What should you do next?

Your company has an Active Directory domain that has an organizational unit named Sales. The Sales organizational unit contains two global security groups named sales managers and sales executives. You need to apply desktop restrictions to the sales executives group. You must not apply these desktop restrictions to the sales managers group. You create a GPO named DesktopLockdown and link it to the Sales organizational unit.
What should you do next?

Your company has an Active Directory domain that has an organizational unit named Sales. The Sales organizational unit contains two global security groups named sales managers and sales executives. You need to apply desktop restrictions to the sales executives group. You must not apply these desktop restrictions to the sales managers group. You create a GPO named DesktopLockdown and link it to the Sales organizational unit.
What should you do next?

A.
Configure the Deny Apply Group Policy permission for the sales managers on the DesktopLockdown GPO.

B.
Configure the Deny Apply Group Policy permission for the sales executives on the DesktopLockdown GPO.

C.
Configure the Deny Apply Group Policy permission for Authenticated Users on the DesktopLockdown GPO.

D.
Configure the Allow Apply Group Policy permission for Authenticated Users on the DesktopLockdown GPO.



Leave a Reply 1

Your email address will not be published. Required fields are marked *


Puddin

Puddin

doesnt make sense when the goal was for only executives and not manager to get the deny GPO.