HOTSPOT
You have a SharePoint Server 2010 Service Pack l (SP1) server farm named Farm1. Farm1 contains
two web applications named Internal and External. You create a group named ExternalUsers. You
add all of the external users to the ExternalUsers group. You need to prevent the external users from
accessing all of the content n the internal web application. The solution must ensure that internal
users can access the content in Internal. What should you configure? To answer, select the
appropriate option in the answer area.
Answer: 
Explanation:
Add users to a permission policy
You might want to add users to a permission policy to ensure that all users are accessing content
with the same set of permissions.
To add users to a permission policy
Verify that you have the following administrative credentials:
You must be a member of the Farm Administrators group on the computer that is running the
SharePoint Central Administration Web site.
On the Central Administration Web site, in the Application Management section, click Manage web
applications.
Click to highlight the line for the Web application whose permission policy you want to manage.
In the Policy group of the ribbon, click User Policy.
In the Policy for Web Application dialog box, select the check box next to the user or group that you
want to manage, and then click Add Users.
In the Add Users dialog box, in the Zone list, click the zone to which you want the permission policy
to apply.
In the Choose Users section, type the user names, group names, or e-mail addresses that you want
to add to the permission policy. You can also click the applicable icon to check a name or browse for
names.
In the Choose Permissions section, select the permissions that you want the users to have.
In the Choose System Settings section, check Account operates as System if you want to specify
whether a user account should be displayed as SHAREPOINT\System instead of the actual accounts
that perform specific tasks within the SharePoint environment.
Click Finish.
