PrepAway - Latest Free Exam Questions & Answers

Which of the following action should be considered to populate the RODC server with non-administrative account

You are an administrator at ABC.com. Company has a RODC (read-only domain controller) server at a remote
location. The remote location doesn’t have proper physical security.
You need to activate nonadministrative accounts passwords on that RODC server.
Which of the following action should be considered to populate the RODC server with non-administrative
accounts passwords?

PrepAway - Latest Free Exam Questions & Answers

A.
Delete all administrative accounts from the RODC’s group

B.
Configure the permission to Deny on Receive for administrative accounts on the security tab for Group
Policy Object (GPO)

C.
Configure the administrative accounts to be addedin the Domain RODC Password Replication Denied
group

D.
Add a new GPO and enable Account Lockout settings. Link it to the remote RODC server and on the
security tab on GPO, check the Read Allow and the Apply group policy permissions for the administrators.

E.
None of the above

One Comment on “Which of the following action should be considered to populate the RODC server with non-administrative account

  1. Dan says:

    Correct answer is E.

    Administrative accounts are already included in the RODC Password Replication Denied group. Accounts requiring password caching on an RODC must be explicitly added to the RODC Password Replication Allowed group.




    0



    0

Leave a Reply