You work as DBA at AIOTestKing.com. You administer a SQL Server 2005 computer named AIOTestKingA. You create a security template that disables unnecessary services. The template is appropriate only for AIOTestKingA. You need to ensure that the security template is applied to AIOTestKingA. Your solution must ensure that the template automatically overrides any manual configuration changes made by other administrators within an hour. What should you do?
A.
Configure Task Scheduler to import the security template by using Secedit.exe.
Configure the task to run every half hour.
B.
Configure Task Scheduler to run the Microsoft Baseline Security Analyzer tool every half hour.
C.
Use the Local Security Policy editor to import the security template into the Local Security Policy object.
D.
Use the SQL Server Surface Area Configuration tool to import the security template.
Explanation:
The Baseline Security Analyzer tool only analyzes the current security settings on a computer. If you import the template with the Local Security Policy editor it will not guarantee that no modifications are done to the computer after the import. SQL Surface Area Configuration tool only implies to SQL specific settings.
By importing the template every 30 minutes with Secedit.exe and a Scheduled task you ensure that any modifications will be undone within 30 minutes.