You need to choose the appropriate predefined security template to apply to the domain controllers

You are the network administrator for your company. The network consists of a single Active Directory domain. All domain controllers run Windows Server 2003. All client computers run Windows XP Professional. The company has legacy applications that run on UNIX servers.

The legacy applications use the LDAP protocol to query Active Directory for employee information. The domain controllers are currently configured with the default security settings. You need to configure enhanced security for the domain controllers. In particular, you want to configure stronger password settings, audit settings, and lockout settings.

You want to minimize interference with the proper functioning of the legacy applications. You decide to use the predefined security templates.

You need to choose the appropriate predefined security template to apply to the domain controllers.

What should you do?

You are the network administrator for your company. The network consists of a single Active Directory domain. All domain controllers run Windows Server 2003. All client computers run Windows XP Professional. The company has legacy applications that run on UNIX servers.

The legacy applications use the LDAP protocol to query Active Directory for employee information. The domain controllers are currently configured with the default security settings. You need to configure enhanced security for the domain controllers. In particular, you want to configure stronger password settings, audit settings, and lockout settings.

You want to minimize interference with the proper functioning of the legacy applications. You decide to use the predefined security templates.

You need to choose the appropriate predefined security template to apply to the domain controllers.

What should you do?

A.
Apply the Rootsec.inf template to the domain controllers.

B.
Apply the DC security.inf template to the domain controllers.

C.
Apply the Setup security.inf template to the domain controllers.

D.
Apply the Securedc.inf template to the domain controllers.

Explanation:
Securedc.inf contains policy settings that increase the security on a domain controller to a level that remains compatible with most functions and applications. The template includes more stringent account policies, enhanced auditing policies and security options, and increased restrictions for anonymous users and LanManager systems.

Reference:

Craig Zacker, MCSE Self-Paced Training Kit (Exam 70-293): Planning and Maintaining a Microsoft Windows Server 2003 Network Infrastructure, Microsoft Press, Redmond, Washington, 2004, Chapter 10

Dan Holme, and Orin Thomas, MCSA/MCSE Self-Paced Training Kit: Upgrading Your Certification to Microsoft Windows Server 2003: Managing, Maintaining, Planning, and Implementing a Microsoft Windows Server 2003 Environment: Exams 70-292 and 70-296, Microsoft Press, Redmond, Washington, 2004, Chapter 9



Leave a Reply 0

Your email address will not be published. Required fields are marked *