You are the domain administrator for . Active Directory domain. All client computers run Windows XP Professional.A user reports that she attempted to log on six times unsuccessfully. She reports that she logged on successfully yesterday. You discover that

题目

You are the domain administrator for . Active Directory domain. All client computers run Windows XP Professional.A user reports that she attempted to log on six times unsuccessfully. She reports that she logged on successfully yesterday. You discover that the user reset her password three days ago to comply with a new security policy that requires strong passwords.The account policies that are applied in the Domain Security Group Policy object (GPO) as shown in the following table.You need to ensure that the user can log on to the domain.What should you do?()

A. Reset the password for the computer account.

B. Unlock the user account.

C. In the user account properties, select the Password never expires check box for the user account.

D. In the user account properties, select the User must change password on next logon check box for the user account.

相似考题

1. Your company has a single Active Directory directory service domain. All servers in your environment run Windows Server 2003. Client computers run Windows XP or Windows Vista. You plan to create a security update scan procedure for client computers. You need to choose a security tool that supports all the client computers.  Which tool should you choose? ()A、 UrlScan Security ToolB、 Enterprise Scan Tool (EST)C、 Malicious Removal Tool (MRT)D、 Microsoft Baseline Security Analyzer (MBSA)

2. Your network contains an Active Directory domain. All domain controllers run Windows Server 2008  R2. Client computers run either Windows XP Service Pack 3 (SP3) or Windows Vista.  You need to ensure that all client computers can apply Group Policy preferences.   What should you do()A、Upgrade all Windows XP client computers to Windows 7.B、Create a central store that contains the Group Policy ADMX files.C、Install the Group Policy client-side extensions (CSEs) on all client computers.D、Upgrade all Windows Vista client computers to Windows Vista Service Pack 2 (SP2).

3. Your network contains a single Active Directory domain. All client computers run Windows Vista  Service Pack 2 (SP2).     You need to prevent all users from running an application named App1.exe.     Which Group Policy settings should you configure()A、Application CompatibilityB、AppLockerC、Software InstallationD、Software Restriction Policies

4.Your network consists of a single Active Directory domain. The domain contains a server named Server1 that runs Windows Server 2008.All client computers run Windows Vista. All computers are members of the Active Directory domain. You assign the Secure Server (Require Security) IPsec policy to Server1 by using a Group Policy object(GPO). Users report that they fail to connect to Server1.You need to ensure that users can connect to Server1. All connections to Server1 must be encrypted. What should you do? ()A、Restart the IPsec Policy Agent service on Server1.B、Assign the Client (Respond Only) IPsec policy to Server1.C、Assign the Server (Request Security) IPsec policy to Server1.D、Assign the Client (Respond Only) IPsec policy to all client computers.

更多“You are the domain administrator for . Active Directory domain. All client computers run W ”相关问题

  • 第1题:

    You are the network administrator for your company. The network consists of a single Active Directory domain. All computers on the network are members of the domain. All servers run Windows Server 2003 and all client computers run Windows XP Professional.  You are planning a security update infrastructure.   You need to find out which computers are exposed to known vulnerabilities. You need to collect the information on existing vulnerabilities for each computer every night. You want this process to occur automatically.  What should you do? ()

    • A、 Schedule the secedit command to run every night.
    • B、 Schedule the mbsacli.exe command to run every night.
    • C、 Install Microsoft Baseline Security Analyzer (MBSA) on one of the servers. Configure Automatic Updates on all other computers to use that server.
    • D、 Install Software Update Services (SUS) on one of the servers. Configure the SUS server to update every night.

    正确答案:B

  • 第2题:

    You network consists of a single Active Directory domain. All domain controllers run Windows Server 2008. You need to reset the Directory Services Recovery Mode (DSRM) password on a domain controller. What tool should you use()

    • A、dsmod
    • B、ntdsutil
    • C、Local Users and Groups snap-in
    • D、Active Directory Users and Computers snap-in

    正确答案:B

  • 第3题:

    Your network consists of a single Active Directory domain. The network contains a Terminal Server that runs Windows Server 2008, and client computers that run Windows Vista. All computers are members of the domain.   You deploy an application by using the TS RemoteApp Manager. The Terminal Servers security layer is set to Negotiate.  You need to ensure that domain users are not prompted for credentials when they access the application. What should you do?()

    • A、On the server, modify the Password Policy settings in the local Group Policy.
    • B、On the server, modify the Credential Delegation settings in the local Group Policy.
    • C、On all client computers, modify the Password Policy settings in the local Group Policy.
    • D、On all client computers, modify the Credential Delegation settings in the local Group Policy.

    正确答案:D

  • 第4题:

    You are the network administrator for The network consists of a single Active Directory domain named All servers run Windows Server 2003, and all client computers run Windows XP Professional. A user named Lilli receives a new computer named Client223. She successfully logs on to the domain. The next day, she tries to log on again. The domain name appears in the domain dropdown list in the dialog box. However, Lilli cannot log on. You try to log on by using Client223, but you are also unsuccessful. Then you use a local Administrator account to log on. You read the following error message in the system event log. "NETLOGON Event ID 3210: Failed to authenticate with //Server5, a Windows NT domain controller for domain TestKing". You search the computer account for Client223 in Active Directory Users and Computers, but the account does not appear. You need to ensure that Lilli can log on to the domain successfully. What should you do?()

    • A、Recreate the user account for Lilli and add her to all appropriate security groups.
    • B、Run the netdom reset 'Client223' /domain:'testking' command and then restart Client223.
    • C、Add Client223 to a workgroup. Then join Client223 to the domain.
    • D、Reset the computer account for Server5 in Active Directory Users and Computers.

    正确答案:C

  • 第5题:

    单选题
    You are the network administrator for The network consists of a single Active Directory domain named All servers run Windows Server 2003, and all client computers run Windows XP Professional. A user named Lilli receives a new computer named Client223. She successfully logs on to the domain. The next day, she tries to log on again. The domain name appears in the domain dropdown list in the dialog box. However, Lilli cannot log on. You try to log on by using Client223, but you are also unsuccessful. Then you use a local Administrator account to log on. You read the following error message in the system event log. "NETLOGON Event ID 3210: Failed to authenticate with //Server5, a Windows NT domain controller for domain TestKing". You search the computer account for Client223 in Active Directory Users and Computers, but the account does not appear. You need to ensure that Lilli can log on to the domain successfully. What should you do?()
    A

    Recreate the user account for Lilli and add her to all appropriate security groups.

    B

    Run the netdom reset 'Client223' /domain:'testking' command and then restart Client223.

    C

    Add Client223 to a workgroup. Then join Client223 to the domain.

    D

    Reset the computer account for Server5 in Active Directory Users and Computers.


    正确答案: A
    解析: 暂无解析

  • 第6题:

    单选题
    Your company has an Active Directory Domain Services (AD DS) domain. All server s run Windows Server 2008 R2. All client computers run Windows 7. You use Microsoft Enterprise Desktop Virtualization (MED - V) to support client virtualization requirements. You need to ensure that all MED - V virtual machine (VM) images can be centrally stor ed and are available to all client computers. What should you do?()
    A

    Install and configure IIS on a member server.

    B

    Configure a shared folder on a member server.

    C

    Create a single workspace for all client computers.

    D

    Install and configure Microsoft SQL Se rver 2008 on a member server.


    正确答案: C
    解析: 暂无解析

  • 第7题:

    单选题
    Your company has a single Active Directory directory service domain. All servers in your environment run Windows Server 2003. All domain controllers run Active DirectoryCintegrated DNS. You create several static host (A) resource records. You need to verify that the DNS server is sending the correct host records to all client computers.  Which command-line tool should you use?()
    A

     netsh

    B

     tracert

    C

     ntdsutil

    D

     nslookup


    正确答案: D
    解析: 暂无解析

  • 第8题:

    单选题
    Your company has a single Active Directory directory service domain. All servers in your environment run Windows Server 2003. Client computers run Windows XP or Windows Vista. You plan to create a security update scan procedure for client computers. You need to choose a security tool that supports all the client computers.  Which tool should you choose? ()
    A

     UrlScan Security Tool

    B

     Enterprise Scan Tool (EST)

    C

     Malicious Removal Tool (MRT)

    D

     Microsoft Baseline Security Analyzer (MBSA)


    正确答案: B
    解析: 暂无解析

  • 第9题:

    单选题
    You are the domain administrator for your company's Active Directory domain. All servers run Windows Server 2003. All client computers run Windows XP Professional and have the latest service pack installed. You manage a server that has Windows Server Update Services (WSUS) installed. The latest updates were synchronized and approved for installation on the client computers. You need to configure the client computers to download and automatically install the approved updates from the WSUS server. What should you do? ()
    A

    On the client computers, open the System Properties dialog box. On the Automatic Updates tab, configure the client computers to update automatically every day.

    B

    Create a Group Policy object (GPO) that has the appropriate Automatic Updates settings configured. Apply the GPO to an organizational unit (OU) that includes the client computers.

    C

    In Active Directory Users and Computers, modify the settings for the client computer accounts. Configure the Managed By property to specify the WSUS server account.

    D

    Create a local group on the WSUS server. Assign the group the Allow - Read and the Allow - Write permissions for the WSUSContent folder on the WSUS server. Add all the users of the client computers to the local group.


    正确答案: C
    解析: 暂无解析

  • 第10题:

    单选题
    Your network consists of a single Active Directory domain. All servers run Windows Server 2003Service Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3).You need to ensure that locked out user accounts remain locked out until an administrator unlocks theaccounts.What should you do? ()
    A

    In the Default Domain Policy, set the Account lockout duration to 0.

    B

    In the Default Domain Policy, set the Account lockout duration to 99999.

    C

    From Active Directory Users and Computers, select the Account is trusted for delegation option for all user accounts.

    D

    From Active Directory Users and Computers, select the Account is sensitive and cannot be delegated option for all user accounts.


    正确答案: A
    解析: 暂无解析

  • 第11题:

    You network consists of a single Active Directory domain. All domain controllers run Windows Server  2008 R2.   You need to reset the Directory Services Restore Mode (DSRM) password on a domain controller.   What tool should you use()

    • A、dsmod
    • B、ntdsutil
    • C、Local Users and Groups snap-in
    • D、Active Directory Users and Computers snap-in

    正确答案:B

  • 第12题:

    Your company has a single Active Directory directory service domain. Servers in your environment run Windows Server 2003. Client computers run Windows XP or Windows Vista. You plan to create an internal centrally managed security update infrastructure for client computers. You need to choose a security update management tool that supports all the client computers.  Which tool should you choose? ()

    • A、 Microsoft Assessment and Planning (MAP) Toolkit
    • B、 Microsoft Baseline Security Analyzer
    • C、 Microsoft System Center Operations Manager
    • D、 Windows Server Update Services (WSUS)

    正确答案:D

  • 第13题:

    Your company has an Active Directory Domain Services (AD DS) domain. All servers run Windows Server 2008 R2. All client computers run Windows 7. You use Microsoft Enterprise Desktop Virtualization (MED-V) to support client virtualization requirements. You need to ensure that all MED-V virtual machine (VM) images can be centrally stored and are available to all client computers. What should you do?()

    • A、Install and configure IIS on a member server.
    • B、Configure a shared folder on a member server.
    • C、Create a single workspace for all client computers.
    • D、Install and configure Microsoft SQL Server 2008 on a member server.

    正确答案:A

  • 第14题:

    Your network consists of a single Active Directory domain. All servers run Windows Server 2003Service Pack 2 (SP2). All client computers run Windows XP Professional Service Pack 3 (SP3).You need to ensure that locked out user accounts remain locked out until an administrator unlocks theaccounts.What should you do? ()

    • A、In the Default Domain Policy, set the Account lockout duration to 0.
    • B、In the Default Domain Policy, set the Account lockout duration to 99999.
    • C、From Active Directory Users and Computers, select the Account is trusted for delegation option for all user accounts.
    • D、From Active Directory Users and Computers, select the Account is sensitive and cannot be delegated option for all user accounts.

    正确答案:A

  • 第15题:

    单选题
    You are the network administrator for The network consists of a sing Active Directory domain named All domain controllers run Windows Server 2003. All client computers run Windows XP Professional with default settings. Some users have portable computers, and the rest have desktop computers. You need to ensure that all users are authenticated by a domain controller whenthey log on. How should you modify the local security policy?()
    A

    Require authentication by a domain controller to unlock the client computer.

    B

    Cache zero interactive logons.

    C

    Cache 50 interactive logons.

    D

    Grant the Log on locally user right to the Users group.


    正确答案: A
    解析: 暂无解析

  • 第16题:

    单选题
    You are the network administrator for . The network consists of a single Active Directory domain named All network servers run Windows Server 2003. All client computers run Windows XP Professional. Multiple users share the same client computer. A server named TestKing2 functions as a file and print server. You set the profile path for all user accounts to //TestKing2/Profiles/username. Some domain users were added to the local Administrators group on the Windows XP Professional computers. A user reports that other users can log on to client computers that he has previously used and gain access to files stored in his My Documents folder on the local hard disk. You need to permanently prevent users from being able to access the My Documents folder of other domain users on the client computers. What should you do?()
    A

    In Active Directory, modify the Default Domain Policy. Disable the Do not check for user ownership of Roaming Profile Folders setting.

    B

    In Active Directory, modify the Default Domain Policy. Enable the Delete cached copies of roaming profiles setting.

    C

    Log on to all client computers and delete all user profiles from the local hard disks.

    D

    Log on to all client computers and configure the Number of previous logons to cache setting to 0.


    正确答案: B
    解析: 暂无解析

  • 第17题:

    单选题
    You are the network administrator for . The network consists of a single Active Directory domain. All domain controllers run Windows Server 2003, and all client computers run Windows XP Professional. TestKing acquires a subsidiary. You receive a comma delimited file that contains the names of all user accounts at the subsidiary. You need to import these accounts into your domain. Which command should you use?()
    A

    ldifde

    B

    csvde

    C

    ntdsutil with the authoritative restore option

    D

    dsadd user


    正确答案: B
    解析: 暂无解析

  • 第18题:

    单选题
    You network consists of a single Active Directory domain. All domain controllers run Windows Server 2008. You need to reset the Directory Services Recovery Mode (DSRM) password on a domain controller. What tool should you use()
    A

    dsmod

    B

    ntdsutil

    C

    Local Users and Groups snap-in

    D

    Active Directory Users and Computers snap-in


    正确答案: B
    解析: 暂无解析

  • 第19题:

    单选题
    Your company has a single Active Directory directory service domain. Servers in your environment run Windows Server 2003. Client computers run Windows XP or Windows Vista. You plan to create an internal centrally managed security update infrastructure for client computers. You need to choose a security update management tool that supports all the client computers.  Which tool should you choose? ()
    A

     Microsoft Assessment and Planning (MAP) Toolkit

    B

     Microsoft Baseline Security Analyzer

    C

     Microsoft System Center Operations Manager

    D

     Windows Server Update Services (WSUS)


    正确答案: D
    解析: 暂无解析

  • 第20题:

    单选题
    Your network consists of a single Active Directory domain. The domain contains a server named Server1 that runs Windows Server 2008. All client computers run Windows Vista. All computers are members of theActive Directory domain. You assign the Secure Server (Require Security) IPsec policy to Server1 by using a GPO. Users report that they fail to connect to Server1. You need to ensure that users can connect to Server1. All connections to Server1 must be encrypted. What should you do?()
    A

     Restart the IPsec Policy Agent service on Server1

    B

     Assign the Client (Respond Only) IPsec policy to Server1

    C

     Assign the Server (Request Security) IPsec Policy to Server1

    D

     Assign the Client (Respond Only) IPsec policy to all client computers


    正确答案: D
    解析: 暂无解析

相关内容