What should you recommend? (More than one answer choice may achieve the goal

A company has an Active Directory Domain Services (AD DS) domain. All servers run Windows Server 2008 R2.

The company plans to add a large number of members to the Account Operators group. You create a new organizational unit (OU), move the Account Operators group to the new OU, and delegate control of the OU to a server operator.

The server operator is unable make changes to the Account Operators group.

You need to ensure that the server operator can manage the Account Operators group.

What should you recommend? (More than one answer choice may achieve the goal. Select the BEST answer.)

A company has an Active Directory Domain Services (AD DS) domain. All servers run Windows Server 2008 R2.

The company plans to add a large number of members to the Account Operators group. You create a new organizational unit (OU), move the Account Operators group to the new OU, and delegate control of the OU to a server operator.

The server operator is unable make changes to the Account Operators group.

You need to ensure that the server operator can manage the Account Operators group.

What should you recommend? (More than one answer choice may achieve the goal. Select the BEST answer.)

A.
Set the dsHeuristic flag to include the Account Operators group in the AdminSDHolder protection.

B.
Make the server operator a Domain Administrator.

C.
Manually alter the access control lists (ACLs) on the Account Operators group to allow the server operator control.

D.
Set the dsHeuristic flag to exclude the Account Operators group from the AdminSDHolder protection.



Leave a Reply 6

Your email address will not be published. Required fields are marked *