Your network contains an Active Directory forest named contoso.com. The forest contains two domains named
contoso.com and litwareinc.com.
Your company recently deployed DirectAccess for the members of a group named DA_Computers. All client
computers are members of DA_Computers.You discover that DirectAccess clients can access the resources located in the contoso.com domain only. The
clients can access the resources in the litwareinc.com domain by using an L2TP VPN connection to the
network.
You need to ensure that the DirectAccess clients can access the resources in the litwareinc.com domain.
What should you do?
A.
From a Group Policy object (GPO), modify the Name Resolution Policy Table (NRPT).
B.
From the properties of the servers in litwareinc.com, configure the delegation settings.
C.
On an external DNS server, create a zone delegation for litwareinc.com.
D.
Add the servers in litwareinc.com to the RAS and IAS Servers group.
Explanation:
https://blogs.technet.microsoft.com/tomshinder/2010/04/01/directaccess-client-location-awareness-nrpt-nameresolution/