Your network contains two servers named Server1 and Server2 that run Windows Server 2012 R2.
Server1 and Server2 are part of a workgroup.
On Server1 and Server2, you create a local user account named Admin1.You add the account to the
local Administrators group. On both servers, Admin1 has the same password.
You log on to Server1 as Admin1. You open Computer Management and you.connect to Server2.
When you attempt to create a scheduled task, view the event logs, and manage the shared folders,
you receive Access Denied messages.
You need to ensure that you can administer Server2 remotely from Server1 by using Computer
Management.
What should you configure on Server2?
A.
From Server Manager, modify the Remote Management setting.
B.
From Local Users and Groups, modify the membership of the Remote Management Users group.
C.
From Windows Firewall, modify the Windows Management Instrumentation (WMI) firewall rule.
D.
From Registry Editor, configure the LocalAccountTokenFilterPolicy registry value.
Explanation:
The LocalAccountTokenFilterPolicy setting affects how administrator credentials are applied to
remotely administer the computer.
http://support.microsoft.com/kb/942817
D.
Local administrators other than the built-in administrator may not be able to remotely manage a server. So, we need to modify the LocalAccountTokenFilterPolicy registry ket
A.
Server Management allows an administrator to manage multiple servers remotely.
https://technet.microsoft.com/en-us/library/hh831456.aspx
A
I’ve see this question before on the others version here in aiotestking, and all guys says that the correct one is D, So can someone confirm that the guys saying that A is correct are crazy?
50 questions in total.
About 8 new questions, around 4 new questions on Access-Based and SMB-Share and Synchronizing Work Folders With AD Users.
And, 4 questions about RODC, 2 questions about Azure and NO IPv6 questions.
All questions now are available in PassLeader 70-410 Exam Dumps (Both VCE and PDF Files Are Available Here: https://tr.im/758Ht). All Answers Have Been Corrected By PassLeader.
Good Luck!
I tested this in my lab environment. I tried all the other choices first before using the LocalAccountTokenFilterPolicy registry edit.
I can safely say that the LocalAccountTokenFilterPolicy answer is the correct one.
By default, User Accaunt Control prevents members of Local Admins group to make any changes, when they connect remotely.
To turn off this feature of UAC you need to add LocalAccountTokenFilterPolicy=1 to Register.
@alex & BryanB . I also confirmed in my home lab and it is correct
Local administrator accounts other than the built-in Administrator account may not have rights to manage a server remotely, even if remote management is enabled. The Remote User Account Control (UAC) LocalAccountTokenFilterPolicy registry setting must be configured to allow local accounts of the Administrators group other than the built-in administrator account to remotely manage the server.
This explains in detail nicely
https://technet.microsoft.com/en-us/library/hh921475(v=ws.11).aspx
Hi, the whole thing is going nicely here and ofcourse every one is sharing data, that’s truly good, keep up writing.|