Your network contains an Active Directory domain named contoso.com. All servers run Windows Server 2012
R2.
You are creating a central access rule named TestFinance that will be used to grant members of the
Authenticated users group access to a folder stored on a Microsoft SharePoint Server 2013 server.
You need to ensure that the permissions are granted when the rule is published.
What should you do?
A.
Set the Permissions to Use the following permissions as proposed permissions.
B.
Set the Permissions to Use following permissions as current permissions.
C.
Add a Resource condition to the current permissions entry for the Authenticated Users principal.
D.
Add a User condition to the current permissions entry for the Authenticated Users principal.
Explanation:
To create a central access rule (see step 5 below):
In the left pane of the Active Directory Administrative Center, click Tree View, select Dynamic Access
Control, and then click Central Access Rules.
Right-click Central Access Rules, click New, and then click Central Access Rule.
In the Name field, type Finance Documents Rule.
In the Target Resources section, click Edit, and in the Central Access Rule dialog box, click Add a
condition. Add the following condition:
[Resource] [Department] [Equals] [Value] [Finance], and then click OK.
In the Permissions section, select Use following permissions as current permissions, click Edit, and in
the Advanced Security Settings for Permissions dialog box click Add.
Note (not A): Use the following permissions as proposed permissions option lets you create the policy in
staging.
6. In the Permission entry for Permissions dialog box, click Select a principal, type Authenticated Users,
and then click OK.Etc.
Incorrect:
Not A. Proposed permissions enable an administrator to more accurately model the impact of potential changes
to access control settings without actually changing them.
Deploy a Central Access Policy (Demonstration Steps) https://technet.microsoft.com/en-us/library/
hh846167.aspx