You are the administrator of contoso.local domain. You organize the domain into organizational units as shown in the EXHIBIT. You configure the local security options and other settings for the default domain policy object You delegate administration of Michigan and Florida OU. You want to prevent those administrators from creating any other group policy objects with settings that conflict with those you configured.What should you do?

Windows 2000 Server
You are the administrator of contoso.local domain. You organize the domain into organizational units as shown in the EXHIBIT. You configure the local security options and other settings for the default domain policy object You delegate administration of Michigan and Florida OU. You want to prevent those administrators from creating any other group policy objects with settings that conflict with those you configured.What should you do?

Block the group policy inheritance for Michigan and Florida OU

From the group policy options from the contoso.local domains set the option not override

From the group policy options from the Michigan and Florida OU, set the option not override

None of above

Block the group policy inheritance for the contoso.local domain

Block the group policy inheritance for Michigan and Florida OU

From the group policy options from the contoso.local domains set the option not override

From the group policy options from the Michigan and Florida OU, set the option not override

None of above

Block the group policy inheritance for the contoso.local domain

ANSWER DOWNLOAD EXAMIANS APP

Windows 2000 Server
Your network consists of Windows 2000 file servers, Windows 2000 print servers, Windows 2000 professional computers, Windows 2000 file servers. You must prevent any unsigned drivers from being installed on any computer in your Windows 2000 network. What should you do?

Do nothing, this is the default setting

Configure the Windows 2000 file servers, Windows 2000 print servers, Windows 2000 professional computers and Windows 2000 file servers to block unsigned drivers

Configure a Group policy for the Domain that blocks all unsigned drivers

None of above

Configure a Group policy for the Default Domain Controller to block all unsigned drivers

Do nothing, this is the default setting

Configure the Windows 2000 file servers, Windows 2000 print servers, Windows 2000 professional computers and Windows 2000 file servers to block unsigned drivers

Configure a Group policy for the Domain that blocks all unsigned drivers

None of above

Configure a Group policy for the Default Domain Controller to block all unsigned drivers

ANSWER DOWNLOAD EXAMIANS APP

Windows 2000 Server
You are the administrator of Windows 2000 domain and TWO Windows NT domains. The Windows 2000 domains trust each of the Windows NT domains. Each of Windows NT domains trust the Windows 2000 domain. A Windows 2000 domain controller named DC1 is configured to use a highly secure domain controller template. Users in the Windows NT domain report that they cannot access DC1. You need to allow the users of computers in the Windows NT domain to access resources on DC1. What should you do?

Apply a less restrictive custom security template to DC1

Ensure the Windows 2000 domain is configured to run in the native mode

Ensure the Windows 2000 domain is configured in the mixed mode

None of above

Apply a less restrictive custom policy to Windows NT domain controller

Apply a less restrictive custom security template to DC1

Ensure the Windows 2000 domain is configured to run in the native mode

Ensure the Windows 2000 domain is configured in the mixed mode

None of above

Apply a less restrictive custom policy to Windows NT domain controller

ANSWER DOWNLOAD EXAMIANS APP

Windows 2000 Server
You are the administrator of your company's network. You are configuring the security policy for a group of users in the finance organizational unit (OU). You need to configure a group policy so that future changes to group policy will be applied within 15 minutes to any computers that are log on to the network. What should you do?

Enable and configure the group policy refresh interval for domain controller

Enable the asynchronous group policy application settings

Enable the background refresh settings to use the default group policy refresh date

Enable and configure the group policy refresh interval for computers

None of above

Enable and configure the group policy refresh interval for domain controller

Enable the asynchronous group policy application settings

Enable the background refresh settings to use the default group policy refresh date

Enable and configure the group policy refresh interval for computers

None of above

ANSWER DOWNLOAD EXAMIANS APP

Windows 2000 Server
Some applications on your company network use defined domain user accounts as their service accounts. Each computer that runs one of these applications should have the respective service account in the Local Administrators Group. Currently, you individually place these service accounts in the Local Administrators Group on the appropriate Windows 2000 Professional computers. You need to centralize this process. What should you do?

Add the applications service accounts to the Local Administrator Group. Use the Restricted Groups option in each computer's local group policy

Add the applications service accounts to the Domain Administrator Group

Add the applications service accounts to the Local Administrator Group. Use the Restricted Groups option in a Domain Group Policy

None of above

Add the applications service accounts to the Local Administrator Group. Use the Restricted Groups option in an OU Group Policy

Add the applications service accounts to the Local Administrator Group. Use the Restricted Groups option in each computer's local group policy

Add the applications service accounts to the Domain Administrator Group

Add the applications service accounts to the Local Administrator Group. Use the Restricted Groups option in a Domain Group Policy

None of above

Add the applications service accounts to the Local Administrator Group. Use the Restricted Groups option in an OU Group Policy

ANSWER DOWNLOAD EXAMIANS APP

Windows 2000 Server
You install Terminal Services on a Windows 2000 domain controller. You install Terminal Services Client on users' client computers. Users report that when they try to connect to the Terminal server, they receive the following error message: "The local policy of this system does not allow you to logon interactively." When you attempt to log on to the Terminal server as an administrator from a user's computer, you log on successfully. You want users to be able to log on to the Terminal server. What should you do?

Grant the users the right to log on locally

Copy the users' home folders to the Terminal server

Grant the users the right to log on over the network

Grant the users the right to log on as a service

Copy the users' prpfiles to the Terminal server

Grant the users the right to log on locally

Copy the users' home folders to the Terminal server

Grant the users the right to log on over the network

Grant the users the right to log on as a service

Copy the users' prpfiles to the Terminal server

ANSWER DOWNLOAD EXAMIANS APP

Windows 2000 Server

Windows 2000 Server Your network consists of Windows 2000 file servers, Windows 2000 print servers, Windows 2000 professional computers, Windows 2000 file servers. You must prevent any unsigned drivers from being installed on any computer in your Windows 2000 network. What should you do?

Windows 2000 Server
Your network consists of Windows 2000 file servers, Windows 2000 print servers, Windows 2000 professional computers, Windows 2000 file servers. You must prevent any unsigned drivers from being installed on any computer in your Windows 2000 network. What should you do?