Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service Pack 2 (SP2).
You enable auditing for failed logon attempts on all domain controllers.
You need to ensure that a record of failed logon attempts is retained for 90 days on all domain controllers.
What should you do?
A.
From the Security Templates snap-in, open the hisecdc template. Modify the Retain System Log setting.
B.
From the Security Templates snap-in, open the securedc template. Modify the Retain Security Log setting.
C.
Open the Default Domain Policy. Modify the Retain System Log setting.
D.
Open the Default Domain Controller Policy. Modify the Retain Security Log setting.
Explanation:
TestInside Microsoft 70-290