What should you do?

Your company has a single Active Directory domain. You have 30 database servers that run Windows Server
2008 R2.
The computer accounts for the database servers are stored in an organizational unit (OU) named Data. The
user accounts for the database administrators are stored in an OU named Admin. The database administrators
are members of a global group named D_Admins.
You must allow the database administrators to perform administrative tasks on the database servers. You must
prevent the database administrators from performingadministrative tasks on other servers.
What should you do?

Your company has a single Active Directory domain. You have 30 database servers that run Windows Server
2008 R2.
The computer accounts for the database servers are stored in an organizational unit (OU) named Data. The
user accounts for the database administrators are stored in an OU named Admin. The database administrators
are members of a global group named D_Admins.
You must allow the database administrators to perform administrative tasks on the database servers. You must
prevent the database administrators from performingadministrative tasks on other servers.
What should you do?

A.
Deploy a Group Policy to the Data OU.

B.
Deploy a Group Policy to the Admin OU.

C.
Add D_Admins to the Domain Admins global group.

D.
Add D_Admins to the Server Operators built-in local group.

Explanation:
Domain Admins group and Server Operators group havetoo much right in the current situation.
Security settings of GPO need to be configured on the OU containing the database servers (i.e. Data OU) in the
current situation.

Show Hint

Leave a Reply 0

Your email address will not be published. Required fields are marked *