A.Log on to a domain controller and run the Resultant Set of Policy wizard in planning mode on the domain
B.Log on to each server and run Security Configuration and Analysis to analyze the security settings by using a custom security template
C.Create a logon script to run the secedit command to analyze all servers in the domain
D.Run the Microsoft Baseline Security Analyzer (MBSA) on a server to scan for Windows vulnerabilities on all servers in the domain
您可能感兴趣的试卷
你可能感兴趣的试题
A.Enable failure audit for privilege user and object access on all servers and domain controllers
B.Enable success audit for policy change and account management on all servers and domain controllers
C.Enable success audit for process tracking and logon events on all servers and domain controllers
D.Enable failure audit for system events and directory service access on all servers and domain controllers
A.Use error reporting on all servers in the development department to report errors for a custom application
B.Configure all servers in the development department so that they do not require the CTRL+ALT+DELTE keys to pressed in order to log on interactively to the server
C.Create a Group Policy object (GPO) and link it to the development department’s Servers OU. Configure the GPO with an interactive logon policy to display a message for users who attempt to log on
D.Configure the screen saver on all servers in the development department to require a password
A.Use SSH to encrypt content as it is transferred to the Web server on the perimeter network
B.Install the Microsoft FrontPage Server Extensions, and use FrontPage to update content
C.Use Web Distributed Authoring and Versioning (WebDAV) over and SSL connection to the Web server to update content
D.Use FTP over an IPSec connection to transfer content to the Web server
E.Use Telnet to connect to the Web server, and then perform content changes directly on the server
A.Encrypt customer information when it is stored and when it is being transmitted
B.Require encrypted connections to the public Web site, which is hosted on the Web server on the perimeter network
C.Encrypt all marketing information on file servers and client computers
D.Require encrypted connections to all file servers
A.Permit administrators to use an HTTP interface to manage servers remotely
B.Permit only administrators to connect to the servers’ Telnet service
C.Permit administrators to manage the servers by using Microsoft NetMeeting
D.Require administrators to use Remote Desktop for Administration connections to manage the servers
A.Create a global group for each department and a global group for each location. Add users to their respective departmental groups as members. Place the departmental global groups within the location global groups. Assign the location global groups to file and printer resources in their respective domains, and then assign permissions for the file and printer resources by using the location global groups
B.Create a global group for each department, and add the respective users as members. Create domain local groups for file and printer resources. Add the global groups to the respective domain local groups. Then, assign permissions to the file and printer resources by using the domain local groups
C.Create a local group on each server and add the authorized users as members. Assign appropriate permissions for the file and printer resources to the local groups
D.Create a universal group for each location, and add the respective users as members. Assign the universal groups to file and printer resources. Then, assign permissions by using the universal groups
You need to design a permission structure for registry objects that enables the legacy application at the resorts to run. Your solution must comply with the written security policy.
What should you do?()
A.Create a GPO. Link the GPO to the OUs that contain computer accounts for computers that run the legacy application, Use the GPO to give the Domain Users security group full control on the partitions of the registry that the legacy application uses
B.Create a GPO. Link the GPO to the OUs that contain computer accounts for computers that run the legacy application. Use the GPO to give the Domain Users security group full control on the HKEY_USERS partition of the registry
C.Create a GPO. Link the GPO to the OUs that contain computer accounts for computers that run the Legacy application. Use the GPO to make all users who require access to the application members of Local Administrators group on each computer
D.Create a GPO. Link the GPO to the OUs that contain computer accounts for computers that run the Legacy application. Use the GPO to give all users who require access to the application full control for the Ntuser.dat file
A.Make the members of the AdvancedSupport security group members of the Domain Admins security group
B.Give each desktop support technician permission to reset passwords for the top-level OU that contains user accounts at their own location
C.Delegate full control over all OUs that contain user accounts to all AllSupport security group
D.Change the permissions on the domain object and its child objects so that the BasicSupport security group is denied permissions. Then, add a permission to each OU that contains user accounts that allows AllSupport security group members to reset passwords in that OU
A.Connect the wireless access points to a dedicated subnet. Allow the subnet direct access to the Internet,but not to the company network.Require company users to establish a VPN to access company resources
B.Install Internet Authentication Service (IAS) on a domain controller.Configure the wireless access points to require IEEE 802.1x authentication
C.Establish IPSec policies on all company servers to request encryption from all computers that connect from the wireless IP networks
D.Configure all wireless access points to require the Wired Equivalent Privacy (WEP) protocol for all connections. Use a Group Policy object (GPO) to distribute the WEP keys to all computers in the domain
A.Place all infrastructure servers in subnets that cannot exchange information with the Internet
B.Establish a custom security template that contains unique required settings for each combination of services that run on the infrastructure servers
C.Use Group Policy objects (GPOs) to apply the custom security template or templates to the Infrastructure servers
D.Edit the local policy settings to configure each individual server
最新试题
You need to design a security solution for the internally developed Web applications that meets business requirements. What should you do?()
You need to configure ISA3 in Seattle to enable communication with the network in New York.What should you do?()
You need to design a certificate management process for internal users. What should you do?()
You need to design an access control strategy for the marketing application. You solution must minimize impact on server and network performance. What should you do?()
You need to design a password policy that meets business requirements. What should you do? Select all that apply.()
You need to improve the company’s security patch management process. Your solution must meet existing business requirements and it cannot increase the number of employees or unnecessarily increase ongoing administrative effort. What should you do?()
You need to design a security strategy for the Web folders and files created by the consultants and the internal Web developers. What are two possible ways to achieve this goal?()
You need to provide users in the research department access to different functions of the Web-based research application based on individual user roles. What should you do?()
You need to design security changes that provide maximum protection for customer data and courier assignments.What should you do?()
You need to design a remote access strategy for portable computers. Your solution must meet business requirements. What should you do?()