A company has an Active Directory Domain Services (AD DS) domain. All client computers run Windows 8.
Client computers use Windows BitLocker Drive Encryption with a Trusted Platform Module (TPM) chip.
You need to create a Group Policy object (GPO) that will secure the TPM owner information.
Which policy setting should you configure?
A.
Enable the Turn on TPM backup to Active Directory Domain Services policy setting.
B.
Enable the Configure TPM platform validation profile policy setting.
C.
Enable the Configure the level of TPM usage authorization information available to the registry policy
setting.
D.
Set the Configure the level of TPM owner authorization information available to operating system policy
setting to Full.
Explanation:
http://technet.microsoft.com/en-us/library/jj679889.aspx