Your network contains an Active Directory domain named contoso.com. The domain contains a server named
Server1 that runs Windows Server 2012 R2. Server1 has the Remote Access server role installed.
You log on to Server1 by using a user account named User2.
From the Remote Access Management Console, you run the Getting Started Wizard and you receive a warning
message as shown in the exhibit. (Click the Exhibit button.)
You need to ensure that you can configure DirectAccess successfully. The solution must minimize the number
of permissions assigned to User2.
To which group should you add User2?
A.
Enterprise Admins
B.
Administrators
C.
Account Operators
D.
Server Operators
Explanation:
You must have privileges to create WMI filters in the domain in which you want to create the filter. Permissions
can be changed by adding a user to the Administrators group.
Administrators (A built-in group)
After the initial installation of the operating system, the only member of the group is the Administrator account.
When a computer joins a domain, the Domain Admins group is added to the Administrators group. When a
server becomes a domain controller, the Enterprise Admins group also is added to the Administrators group.
The Administrators group has built-in capabilities that give its members full control over the system. The group
is the default owner of any object that is created by a member of the group.
This example logs in as a test user who is not a domain user or an administrator on the server. This results in
the error specifying that DA can only be configured by a user with local administrator permissions.http://technet.microsoft.com/en-us/library/cc780416(v=ws.10).aspx
http://technet.microsoft.com/en-us/library/cc775497(v=ws.10).aspx