You work as the network administrator at ABC.com. The ABC.com network has a domain named ABC.com. ABC.com has its headquarters located in London and branch office located in Paris. All servers on the ABC.com network have Windows Server 2008 R2 installed and all workstations have Windows 7 installed.
During the course of the day you receive instruction from ABC.com to create an organizational unit named Products hosting two global groups named KingSales and KingSecurity. ABC.com has recently additionally asked you to apply desktop restrictions to the KingSecurity group whilst ensuring that the KingSales group does not have the desktop restrictions applied. You started by creating a GPO named KingLockdown and linked it to the Products OU.
Which of the following actions should you take?
A.
You should consider having the Allow Apply Group Policy permission set for the Local domain users on KingLockdown GPO.
B.
You should consider having the Allow Apply Group Policy permission set for the Authenticated Users on KingLockdown GPO.
C.
You should consider having the Deny Apply Group Policy permission set for the KingSales on the KingLockdown GPO.
D.
You should consider having the Deny Apply Group Policy permission set for the KingSecurity Executives on the KingLockdown GPO.