Your network contains an Active Directory domain named adatum.com.
You need to audit changes to the files in the SYSVOL shares on all of the domain controllers. The solution must
minimize the amount of SYSVOL replication traffic caused by the audit.
Which two settings should you configure? (Each correct answer presents part of the solution. Choose two.)
A.
Audit Policy\Audit system events
B.
Advanced Audit Policy Configuration\DS Access
C.
Advanced Audit Policy Configuration\Global Object Access Auditing
D.
Audit Policy\Audit object access
E.
Audit Policy\Audit directory service access
F.
Advanced Audit Policy Configuration\Object Access
Somebody explain please
0
0
There is some explanation here
http://www.aiotestking.com/microsoft/which-two-settings-should-you-configure-5/
0
0
Goog link, C and F are correct answers.
0
0
B, F
0
0
it is not possible to combine “audit Policy” and “Advanced Audit Policy Configuration”
0
0
C,F
0
0
D&F
0
0
C&F
0
0
B&F
0
0
I think, that the D&F are correct!
Enable auditing of changes to file system
Open/create a GPO which applies to the domain controllers
Navigate to Computer Configuration/Policies/Windows Settings/Advanced Audit Policy Configuration/Audit Policies/Object Access
Enable Audit File System for Success
Set auditing on SYSVOL
Navigate to the %systemroot%\SYSVOL folder
Open the properties of the domain folder and navigate to the Auditing tab
Create a SACL entry which audits Everyone, applies to This folder, subfolders and files for Successful accesses of type Create files / Write data, Create folders / append data, Delete subfolders and files, Delete, and Change permissions.
0
0
D&F Right
0
0
D&F is definitely wrong. Audit Policy and Advanced Audit Policy Configuration cannot be combined. Only Advanced Audit policies would apply.
https://technet.microsoft.com/en-us/library/ff182311(v=ws.10)#BKMK_3
“Basic audit policy is not compatible with advanced audit policy settings that are applied by using Group Policy in Windows Server 2008 R2 and Windows 7. This is because as soon as advanced audit policy settings are applied by using Group Policy, the current computer’s audit policy settings are cleared before the resulting advanced audit policy settings are applied. After you apply advanced audit policy settings by using Group Policy, you can only reliably set system audit policy for the computer by using the advanced audit policy settings.”
0
0