Which of the following can be installed for ensuring that the domain is secure in the remote
locations?
A.
Read-Only domain controller (RODC)
B.
Microsoft Baseline Security Analyzer
C.
Windows Software Update Services
D.
DNS dynamic update
Explanation:
Read-only Domain Controller (RODC) is a domain controller that hosts the read-only partition of the
Active Directory database. RODC was developed by Microsoft typically to be deployed in a branch
office environment. RODC is a good option to enhance security by placing it in a
location where physical security is poor. RODC can also be placed at locations having relatively few
users and a poor network bandwidth to the main site. As only the read-only partition of the Active
Directory database is hosted by RODC, a little local IT knowledge is required to maintain it.
Windows Server 2008. It provides functionality to a server to run as a Windows Update server in a
Windows network environment. Administrators can configure a WSUS server as the only server to
download updates from Windows site, and configure other computers on the network to use the
server as the source of update files. This will save lots of bandwidth as each computer will not
download updates individually. WSUS 3.0 SP1 is the only version of WSUS that can be installed on
Windows Server 2008. Earlier versions of WSUS cannot be installed on a server running Windows
Server 2008.and dynamically updating their resource records with a DNS server whenever any modification or
change has been taken place. It is used to update the DNS client computers with the reflecting
changes.
determine security state by assessing missing security updates and less-secure security settings
within Microsoft Windows, Windows components such as Internet Explorer, IIS web server, and
products Microsoft SQL Server, and Microsoft Office macro settings. Microsoft Baseline Security
Analyzer (MBSA) includes a graphical and command line interface that can perform local or remote
scans of Windows systems.
A