Your network contains an Active Directory forest. The functional level of the forest is Windows Server 2008 R2. Your company’s corporate security policy states that the password for each user account must be changed at least every 45 days. You have a user account named Service1. Service1 is used by a network application named Application1. Every 45 days, Application1 fails. After resetting the password for Service1, Application1 runs properly.

You need to resolve the issue that causes Application1 to fail. The solution must adhere to the corporate security policy.

What should you do?

Your company has file servers located in an organizational unit named Payroll. The file servers contain payroll files located in a folder named Payroll.

You create a GPO. You need to track which employees access the Payroll files on the file servers.

What should you do?

You need to ensure that users who enter three successive invalid passwords within 5 minutes are locked out for 5 minutes.

Which three actions should you perform? (Each correct answer presents part of the solution. Choose three.)

Your company has an Active Directory forest. The forest includes organizational units corresponding to the following four locations:

* London
* Chicago
* New York
* Madrid

Each location has a child organizational unit named Sales. The Sales organizational unit contains all the users and computers from the sales department. The offices in London, Chicago, and New York are connected by T1 connections. The office in Madrid is connected by a 256-Kbps ISDN connection.

You need to install an application on all the computers in the sales department.

Which two actions should you perform? (Each correct answer presents part of the solution. Choose two.)

Your company has an Active Directory domain and an organizational unit. The organizational unit is named Web. You configure and test new security settings for Internet Information Service (IIS) servers on a server named IISServerA.

You need to deploy the new security settings only on the IIS servers that are members of the Web organizational unit.

What should you do?

All consultants belong to a global group named TempWorkers. You place three file servers in a new organizational unit named SecureServers. The three file servers contain confidential data located in shared folders.

You need to record any failed attempts made by the consultants to access the confidential data.

Which two actions should you perform? (Each correct answer presents part of the solution. Choose two.)

Your company has an Active Directory forest that contains client computers that run Windows Vista and Windows XP.

You need to ensure that users are able to install approved application updates on their computers.

Which two actions should you perform? (Each correct answer presents part of the solution. Choose two.)

Your company has an Active Directory domain. All consultants belong to a global group named TempWorkers. The TempWorkers group is not nested in any other groups. You move the computer objects of three file servers to a new organizational unit named SecureServers. These file servers contain only confidential data in shared folders.

You need to prevent members of the TempWorkers group from accessing the confidential data on the file servers.
You must achieve this goal without affecting access to other domain resources.

What should you do?

Your company has an Active Directory forest. The company has branch offices in three locations. Each location has an organizational unit.

You need to ensure that the branch office administrators are able to create and apply GPOs only to their respective organizational units.

Which two actions should you perform? (Each correct answer presents part of the solution. Choose two.)

Your company has an Active Directory domain that has an organizational unit named Sales. The Sales organizational unit contains two global security groups named sales managers and sales executives.

You need to apply desktop restrictions to the sales executives group.
You must not apply these desktop restrictions to the sales managers group. You create a GPO named DesktopLockdown and link it to the Sales organizational unit.

What should you do next?