You need to perform a non-authoritative restore of the domain controller by using an existing backup file
You need to configure your partner company’s domain to use the approved set of administrative templates
You need to deploy the new security settings only on the IISservers that are membersof the Web organizational unit