Which cmdlet should you run?

Your network contains one Active Directory domain named contoso.com. The forest functional level is Windows
Server 2012. All servers run Windows Server 2012 R2. All client computers run Windows 8.1.
The domain contains 10 domain controllers and a read-only domain controller (RODC) named RODC01. All
domain controllers and RODCs are hosted on a Hyper-V host that runs Windows Server 2012 R2.
You need to identify which user accounts were authenticated by RODC1.
Which cmdlet should you run?

Your network contains one Active Directory domain named contoso.com. The forest functional level is Windows
Server 2012. All servers run Windows Server 2012 R2. All client computers run Windows 8.1.
The domain contains 10 domain controllers and a read-only domain controller (RODC) named RODC01. All
domain controllers and RODCs are hosted on a Hyper-V host that runs Windows Server 2012 R2.
You need to identify which user accounts were authenticated by RODC1.
Which cmdlet should you run?

A.
Get-ADGroupMember

B.
Get-ADDomainControllerPasswordReplicationPolicy

C.
Get-ADDomainControllerPasswordReplicationPolicyUsage

D.
Get-ADDomain

Explanation:
The Get-ADDomainControllerPasswordReplicationPolicyUsage gets the user or computer accounts that are
authenticated by a read-only domain controller (RODC) or that have passwords that are stored on that RODC.
The list of accounts that are stored on a RODC is known as the revealed list.
Get-ADDomainControllerPasswordReplicationPolicyUsage https://technet.microsoft.com/en-us/
library/ee617194.aspx

Show Hint

Leave a Reply 0

Your email address will not be published. Required fields are marked *