Your network contains an Active Directory domain named contoso.com. The domain contains a file server
named Server1. The File Server Resource Manager role service is installed on Server1. All servers run
Windows Server 2012 R2.
A Group Policy object (GPO) named GPO1 is linked to the organizational unit (OU) that contains Server1. The
following graphic shows the configured settings in GPO1.
Server1 contains a folder named Folder1. Folder1 is shared as Share1.
You attempt to configure access-denied assistance on Server1, but the Enable access-denied assistance
option cannot be selected from File Server Resource Manager.
You need to ensure that you can configure access-denied assistance on Server1 manually by using File Server
Resource Manager.
Which two actions should you perform?
A.
Set the Enable access-denied assistance on client for all file types policy setting to Disabled for GPO1.
B.
Set the Customize message for Access Denied errors policy setting to Not Configured for GPO1.
C.
Set the Enable access-denied assistance on client for all file types policy setting to Enabled for GPO1.
D.
Set the Customize message for Access Denied errors policy setting to Enabled for GPO1.
Explanation:
It doesn’t look right. I’d go for B & C
You can configure Administrative Template policy settings to one of three states: Not Configured, Enabled, and Disabled. Not Configured is the default state for all policy settings. Policy settings set to Not Configured do not affect users or computers. Enabling an Administrative Template policy setting activates the policy setting. When Enabled, the action described in the title of the policy setting applies to the user or computer. When Disabled, the opposite action described in the title of the policy setting applies to the user or computer. Usually Not Configured and Disabled policy settings produce the same results. The difference is that Not Configured policy settings do not apply to the user, but Disabled policy settings apply to a user.
https://technet.microsoft.com/en-us/library/dn789184(v=ws.11).aspx
As Customize message for Access Denied errors policy is marked as “Disabled” it applies to a user. By changing this to Not Configured, it would give us ability to manually (as per scenario) enable it in FSRM.
(C) is correct.
4
0
I agree. The question states to configure it within FSRM. Doing B and C will allow us to do that. C and D are configuring it through GPO.
Answer B and C
4
0
B&C
5
0
Actually, just B….
C is a client side config nothing to do with the file server…
0
8
C is required for it to work.
4
0