Your company has an Active Directory domain that has an organizational unit named Sales. The Sales organizational unit contains two global security groups named sales managers and sales executives. You need to apply desktop restrictions to the sales executives group. You must not apply these desktop restrictions to the sales managers group. You create a GPO named DesktopLockdown and link it to the Sales organizational unit. What should you do next()A、Configure the Deny Apply Group Policy permission for the sales managers on the DesktopLockdown GPO.B、Configure the Deny Apply Group Policy permission for the sales executives on the DesktopLockdown GPO.C、Configure the Deny Apply Group Policy permission for Authenticated Users on the DesktopLockdown GPO.D、Configure the Allow Apply Group Policy permission for Authenticated Users on the DesktopLockdown GPO.
Your company has an Active Directory domain that has an organizational unit named Sales. The Sales organizational unit contains two global security groups named sales managers and sales executives. You need to apply desktop restrictions to the sales executives group. You must not apply these desktop restrictions to the sales managers group. You create a GPO named DesktopLockdown and link it to the Sales organizational unit. What should you do next()
- A、Configure the Deny Apply Group Policy permission for the sales managers on the DesktopLockdown GPO.
- B、Configure the Deny Apply Group Policy permission for the sales executives on the DesktopLockdown GPO.
- C、Configure the Deny Apply Group Policy permission for Authenticated Users on the DesktopLockdown GPO.
- D、Configure the Allow Apply Group Policy permission for Authenticated Users on the DesktopLockdown GPO.
相关考题:
Your network contains a Windows Server Update Services (WSUS) server.You have an organizational unit (OU) named Sales. The Sales OU contains all of the computer objects for the sales department. You enable client-side targeting for the Sales OU and set the target group name to Sales-Computers.You restart a sales computer.You discover that the computer is not added to the Sales-Computer computer group in WSUS.You need to ensure that all sales computers are added to the Sales-Computers group.Which options should you configure?()A. Automatic ApprovalsB. ComputersC. PersonalizationD. Products and Classifications
Your company has an organizational unit named Production. The Production organizational unit has a child organizational unit named RD. You create a GPO named Software Deployment and link it to the Production organizational unit. You create a shadow group for the RD organizational unit. You need to deploy an application to users in the Production organizational unit. You also need to ensure that the application is not deployed to users in the RD organizational unit. What are two possible ways to achieve this goal()A、Configure the Enforce setting on the software deployment GPO.B、Configure the Block Inheritance setting on the RD organizational unit.C、Configure the Block Inheritance setting on the Production organizational unit.D、Configure security filtering on the Software Deployment GPO to Deny Apply group policy for the RD security group
Your company has an Active Directory forest. The company has three locations. Each location has an organizational unit and a child organizational unit named Sales. The Sales organizational unit contains all users and computers of the sales department. The company plans to deploy a Microsoft Office 2007 application on all computers within the three Sales organizational units. You need to ensure that the Office 2007 application is installed only on the computers in the Sales organizational units. What should you do()A、Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to assign the application to the cB、Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to assign the application to the usC、Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to publish the application to the uD、Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to assign the application to the co
Your company has an Active Directory forest. The forest includes organizational units corresponding to the following four locations. London Chicago New York Madrid Each location has a child organizational unit named Sales. The Sales organizational unit contains all the users and computers from the sales department. The offices in London, Chicago, and New York are connected by T1 connections. The office in Madrid is connected by a 256-Kbps ISDN connection. You need to install an application on all the computers in the sales department. Which two actions should you perform()A、Disable the slow link detection setting in the Group Policy Object (GPO).B、Configure the slow link detection threshold setting to 1,544 Kbps (T1) in the Group Policy Object GPO).C、Create a Group Policy Object (GPO) named Officelnstall that assigns the application to users. Link the GPO to each Sales organizational unit.D、Create a Group Policy Object (GPO) named Officelnstall that assigns the application to the computers.Link the GPO to each Sales organizational unit.
Your company has an Active Directory forest. Each branch office has an organizational unit and a child organizational unit named Sales. The Sales organizational unit contains all users and computers of the sales department. You need to install a Microsoft Office 2007 application only on the computers in the Sales organizational unit. You create a GPO named SalesApp GPO. What should you do next()A、Configure the GPO to assign the application to the computer account. Link the SalesAPP GPO to the domain.B、Configure the GPO to assign the application to the user account. Link the SalesAPP GPO to the Sales organizationC、Configure the GPO to publish the application to the user account. Link the SalesAPP GPO to the Sales organizationD、Configure the GPO to assign the application to the computer account. Link the SalesAPP GPO to the Sales organiz
Your company has an Active Directory forest. Each branch office has an organizational unit and a child organizational unit named Sales. The Sales organizational unit contains all users and computers of the sales department. You need to install an Office 2007 application only on the computers in the Sales organizational unit. You create a GPO named SalesApp GPO. What should you do next()A、Configure the GPO to assign the application to the computer account. Link the SalesAPP GPO to the domain.B、Configure the GPO to assign the application to the user account. Link the SalesAPP GPO to the Sales organizational unit in each location.C、Configure the GPO to publish the application to the user account. Link the SalesAPP GPO to the Sales organizational unit in each location.D、Configure the GPO to assign the application to the computer account. Link the SalesAPP GPO to the Sales organizational unit in each location.
Your network contains a Windows Server Update Services (WSUS) server.You have an organizational unit (OU) named Sales. The Sales OU contains all of the computer objects for the sales department. You enable client-side targeting for the Sales OU and set the target group name to Sales-Computers.You restart a sales computer.You discover that the computer is not added to the Sales-Computer computer group in WSUS.You need to ensure that all sales computers are added to the Sales-Computers group. Which options should you configure?()A、Automatic ApprovalsB、ComputersC、PersonalizationD、Products and Classifications
You are the administrator of your company's network. You want to configure a Security Policy for the Windows 2000 Professional Computers that are in the sales department. On one of the computers, you use Security Templates to configure the Security Policy based on the desired security settings. You then export those settings to an .inf file that will be used on all of the Computers in the sales department. You want to configure each Computer to have a customized Security Policy. What steps should you follow in order to achieve your goal?()A、Use Secedit.exe to import the security settings from the .inf file to the computers in the sales department.B、Use a text editor to change the default security settings to the desired security settings. Then export those settings to the Computers in the sales department.C、Create an organizational unit (OU) named Sales. Add the users in the sales department to the Sales OU. Then apply the security template to the users in the Sales OU.D、Create an organizational unit (OU) named Sales. Add the computers in the sales department to the Sales OU. Then apply the security template to computers in the Sales OU.
You have a single Active Directory directory service domain. All domain controllers run Windows Server 2003. All client computers run Windows Vista. The computers in the sales department are located in an organizational unit (OU) named Sales. You use a Default Domain Policy to configure company user and computer settings. You configure a software restriction policy for the domain. The policy prevents users from running software that is not approved. You need to allow computers in the Sales OU to run software that is not approved while maintaining other required settings. What should you do?()A、 Configure the Sales OU to block inheritance.B、 Create a new software restriction policy that reverses the settings in the Default Domain Policy. Link the new software restriction policy to the Sales OU.C、 Link the software restriction policy to the Sales OU. Disable the user configuration settings of this policy.D、 Link the software restriction policy to the Sales OU. Disable the computer configuration settings of this policy.
Your company has an Active Directory forest. The company has three locations. Each location has an organizational unit and a child organizational unit named Sales. The Sales organizational unit contains all users and computers of the sales department. The company plans to deploy a Microsoft Office 2007 application on all computers within the three Sales rganizational units. You need to ensure that the Office 2007 application is installed only on the computers in the Sales organizational units. What should you do()A、Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to assign the application to the computer account. Link the SalesAPP GPO to the domain.B、Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to assign the application to the user account. Link the SalesAPP GPO to the Sales organizational unit in each location.C、Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to publish the application to the user account. Link the SalesAPP GPO to the Sales organizational unit in each location.D、Create a Group Policy Object (GPO) named SalesAPP GPO. Configure the GPO to assign the application to the computer account. Link the SalesAPP GPO to the Sales organizational unit in each location.
You have a single Active Directory directory service forest with one domain. You have an existing top-level organizational unit (OU) named Sales. You are planning to create a new top-level OU named Training. The Sales and Training OUs must have the same security and auditing settings. You need to identify the security permissions and audit settings for the Sales OU so that you can delegate the same permissions for the Training OU. What should you do first?()A、 Use the Delegation of Control Wizard.B、 Use the Security Configuration Wizard.C、 Run the dsacls command.D、 Run the xcacls command.
Your company has an Active Directory domain that runs Windows Server 2008 R2. The Sales OU contains an OU for Computers, an OU for Groups, and an OU for Users. You perform nightly backups. An administrator deletes the Groups OU. You need to restore the Groups OU without affecting users and computers in the Sales OU. What should you do()A、Perform an authoritative restore of the Sales OU.B、Perform an authoritative restore of the Groups OU.C、Perform a non-authoritative restore of the Groups OU.D、Perform a non-authoritative restore of the Sales OU.
Your company has an Active Directory forest. The forest includes organizational units corresponding to the following four locations: - London - Chicago - New York - Madrid Each location has a child organizational unit named Sales. The Sales organizational unit contains all the users and computers from the sales department. The offices in London, Chicago, and New York are connected by T1 connections. The office in Madrid is connected by a 256-Kbps ISDN connection. You need to install an application on all the computers in the sales department. Which two actions should you perform()A、Disable the slow link detection setting in the Group Policy Object (GPO).B、Configure the slow link detection threshold setting to 1,544 Kbps (T1) in the Group Policy Object (GPO).C、Create a Group Policy Object (GPO) named OfficeInstall that assigns the application to users. Link the GPO to eacD、Create a Group Policy Object (GPO) named OfficeInstall that assigns the application to the computers. Link the GP
Your company has an Active Directory domain that runs Windows Server 2008 The Sales OU contains an OU for Computers, an OU for Groups, and an OU for Users You perform nightly backups. An administrator deletes the Groups OU You need to restore the Groups OU without affecting users and computers in the Sales OU What should you do()A、Perform an authoritative restore of the Sales OU.B、Perform an authoritative restore of the Groups OU.C、Perform a non-authoritative restore of the Groups OU.D、Perform a non-authoritative restore of the Sales OU.
You are the network administrator for your company. The network consists of a single Active Directory domain. User and group objects for the sales department are located in an organizational unit (OU) named Sales. Peter and Mary are administrators for your company. Peter is responsible for managing Sales user objects. Mary is responsible for managing Sales group objects. You need to delegate Peter and Mary control over only the objects for which they are responsible. What should you do?()A、 In the Sales OU, create two new OUs. Name one OU SalesUsers and place all user objects for the sales department in this OU. Name the other OU SalesGroups and place all group objects for the sales department in this OU. Grant Peter and Mary full control over the Sales OU.B、 On the Sales OU, grant Peter the right to manage user objects. On the Sales OU, grant Mary the right to manage group objects.C、 In the Sales OU, create a new OU. Name this OU SalesGroups. Place all Sales groups in theSalesGroups OU.Grant Peter the right to manage all objects in the Sales OU. Grant Mary the right to manage all objects in the SalesGroups OU.D、 On the Sales OU, deny Peter the right to manage group objects. On the Sales OU, deny Mary the right to manage user objects.
You have a single Active Directory directory service domain. All user accounts in the sales department are in an organizational unit (OU) named Sales. Your company has five public computers that are members of the domain. You notice a sales tracking application on one of the public computers. You verify that this application is assigned to users in the Sales OU through a Group Policy object (GPO). You need to ensure that when sales department users log on to the public computers, the applications that are assigned to the Sales OU are not made available on the public computers. What should you do?()A、 Add the public computer accounts to a new OU. Create and link a GPO to enable the User Group Policy loopback processing mode setting in merge mode.B、 Add the public computer accounts to a new OU. Create and link a GPO to enable the User Group Policy loopback processing mode setting in replace mode.C、 Create a new GPO and link it to the Sales OU to enable the User Group Policy loopback processing mode setting in merge mode.D、 Create a new GPO and link it to the Sales OU to enable the User Group Policy loopback processing mode setting in replace mode.
单选题You have a single Active Directory directory service domain. All domain controllers run Windows Server 2003. All client computers run Windows Vista. The computers in the sales department are located in an organizational unit (OU) named Sales. You use a Default Domain Policy to configure company user and computer settings. You configure a software restriction policy for the domain. The policy prevents users from running software that is not approved. You need to allow computers in the Sales OU to run software that is not approved while maintaining other required settings. What should you do?()A Configure the Sales OU to block inheritance.B Create a new software restriction policy that reverses the settings in the Default Domain Policy. Link the new software restriction policy to the Sales OU.C Link the software restriction policy to the Sales OU. Disable the user configuration settings of this policy.D Link the software restriction policy to the Sales OU. Disable the computer configuration settings of this policy.
单选题Your network consists of a single Active Directory domain. The domain contains more than 300 group objects. The group objects are divided between several regional organizational units (OUs). You need to create a list of all groups that have names that begin with the word Sales. Which command should you use? ()ADsget groupBDsquery groupCNetdom queryDNet group