Your network contains an Active Directory domain named contoso.com. The domain contains client computers
that run Either Windows XP, Windows 7, or Windows 8.
Network Policy Server (NPS) is deployed to the domain.
You plan to create a system health validator (SHV).
You need to identify which policy settings can be applied to all of the computers.
Which three policy settings should you identify? (Each correct answer presents part of the solution. Choose
three.)
A.
Automatic updating is enabled.
B.
A firewall is enabled for all network connections.
C.
An antispyware application is on.
D.
Antispyware is up to date.
E.
Antivirus is up to date.
Explanation:
You can only choose An antispyware application is on if the client computer is running Windows Vista® or
Windows® 7. The WSHA on NAP client computers running Windows XP SP3 does not monitor the status of
antispyware applications.
http://technet.microsoft.com/en-us/library/cc731260.aspx
I thikn the correct answers are A, B and E.
Here:
“You can only choose An antispyware application is on if the client computer is running Windows Vista® or Windows® 7. The WSHA on NAP client computers running Windows XP SP3 does not monitor the status of antispyware applications.
The antispyware application is responsible for acquiring and installing spyware definitions. If the client computer is evaluated as noncompliant because spyware definitions are out of date, Windows Security Center will not automatically download and install an update.” from http://msdn.microsoft.com/en-us/library/cc731260.aspx
I think ABC are correct. All options are somewhat available in an SHV, but D & E can’t be enabled without other policies being enabled – https://technet.microsoft.com/en-au/library/dd182017.aspx.
A B E are the correct answers. You can not test for an antispyware application status.
Have you looked at the link I posted – a Microsoft TechNet article? Quite clearly Antispyware application status is available. As for this question, you can’t test AV is up to date unless you check that it is on first. And you can test that Antispyware is on, so I go with that to be honest.
Alessandro is right.
the question states “The domain contains client computers
that run Either Windows XP, Windows 7, or Windows 8”
wsha will not monitor the antispyware status of windows xp.
You can only choose An antispyware application is on if the client computer is running Windows Vista® or Windows® 7. The WSHA on NAP client computers running Windows XP SP3 does not monitor the status of antispyware applications.
https://technet.microsoft.com/en-us/library/cc731260(v=ws.10).aspx