Your network contains an Active Directory domain named contoso.com.
The corporate security policy states that when new user accounts, computer accounts, and
contacts are added to an organizational unit (OU) named Secure, the addition must be
audited.
You need to recommend an auditing solution to meet the security policy.
What should you include in the recommendation? (Each answer presents part of the
solution. Choose all that apply.)
A.
From the Default Domain Controllers Policy, enable the Audit directory services setting.
B.
Create a new Group Policy object (GPO) that is linked to the Secure OU, and then modify
the Audit directory services setting.
C.
From the Secure OU, modify the Auditing settings.
D.
From the Default Domain Controllers Policy, enable the Audit object access setting.
E.
From the Secure OU, modify the Permissions settings.
F.
Create a new Group Policy object (GPO) that is linked to the Secure OU, and then modify
the Audit object access setting.
Explanation:
Creating a New Object: Resulting in multiple Event ID 5137 entries containing all attributes
provided explicitly by the security principal that invoked the operation (but not those
automatically generated by the system). Note that similar information also gets recorded if
audit of User Account Management or Directory Service Access is enabled.