You need to design a method of deploying security configuration settings to all
servers in the domain.
Leading the way in IT testing and certification tools, www.certifyme.com
- 38 -
What should you do?
A. Run the Resultant Set of Policy wizard with a Windows Management Instrumentation
(WMI) filter on each department's Server OU.
B. Log on to each server and use the System Policy Editor to configure the server's
security settings.
C. Create a customer security template. Log on to a domain controller in the Chicago
office and use the secedit command to import the security template.
D. Create a customer security template and import the security to a GPO.350-001 Link the GPO
to each department's Server OU.
Answer: D
Explanation: You can define a base security template on a single computer and then
export the security template to all the servers in your network. The security template is
used as a comparative tool. You do not set security through the security template. Rather,
the security template is where you organize all of your security attributes in a single
location. Once you have configured a security template, you can import it for use.640-802 To
deploy security configuration settings to servers you should first create a customer
security template and then a group policy object to import the security template. After
that you link the GPO to each department's Server OU.
Incorrect answers:
A: Resultant Set of Policy (RSoP) is a new feature of Windows Server 2003 that provides
the ability to see exactly how the various policies within the domain will apply to a
specific user or computer. However, you do not just want to view how and which policies
are applied, you need to create a method to deploy security configuration settings.
B: This option suggests an administratively intensive procedure. Furthermore it ignores
the fact that a standard set of security settings should be deployed which should have
been configured and managed from a central location.
C: This command is used to force updates on policies.VCP-310 But this implies that the security
policy is already in place and only being edited.
Reference:
James Chellis, Paul Robichaux & Matthew Sheltz, MCSA/MCSE: Windows Server 2003
Network Infrastructure Implementation, Management, and Maintenance Study Guide, pp.
127-128, 173
Leading the way in IT testing and certification tools, www.certifyme.com
- 39 -
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment