You manage a network that includes Windows 10 Enterprise computers. All of the computers on the network are m

embers of an Active Directory domain.

The company recently proposed a new security policy that prevents users from synchronizing applications settings, browsing history, favorites, and passwords from the computers with their Microsoft accounts.

You need

to enforce these security policy requirements on the computers.

What should you do?

A. On the Group Policy Object, configure the Accounts: Block Microsoft accounts Group Policy setting to Users can-t add Microsoft accounts.

B. On the Group Policy Object,

configure the Accounts: Block Microsoft accounts Group Policy setting to Users can-t add or log on with Microsoft accounts.

C. From each computer, navigate to Change Sync Settings and set the Sync Your Settings options for Apps, Browser, and Passwords to

Off.

D. From each computer, navigate to Change Sync Settings and set the Sync Your Settings option to Off.

Explanation:

The computers are members of a domain so the users should be using domain user accounts. We need to block the use of Microsof

t accounts.

We could use the Users can-t add Microsoft accounts setting which would mean that users will not be able to create new Microsoft accounts on a computer, switch a local account to a Microsoft account, or connect a domain account to a Microsoft a

ccount.

Alternatively, we can also deny the ability to log on to a domain computer with a Microsoft account (and sync computer settings) by using the Users can-t add or log on with Microsoft accounts. This will ensure that the company policy is enforced.

References:

https://technet.microsoft.com/en-us/library/jj966262.aspx

Topic 8, Manage apps