Which two actions should you perform?

Your network contains an Active Directory domain named contoso.com. The domain contains a file server
named Server1 and a domain controller named DC1. All servers run Windows Server 2012 R2.
A Group Policy object (GPO) named GPO1 is linked tothe domain.
Server1 contains a folder named Folder1. Folder1 isshared as Share1.
You need to ensure that authenticated users can request assistance when they are denied access to the
resources on Server1.
Which two actions should you perform? (Each correctanswer presents part of the solution.
Choose two.)

Your network contains an Active Directory domain named contoso.com. The domain contains a file server
named Server1 and a domain controller named DC1. All servers run Windows Server 2012 R2.
A Group Policy object (GPO) named GPO1 is linked tothe domain.
Server1 contains a folder named Folder1. Folder1 isshared as Share1.
You need to ensure that authenticated users can request assistance when they are denied access to the
resources on Server1.
Which two actions should you perform? (Each correctanswer presents part of the solution.
Choose two.)

A.
Enable the Enable access-denied assistance on client for all file types policy setting for GPO1.

B.
Configure the Customize message for Access Deniederrors policy setting of GPO1.

C.
Install the File Server Resource Manager role service on DC1.

D.
Install the File Server Resource Manager role service on Server1.

E.
Assign the Read Attributes NTFS permission on Folder1 to the Authenticated Users group.

Explanation:
http://technet.microsoft.com/en-us/library/hh831402.aspx#BKMK_1
http://4sysops.com/archives/access-denied-assistance-in-windows-server-2012/
I think that it will rather be “Configure the Customize message for Access Denied errors policy setting of GPO1”
instead of “Enable the Enable access-denied assistance on client for all file types policy setting forGPO1”.
When custom message is not set, by default the standard Access Denied message appears which doesn’t
provide any of the functionality controlled by thispolicy setting (no links, so users can’t request access).
A or B? and D

Show Hint

Leave a Reply 7

Your email address will not be published. Required fields are marked *

Ionut

Ionut

I think it is A and B as you will have to set up those two policies in GP in order to have access-denied assistance and a custom message.
The other way would be to use File Server resource manager to accomplish the same thing, but the answers available here will not give you the full procedure to enable this using File Server Resource Manager.

From the technet website:
After you configure the access-denied assistance, you must enable it for all file types by using Group Policy.

Reply

PK

PK

Customize message for Access Denied errors should be “not configured”.

A and D

Reply

ivan

ivan

agree with Ionut, answer should be A and B
2 way to enable Access-Deny-assistance, 1) by GP, 2)by FSRM
D.Install FSRM but no options to config Access-Denied Assistance (in FSRM right click Configure Options,in Access-Denied Assistance tab to select the Enable access-denied assistance check box)
http://technet.microsoft.com/en-us/library/hh831402.aspx#BKMK_1

Reply

Geezer32

Geezer32

This site is a joke, EVERY question has multiple copies of the same question with different answers given.

Reply