Your network contains an Active Directory domain named contoso.com.
The corporate security policy states that when new user accounts, computer accounts, and contacts are added to an organizational unit (OU) named Secure, the
addition must be audited.
You need to recommend an auditing solution to meet the security policy.
What should you include in the recommendation? (Each answer presents part of the solution. Choose all that apply.)
A.
From the Default Domain Controllers Policy, enable the Audit directory services setting.
B.
Create a new Group Policy object (GPO) that is linked to the Secure OU, and then modify the Audit directory services setting.
C.
From the Secure OU, modify the Auditing settings.
D.
From the Default Domain Controllers Policy, enable the Audit object access setting.
E.
From the Secure OU, modify the Permissions settings.
F.
Create a new Group Policy object (GPO) that is linked to the Secure OU, and then modify the Audit object access setting.
Explanation:
Need to Check
Audit directory service access is the only way to track changes to OUs and GPOs.Then we link the create a new GPO and customize our audit settings, then link it to the OU.
To check Ans
From the Default Domain Controllers Policy, enable the Audit directory services setting
Create a new Group Policy object (GPO) that is linked to the Secure OU, and then
modify the Audit directory services setting.
Incorrect, A&C.
https://technet.microsoft.com/en-ca/library/dd277403.aspx
0
0
A&C, see
http://www.aiotestking.com/microsoft/what-should-you-include-in-the-recommendation-257/
http://www.aiotestking.com/microsoft/what-should-you-include-in-the-recommendation-382/
0
0
We need to modify the Auditing settings on the mentioned Organisational Unit.
0
0