You need to design an audit strategy for the Willow Bridge, Ltd. network. In your
solution take care to use the least amount of administrative effort.
What should you do? (Each correct answer presents part of the solution. Choose
TWO.)
A. Create a security template that enables Audit account logon events policy for success
and failure.
B.
Leading the way in IT testing and certification tools, www.certifyme.com
- 51 -
Create a security template that enables Audit logon events policy for success and failure.
C. Create a GPO, link the GPO to the willowbridge.com domain then import the template
into the GPO.
D. Import the template into the local policy on both DNS1 and DNS2.
E. Create a GPO, link the GPO to each site/office then import the template into the GPO.
F. Create a GPO, link the GPO to each departmental OU then import the template into
the GPO.
Answer: B, D
Explanation: A security template that enables Audit logon vents for success and failure
will record each instance of a user logging on to, logging off from, or making a network
connection to the computer.350-001 You should import this template into the local policy on
DNS1 and DNS2 to ensure that any attempts to log on interactively with either a local
account or a domain account will be recorded on the respective DNS server.
1. We need to ensure that both DNS1 and DNS2 are protected against this accidental
modification
2. A non-administrative user connected to DNS1 by accident and modified some of the
registry settings on DNS1
3. I also want to have the ability to detect all attempts to log on interactively to either of
these servers
Incorrect answers:
A: Auditing the account logon events for success and failure will record events on the
computer where the logon is validated.640-802 Besides local logon events are not sent to the
domain controller and only logon events that occur when a computer receives a request to
validate a user account stored locally. This is not going to address the concerns of the IT
administrator.
C, E, F: Linking the GPO to either the domain, site or departmental OU would apply the
desired audit policy settings to object in these containers only.VCP-310 The objective of this
solution is to use the least amount of administrative effort when designing the audit
strategy for the Willow Bridge, Ltd. network.
Reference:
Elias N. Khnaser, Susan Snedak, Chris Peiris & Rob Amini, MCSE Designing Security
for a Windows Server 2003 Network Exam 70-298 Study Guide, Chapter 3, pp. 177-179
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment