Your network contains an Active Directory domain named contoso.com. All domain controllers and member servers run Windows Server 2008. All client computers run Windows 7. From a client computer, you create an audit policy by using the Advanced Audit Policy Configuration settings in the Default Domain Policy Group Policy object (GPO). You discover that the audit policy is not applied to the member servers. The audit policy is applied to the client computers. You need to ensure that the audit policy is applied to all member servers and all client computers. What should you do?
A.
Add a WMI filter to the Default Domain Policy GPO.
B.
Modify the security settings of the Default Domain Policy GPO.
C.
Configure a startup script that runs auditpol.exe on the member servers.
D.
Configure a startup script that runs auditpol.exe on the domain controllers.
Why C
Poorly explained answer on the web
Advanced Audit Policy settings can only be applied to Windows 7 and Server 2008 R2 computers using Group Policy. The same policy settings exist in Windows Vista and Server 2008, but they must be enabled using startup scripts. Check out the auditing functionality FAQ here:
http://technet.microsoft.com/en-us/library/ff182311(v=ws.10).aspx#BKMK_12