Your network contains an Active Directory domain named contoso.com.
The domain contains a server named Server1 that runs Windows Server 2016.
The services on Server1 are shown in the following output:
Server1 has AppLocker rules configured as shown in follow:
Rule1 and Rule2 are configured as shown in follow:
Which of the following statements are true? Choose Three.
A.
On Server1, User1 can run D:\\Folder2\\App1.exe : Yes
B.
On Server1, User1 can run D:\\Folder2\\App1.exe : No
C.
On Server1, User1 can run D:\\Folder1\\Program1.exe : Yes
D.
On Server1, User1 can run D:\\Folder1\\Program1.exe : No
E.
If Program1 is copied from D:\\Folder1 to D:\\Folder2, User1 can run Program1.exe on Server1 : Yes
F.
If Program1 is copied from D:\\Folder1 to D:\\Folder2, User1 can run Program1.exe on Server1 : No
Explanation:
https://docs.microsoft.com/en-us/windows/device-security/applocker/configure-the-application-identity-service
The Application Identity service determines and verifies the identity of an app. Stopping this service will
prevent AppLocker policies from being enforced.
In this question, Server1’s Application Identity service is stopped, therefore, no more enforcement on
AppLocker rules, everyone could run everything on Server1.