Which cmdlet should you use?

Your network contains one Active Directory domain named contoso.com. The forest functional level
is Windows Server 2012. All servers run Windows Server 2012 R2. All client computers run Windows
8.1.
The domain contains 10 domain controllers and a read-only domain controller (RODC) named
RODC01. All domain controllers and RODCs are hosted on a Hyper-V host that runs Windows Server
2012 R2.
You need to identify which security principals are authorized to have their password cached on
RODC1.
Which cmdlet should you use?

Your network contains one Active Directory domain named contoso.com. The forest functional level
is Windows Server 2012. All servers run Windows Server 2012 R2. All client computers run Windows
8.1.
The domain contains 10 domain controllers and a read-only domain controller (RODC) named
RODC01. All domain controllers and RODCs are hosted on a Hyper-V host that runs Windows Server
2012 R2.
You need to identify which security principals are authorized to have their password cached on
RODC1.
Which cmdlet should you use?

A.
Get-ADGroupMember

B.
Get-ADDomainControllerPasswordReplicationPolicy

C.
Get-ADDomainControllerPasswordReplicationPolicyUsage

D.
Get-ADDomain

E.
Get-ADOptionalFeature

F.
Get-ADAccountAuthorizationGroup

← Previous question

Next question →

Leave a Reply 2

LWG

B and C are very similar – both retrieve similar info.

Get-ADDomainControllerPasswordReplicationPolicy
https://technet.microsoft.com/en-us/library/ee617207.aspx

Get-ADDomainControllerPasswordReplicationPolicyUsage
https://technet.microsoft.com/en-us/library/ee617194.aspx

I’ll go with B – shows all accounts that can have their passwords cached as opposed to accounts that have already been cached

Reply

Calin

http://www.certifychat.com/70-411-a/8-rodc-questions-review.html
this set of questions

Reply