Audit account management policy setting link the GPO to OU1.
考题
Your network consists of a single Active Directory domain. The relevant portion of the Active Directory domain is configured as shown in the following diagram. The Staff organizational unit (OU) contains all user accounts except for the managers user accounts. The Managers OU contains the managers user accounts and the following global groups èSales èFinance èEngineering You create a new Group Policy object (GPO) named GPO1, and then link it to the Employees OU. Users from the Engineering global group report that they are unable to access the Run commandon the Start menu. You discover that the GPO1 settings are causing the issue. You need to ensure that the users from the Engineering global group are able to access the Run command on the Start menu. What should you do?()A、Configure GPO1 to use the Enforce Policy option.B、Configure Block Inheritance on the Managers OU.C、Configure Group Policy filtering on GPO1 for the Engineering global group.D、Create a new child OU named Engineering under the Employees OU. Move the Engineering global group to the new Engineering child OU.
考题
Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3). You have an organizational unit (OU) named Accounting. You create a Group Policy object (GPO) and link it to the Accounting OU. You join a new client computer to the domain. You discover that the new client computer fails to receive the settings from the new GPO. You need to ensure that the new GPO is applied to the new computer. What should you do? ()A、Move the computer account to the Accounting OU.B、Modify the Location attribute of the computer account.C、Modify the Managed By attribute of the computer account.D、Enable the Trust computer for delegation option on the computer account.
考题
You have a single Active Directory directory service domain. All users are located in an organizational unit (OU) named ContosoUsers. All client computer accounts are located in an OU named ContosoComputers. You need to deploy a new application to all users. The application shortcut must be available the next time the users log on. What are two possible ways to achieve this goal?()A、 Create a Group Policy object (GPO) to publish the application. Link the GPO to the ContosoComputers OU.B、 Create a Group Policy object (GPO) to assign the application. Link the GPO to the ContosoComputers OU.C、 Create a Group Policy object (GPO) to publish the application. Link the GPO to the ContosoUsers OU. D、 Create a Group Policy object (GPO) to assign the application. Link the GPO to the ContosoUsers OU.
考题
Your network consists of a single Active Directory domain. An organizational unit (OU) named Servers contains all member servers in the domain. The domain contains a Group Policy object (GPO) named Policy1. A user account named Admin1 is used to administer the member servers. You need to allow Admin1 to apply Policy1 to the member servers. You must prevent Admin1 from modifying Policy1. What should you do?()A、Add Admin1 to the Server Operators group.B、Add Admin1 to the Group Policy Creator Owners group.C、On the Servers OU, assign Admin1 the permission to link GPOs.D、On Policy1, assign Admin1 the permission to apply group policy.
考题
Your network contains an Active Directory domain named contoso.com. The domain contains 20 computer accounts in an organizational unit (OU) named OU1. A user account named User1 is in an OU named OU2.You are configuring a Group Policy object (GPO) named GPO1. You need to assign User1 the Backup files and directories user right to all of the computer accounts in OU1.Which two actions should you perform?()A、Link GPO1 to OU1B、Link GPO1 to OU2.C、Modify the Delegation settings of GPO1.D、From User Configuration in GPO1, modify the security settings.E、From Computer Configuration in GPO1, modify the security settings
考题
Your network contains an Active Directory domain named contoso.com. All user accounts are in an organizational unit (OU) named Employees. You create a Group Policy object (GPO) named GP1.You link GP1 to the Employees OU.You need to ensure that GP1 does not apply to the members of a group named Managers. What should you configure?()A、The Security settings of EmployeesB、The WMI filter for GP1C、The Block Inheritance option for EmployeesD、The Security settings of GP1
考题
Your company has an Active Directory forest. The company has three locations. Each location has an organizational unit and a child organizational unit named Sales. The Sales organizational unit contains all users and computers of the sales department. The company plans to deploy a Microsoft Office 2007 application on all computers within the three Sales rganizational units. You need to ensure that the Office 2007 application is installed only on the computers in the Sales organizational units. What should you do()A、Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to assign the application to the computer account. Link the SalesAPP GPO to the domain.B、Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to assign the application to the user account. Link the SalesAPP GPO to the Sales organizational unit in each location.C、Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to publish the application to the user account. Link the SalesAPP GPO to the Sales organizational unit in each location.D、Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to assign the application to the computer account. Link the SalesAPP GPO to the Sales organizational unit in each location.
考题
Your company has an Active Directory Domain Services (AD DS) domain. All servers run Windows Server 2008 R2. You provide access to some applications through a virtual desktop infrastructure (VDI) environment. All Remote Desktop Session Host (RD Session Host) server objects are located in an organizational unit (OU) named RDServers. All virtual desktop computers are located in an organizational unit (OU) named VirtualDesktops. All other client computer objects are located in an OU named Desktops. The drive holding the user profile cache on each RD Session Host server is running out of free diskspace. You need to restrict the amount of disk space used by the roaming user profile cache. What should you do?()A、Create a Group Policy object (GPO) that enables folder redirection for all users. Link the GPO to the RDServers OU.B、Create a Group Policy object (GPO) that enables folder redirection for all users. Link the GPO to the VirtualDesktops OU.C、Create a Group Policy object (GPO) that configures the Limit the size of the entire roaming user profile cache setting. Link the GPO to the RDServers OU.D、Create a Group Policy object (GPO) that configures the Limit the size of the entire roaming user profile cache setting. Link the GPO to the VirtualDesktops OU.
考题
Your network consists of a single Active Directory domain. The functional level of the domain is Windows Server 2008 R2. All domain controllers run Windows Server 2008 R2. A corporate policy requires that the users from the research department have higher levels of account and password security than other users in the domain. You need to recommend a solution that meets the requirements of the corporate policy. Your solution must minimize hardware and software costs. What should you recommend?()A、Create a new Active Directory site. Deploy a Group Policy object (GPO) to the site.B、Create a new Password Settings Object (PSO) for the research department’s usersC、Create a new organizational unit (OU) named Research in the existing domain. Deploy a Group Policy object (GPO) to the Research OU.D、Create a new domain in the forest.Add the research department’s user accounts to the new domain.Configure a new security policy in the new domain.
考题
Your network consists of a single Active Directory domain named Contoso.com. All servers run Windows Server 2003 Service Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3).You create an organizational unit (OU) that contains a computer account named Computer1. A Group Policy object (GPO) is linked to the OU and contains settings to enforce the use of IPSec. You log on to Computer1 by using a user account named User1. You need to verify that the IPSec settings have been applied. Which command should you run?()A、Dsquery user -name User1B、Dsquery computer -name Computer1C、Gpresult /s Computer1 /scope COMPUTER /vD、Gpresult /user User1 /scope USER /v
考题
Your network consists of a single Active Directory domain named Contoso.com. All servers run Windows Server 2003 Service Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3). You create an organizational unit (OU) that contains acomputer account named Computer1. A Group Policy object (GPO) is linked to the OU and contains settings to enforce the use of IPSec. You log on to Computer1 by using a user account named User1. You need to verify that the IPSec settings have been applied. Which command should you run?()A、Dsquery user -name User1B、Dsquery computer -name Computer1C、Gpresult /s Computer1 /scope COMPUTER /vD、Gpresult /user User1 /scope USER /v
考题
Your network contains an Active Directory domain named contoso.com. The domain contains a user account named User1 that resides in an organizational unit (OU) named OU1. A Group Policy object (GPO) named GPO1 is linked to OU1. GPO1 is used to publish several applications to a user named User1. In the Users container, you create a new user named User2. You need to ensure that the same applications are published to User2. What should you do?()A、Modify the security of GPO1.B、Modify the settings in GPO1C、Link a WMI filter to GPO1D、Move User2 to OU1
考题
You are the network administrator for your company. The network consists of a single Active Directory domain. The domain includes an organizational unit (OU) named Processing. There are 100 computer accounts in the Processing OU. You create a Group Policy object (GPO) named NetworkSecurity and link it to the domain. You configure NetworkSecurity to enable security settings through the Computer Configuration section of the Group Policy settings. You need to ensure that NetworkSecurity will apply only to the computers in the Processing OU. You need to minimize the number of GPO links. What should you do?()A、 Link NetworkSecurity to the Processing OU. Disable the User Configuration section of NetworkSecurity.B、 Link NetworkSecurity to the Processing OU. Remove the link from NetworkSecurity to the domain.C、 Modify the discretionary access control list (DACL) for NetworkSecurity to assign all computer accounts in the Processing OU the Allow - Read and the Allow - Apply Group Policy permissions.D、 Modify the discretionary access control list (DACL) for NetworkSecurity to assign the Authenticated Users group the Deny - Apply Group Policy permission and to assign all of the computer accounts in the Processing OU the Allow - Read and the Allow - Apply Group Policy permissions.
考题
单选题Your network consists of a single Active Directory domain. All domain controllers run Windows Server 2003 Service Pack 2 (SP2). You have an organizational unit (OU) that contains 1,000 computer accounts. You need to move the computer accounts to a new OU. Which tool should you use? ()A
Active Directory Domains and TrustsB
Active Directory Users and ComputersC
Csvde.exeD
Dsmod.exe
考题
单选题You are the network administrator for your company. The network consists of a single Active Directory domain. The domain contains a Windows Server 2003 computer named Server1 that is located in an organizational unit (OU) named Servers. Server1 contains confidential data, and all network communications with Server1 must be encrypted by using IPSec. The default Client (Respond Only) IPSec policy is enabled in the Default Domain Policy Group Policy object (GPO). You create a new GPO and link it to the Servers OU. You configure the new GPO by creating and enabling a custom IPSec policy. You monitor and discover that network communications with Server1 are not being encrypted. You need to view all IPSec policies that are being applied to Server1. What should you do? ()A
Use Local Security Policy to view the Security Options for Server1.B
Use Resultant Set of Policy (RSoP) to run an RSoP logging mode query to view the IP Security Policies on Local Computer for Server1.C
Use Resultant Set of Policy (RSoP) to run an RSoP planning mode query to view the Security Options for Server1.D
Use IP Security Monitor to view the Active Policy for Server1.E
Use IP Security Monitor to view the IKE Policies for Server1.
考题
单选题Your network contains an Active Directory domain named contoso.com. The domain contains a user account named User1 that resides in an organizational unit (OU) named OU1. A Group Policy object (GPO) named GPO1 is linked to OU1. GPO1 is used to publish several applications to a user named User1. In the Users container, you create a new user named User2. You need to ensure that the same applications are published to User2. What should you do?()A
Modify the security of GPO1.B
Modify the settings in GPO1C
Link a WMI filter to GPO1D
Move User2 to OU1
考题
单选题You are the network administrator for your company. The network consists of a single Active Directory domain. The domain includes an organizational unit (OU) named Processing. There are 100 computer accounts in the Processing OU. You create a Group Policy object (GPO) named NetworkSecurity and link it to the domain. You configure NetworkSecurity to enable security settings through the Computer Configuration section of the Group Policy settings. You need to ensure that NetworkSecurity will apply only to the computers in the Processing OU. You need to minimize the number of GPO links. What should you do?()A
Link NetworkSecurity to the Processing OU. Disable the User Configuration section of NetworkSecurity.B
Link NetworkSecurity to the Processing OU. Remove the link from NetworkSecurity to the domain.C
Modify the discretionary access control list (DACL) for NetworkSecurity to assign all computer accounts in the Processing OU the Allow - Read and the Allow - Apply Group Policy permissions.D
Modify the discretionary access control list (DACL) for NetworkSecurity to assign the Authenticated Users group the Deny - Apply Group Policy permission and to assign all of the computer accounts in the Processing OU the Allow - Read and the Allow - Apply Group Policy permissions.
考题
单选题Your network consists of a single Active Directory domain. An organizational unit (OU) named Servers contains all member servers in the domain. The domain contains a Group Policy object (GPO) named Policy1. A user account named Admin1 is used to administer the member servers. You need to allow Admin1 to apply Policy1 to the member servers. You must prevent Admin1 from modifying Policy1. What should you do? ()A
Add Admin1 to the Server Operators group. B
Add Admin1 to the Group Policy Creator Owners group. C
On the Servers OU, assign Admin1 the permission to link GPOs. D
On Policy1, assign Admin1 the permission to apply group policy.
考题
单选题Your network contains an Active Directory domain named contoso.com. All user accounts are in an organizational unit (OU) named Employees. You create a Group Policy object (GPO) named GP1.You link GP1 to the Employees OU.You need to ensure that GP1 does not apply to the members of a group named Managers. What should you configure?()A
The Security settings of EmployeesB
The WMI filter for GP1C
The Block Inheritance option for EmployeesD
The Security settings of GP1
考题
单选题Your network consists of a single Active Directory domain. The domain contains an organizational unit (OU) named SecureServers. The SecureServers OU contains a computer account for a server named Server1. You link a Group Policy object (GPO) to the SecureServers OU. In the GPO, you assign an IPSec policy that requires encryption for all communications. You notice that all communications to Server1 are unencrypted.You need to ensure that all communications to Server1 are encrypted immediately. What should you do?()A
On Server1, run gpudate.exe.B
On Server1, run gpresult.exe.C
From the properties of the GPO, enable the Enforced option.D
From the properties on the SecureServers OU, enable the Block policy inheritance setting.
考题
多选题Your network contains an Active Directory domain named contoso.com. The domain contains 20 computer accounts in an organizational unit (OU) named OU1. A user account named User1 is in an OU named OU2.You are configuring a Group Policy object (GPO) named GPO1. You need to assign User1 the Backup files and directories user right to all of the computer accounts in OU1.Which two actions should you perform?()ALink GPO1 to OU1BLink GPO1 to OU2.CModify the Delegation settings of GPO1.DFrom User Configuration in GPO1, modify the security settings.EFrom Computer Configuration in GPO1, modify the security settings
热门标签
最新试卷