Which two actions should you take? (Each correct answer presents part of the solution

You are the network administrator for your company. The network consists of a single Active Directory domain. The company’s written security policy requires that computers in a file server role must have a minimum file size for event log settings. In the past, logged events were lost because the size of the event log files was too small. You want to ensure that the event log files are large enough to hold history. You also want the security event log to be cleared manually to ensure that no security information is lost. The application log must clear events as needed.

You create a security template named Fileserver.inf to meet the requirements. You need to test each file server and take the appropriate corrective action if needed. You audit a file server by using Fileserver.inf and receive the results shown in the exhibit.

You want to make only the changes that are required to meet the requirements.

Which two actions should you take? (Each correct answer presents part of the solution. Choose two.)

Exhibit:

You are the network administrator for your company. The network consists of a single Active Directory domain. The company’s written security policy requires that computers in a file server role must have a minimum file size for event log settings. In the past, logged events were lost because the size of the event log files was too small. You want to ensure that the event log files are large enough to hold history. You also want the security event log to be cleared manually to ensure that no security information is lost. The application log must clear events as needed.

You create a security template named Fileserver.inf to meet the requirements. You need to test each file server and take the appropriate corrective action if needed. You audit a file server by using Fileserver.inf and receive the results shown in the exhibit.

You want to make only the changes that are required to meet the requirements.

Which two actions should you take? (Each correct answer presents part of the solution. Choose two.)

Exhibit:

A.
Correct the Retention method for security log setting on the file server.

B.
Correct the Maximum application log size setting on the file server.

C.
Correct the Retention method for system log setting for the file server.

D.
Correct the Retention method for application log setting on the file server.

E.
Correct the Maximum security log size setting on the file server.

F.
Correct the Maximum system log size setting on the file server.

Explanation:
The Event Log security area defines attributes related to the application, security,

“A Composite Solution With Just One Click” – Certification Guaranteed 112 Microsoft 70-293 Exam

and system logs in the Event Viewer console for computers in a site, domain, or OU. The attributes ar* maximum log size, access rights for each log, and retention settings and methods. Event log size and log wrapping should be defined to match your business and security requirements. In this particular case you should be correcting the maximum security log size setting and the retention method for the security log setting on the file server so as to comply with the stated requirements.

Reference:

David Watts & Will Willis, Windows Server 2003 Active Directory Infrastructure Exam Cram 2 (Exam 70-294): Que Publishing, Indianapolis, 2004, Chapter 10

Jill Spealman, Kurt Hudson & Melissa Craft, MCSE Self-Paced Training Kit (Exam 70-294); Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure, Microsoft Press, Redmond, Washington, 2004, p. 13:6



Leave a Reply 0

Your email address will not be published. Required fields are marked *