Drag and Drop Question
Your network contains an Active Directory domain named contoso.com.
All file servers in the domain run Windows Server 2012 R2.
The computer accounts of the file servers are in an organizational unit (OU) named OU1.
A Group Policy object (GPO) named GPO1 is linked to OU1.
You plan to modify the NTFS permissions for many folders on the file servers by using central
access policies.
You need to identify any users who will be denied access to resources that they can currently
access once the new permissions are implemented.
In which order should you Perform the five actions?
Answer: 
Explanation:
I hate steps like this because you can create a rule first and then the policy, or you can create the
policy and create the rule during the creation of the policy.
Either way I’m going to go with creating the policy first, and then the rule.
I hate steps like this because you can create a rule first and then the policy, or you can create the
policy and create the rule during the creation of the policy.
Either way I’m going to go with creating the policy first, and then the rule.
0
0
Agree with the provided answer.
As for the explanation it’s not entirely correct since the correct order of processing things is based on this: http://blogs.technet.com/b/canitpro/archive/2013/05/07/step-by-step-protecting-your-information-with-dynamic-access-control.aspx.
0
0