Exam : Microsoft 70-293
Title : Plan. and Maint. a MSWin Srvr2003 Net. Infrastructure
Title : Plan. and Maint. a MSWin Srvr2003 Net. Infrastructure
1. You are the network administrator for your company. The network consists of a single Active Directory domain. The network contains two Windows Server 2003 domain controllers, two Windows 2000 Server domain controllers, and two Windows NT Server 4.0 domain controllers.
All file servers for the finance department are located in an organizational unit (OU) named Finance Servers.
All file servers for the payroll department are located in an OU named Payroll Servers. The Payroll Servers
OU is a child OU of the Finance Servers OU.
The company's written security policy for the finance department states that departmental servers must
have security settings that are enhanced from the default settings. The written security policy for the payroll
department states that departmental servers must have enhanced security settings from the default settings,
and auditing must be enabled for file or folder deletion.
You need to plan the security policy settings for the finance and payroll departments.
What should you do?
A. Create a Group Policy object (GPO) to apply the Compatws.inf security template to computer objects,
and link it to the Finance Servers OU.
Create a second GPO to enable the Audit object access audit policy on computer objects, and link it to the
Payroll Servers OU.
B. Create a Group Policy object (GPO) to apply the Securews.inf security template to computer objects,
and link it to the Finance Servers OU.
Create a second GPO to enable the Audit object access audit policy on computer objects, and link it to the
Payroll Servers OU.
C. Create a Group Policy object (GPO) to apply the Compatws.inf security template to computer objects,
and link it to the Finance Servers OU.
Create a second GPO to apply the Hisecws.inf security template to computer objects, and link it to the
Payroll Servers OU.
D. Create a Group Policy object (GPO) to apply the Securews.inf security template to computer objects,
and link it to the Finance Servers and to the Payroll Servers OUs.
Create a second GPO to enable the Audit object access audit policy on computer objects, and link it to the
Payroll Servers OU.
Answer: B
Testinside
TestInside Help You Pass Any IT Exam http://www.TestInside.com
2. You are the network administrator for your company. The network consists of a single Active Directory
domain. The functional level of the domain isWindows Server 2003. The domain contains an organizational
unit (OU) named Servers that contains all of the company's Windows Server 2003 resource servers. The
domain also contains an OU named Workstations that contains all of the company's Windows XP
Professional client computers.
You configure a baseline security template for resource servers named Server.inf and a baseline security
template for client computers namedWorkstation.inf. The Server.inf template contains hundreds of settings,
including file and registry permission settings that have inheritance propagation enabled. The
Workstation.inf template contains 20 security settings, none of which contain file or registry permissions
settings.
The resource servers operate at near capacity during business hours.
You need to apply the baseline security templates so that the settings will be periodically enforced. You
need to accomplish this task by using the minimum amount of administrative effort and while minimizing the
performance impact on the resource servers.
What should you do?
A. Create a Group Policy object (GPO) and link it to the domain. Import both the Server.inf and the
Workstation.inf templates into the GPO.
B. Import both the Server.inf and the Workstation.inf templates into the Default Domain Policy Group Policy
object (GPO).
C. On each resource server, create a weekly scheduled task to apply the Server.inf settings during off-peak
hours by using the secedit command. Create a Group Policy object (GPO) and link it to the Workstations
OU. Import the Workstation.inf template into the GPO.
D. On each resource server, create a weekly scheduled task to apply the Server.inf settings during off-peak
hours by using the secedit command. Import the Workstation.inf template into the Default Domain Policy
Group Policy object (GPO).
Answer: C
All file servers for the finance department are located in an organizational unit (OU) named Finance Servers.
All file servers for the payroll department are located in an OU named Payroll Servers. The Payroll Servers
OU is a child OU of the Finance Servers OU.
The company's written security policy for the finance department states that departmental servers must
have security settings that are enhanced from the default settings. The written security policy for the payroll
department states that departmental servers must have enhanced security settings from the default settings,
and auditing must be enabled for file or folder deletion.
You need to plan the security policy settings for the finance and payroll departments.
What should you do?
A. Create a Group Policy object (GPO) to apply the Compatws.inf security template to computer objects,
and link it to the Finance Servers OU.
Create a second GPO to enable the Audit object access audit policy on computer objects, and link it to the
Payroll Servers OU.
B. Create a Group Policy object (GPO) to apply the Securews.inf security template to computer objects,
and link it to the Finance Servers OU.
Create a second GPO to enable the Audit object access audit policy on computer objects, and link it to the
Payroll Servers OU.
C. Create a Group Policy object (GPO) to apply the Compatws.inf security template to computer objects,
and link it to the Finance Servers OU.
Create a second GPO to apply the Hisecws.inf security template to computer objects, and link it to the
Payroll Servers OU.
D. Create a Group Policy object (GPO) to apply the Securews.inf security template to computer objects,
and link it to the Finance Servers and to the Payroll Servers OUs.
Create a second GPO to enable the Audit object access audit policy on computer objects, and link it to the
Payroll Servers OU.
Answer: B
Testinside
TestInside Help You Pass Any IT Exam http://www.TestInside.com
2. You are the network administrator for your company. The network consists of a single Active Directory
domain. The functional level of the domain isWindows Server 2003. The domain contains an organizational
unit (OU) named Servers that contains all of the company's Windows Server 2003 resource servers. The
domain also contains an OU named Workstations that contains all of the company's Windows XP
Professional client computers.
You configure a baseline security template for resource servers named Server.inf and a baseline security
template for client computers namedWorkstation.inf. The Server.inf template contains hundreds of settings,
including file and registry permission settings that have inheritance propagation enabled. The
Workstation.inf template contains 20 security settings, none of which contain file or registry permissions
settings.
The resource servers operate at near capacity during business hours.
You need to apply the baseline security templates so that the settings will be periodically enforced. You
need to accomplish this task by using the minimum amount of administrative effort and while minimizing the
performance impact on the resource servers.
What should you do?
A. Create a Group Policy object (GPO) and link it to the domain. Import both the Server.inf and the
Workstation.inf templates into the GPO.
B. Import both the Server.inf and the Workstation.inf templates into the Default Domain Policy Group Policy
object (GPO).
C. On each resource server, create a weekly scheduled task to apply the Server.inf settings during off-peak
hours by using the secedit command. Create a Group Policy object (GPO) and link it to the Workstations
OU. Import the Workstation.inf template into the GPO.
D. On each resource server, create a weekly scheduled task to apply the Server.inf settings during off-peak
hours by using the secedit command. Import the Workstation.inf template into the Default Domain Policy
Group Policy object (GPO).
Answer: C
