You work as a network administrator at Bilco Engineering, Inc. You have received
instruction recently to start the design of a permission structure for registry objects
that enables the legacy application at the retail offices to run. You are required to
make your design solution comply with the written security policy.
What should you do?
A. A GPO should be created and link the GPO to the OUs that contain computer accounts
for computers that run the Legacy application. The GPO should be used to make all
users who require access to the application members of Local Administrators group
on each computer.
B. A GPO should be created and link the GPO to the OUs that contain computer accounts
for computers that run the Legacy application. The GPO should be used to give all
users who require access to the application full control for the Ntuser.dat file.
C. A GPO should be created and link the GPO to the OUs that contain computer accounts
for computers that run the legacy application. The GPO should be used to give the
Domain Users security group full control on the HKEY_USERS partition of the
registry.
D. A GPO should be created and link the GPO to the OUs that contain computer accounts
for computers that run the legacy application.350-001 The GPO should be used to give the
Domain Users security group full control on the partitions of the registry that the
legacy application uses.
Answer: D
Explanation: In the scenario you should keep in mind that Group Policy Object
(GPO) is used to set or sets of rules for managing client configuration settings that
pertain to desktop lockdowns and the launching of applications. The
Leading the way in IT testing and certification tools, www.certifyme.com
- 101 -
GPOs are actually data structures which can be attached in a specific hierarchy to
selected Active Directory Objects.640-802 By following the actions in the answer you ensure
you comply with the security requirements of Bilco Engineering, Inc.:
1. Bilco Engineering, Inc. IT Administration should have little manual overhead.
2. Bilco Engineering, Inc. requires having the routine administrative duties automated as
on busy days not all important administrative tasks are completed.
3. Bilco Engineering, Inc. currently makes use of legacy applications at the retail offices
to manage retail office functions by reading and writing a registry value which
unauthorized users cannot access. Bilco Engineering, Inc. believes that the application
will run properly is the users are made administrators on the client computer.VCP-310 Bilco
Engineering, Inc. realizes that this move violates the company's written security policy.
Incorrect answers:
A: This option should not be used in the scenario as you would be violating the written
security policy of Bilco Engineering, Inc.
B: This option should not be used in the scenario because the NTUSER.DAT file is
created for a user profile and this is not required.
C: This option should not be used because the Domain Users group should have
control on the partitions of the registry that the legacy application uses.
Reference:
James Chellis, Paul Robichaux & Matthew Sheltz, MCSA/MCSE: Windows Server 2003
Network Infrastructure Implementation, Management, and Maintenance Study Guide, p.
21
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment