单项选择题
You are the network administrator for The network consists of a single Active Directory domain named . For security reasons,management decides that a particular user must not be able to log on to the domain
after 5:00 P.M. If the user is logged on to the domain at 5:00 P.M., he must be logged off automatically.
You configure the Logon Hours setting for the appropriate user account. Thatnight, you verify that the user cannot log on to the domain after 5:00 P.M. The nextday, you notice that the user is still accessing domain resources at 6:00 P.M. Youverify that the time on the user's computer and on the domain controller arecorrect.
You need to ensure that the user is logged off automatically if he is still working onthe domain after 5:00 P.M.
What should you do?()
A. In Active Directory Users and Computers, on the Sessions tab, configure the End Session setting for the user account. Instruct the user to log off from the domain and log on again.
B. Modify the Default Domain Policy GPO to enforce logoff when logon hours expire. Ensure that the user's computer has the latest Group Policy settings applied.
C. Remove the user's domain account from the local Administrators group on the user's client computer. Instruct the user to log off from the domain and log on again.
D. Use Computer Management on the domain controller. Restart the Net Logon service.
相关考题
-
多项选择题
You are the administrator of a Windows 2003 domain The domain contains 20 Windows 2000 Professional computers and two Windows 2003 Server computers. For the domain, you want to set an account policy that locks any users account after three consecutive failed logon attempts. You also want to ensure that only administrators will be able to unlock the account. Which two actions should you take?() (Each correct answer presents part of the solution. Choose two)
A. Set the Account lockout duration value to 0.
B. Set the Account lockout duration value to 3.
C. Set the Account lockout threshold value to 0.
D. Set the Account lockout threshold value to 3.
E. Set the Reset account lockout counter after value to 0.
F. Set the Reset account lockout counter after value to 3. -
单项选择题
You are the network administrator for Your network consists of a single Active Directory domain named All network servers run Windows Server 2003, and all client computers run Windows XP Professional. TestKing has 16 different office locations. Each office is a separate Active Directory site. You work in the main office. A user named Anne works in a branch office. Every morning for one week, Anne reports that her user account is locked out. Each time, you are obliged to unlock her account. You suspect that Annes account is being misused or attacked outside of regular business hours. You need to investigate the cause of the account lockout. Where should you search for security events?()
A. Only in the event log of a domain controller in your site.
B. Only in the event logs of the domain controllers in Anne's site.
C. In the event logs of all domain controllers in all sites.
D. Only in the event log of Anne's computer. -
多项选择题
You are the administrator of an Active Directory domain named A user reports that he forgot his password and cannot log on to the domain. You discover that yesterday morning the user reset his password and successfully logged on to the domain. You need to enable the user to log on to the domain. What should you do? ()(Choose two)
A. Use Active Directory Users and Computers to move the account to the default organizational unit (OU) named Users. Instruct the user to restart his computer.
B. Use Active Directory Users and Computers to open the account properties for the user's user account. Clear the Account is locked out check box, and select the User must change password at next logon check box.
C. Use Active Directory Users and Computers to reset the user's password. Give the user the new password.
D. Use Computer Management to reset the password for the local Administrator account.
