多项选择题
Your company, A. Datum Corporation, has a single Active Directory domain named intranet.adatum.com. The domain has two domain controllers that run Windows Server 2008 R2 operating system. The domain controllers also run DNS servers. The intranet.adatum.com DNS zone is configured as an Active Directoryintegrated zone with the Dynamic updates setting configured to Secure only. A new corporate security policy requires that the intranet.adatum.com DNS zone must be updated only by domain controllers or member servers. You need to configure the intranet.adatum.com zone to meet the new security policy requirement. Which two actions should you perform()
A.Remove the Authenticated Users account from the Security tab of the intranet.adatum.com DNS zone properties.
B.Assign the SELF Account Deny on Write permission on the Security tab of the intranet.adatum.com DNS zone properties.
C.Assign the server computer accounts the Allow on Write All Properties permission on the Security tab of the intranet.adatum.com DNS zone properties.
D.Assign the server computer accounts the Allow on Create All Child Objects permission on the Security tab of the intranet.adatum.com DNS zone properties.
相关考题
-
单项选择题
Your company has a single Active Directory domain named intranet.contoso.com. All domain controllers run Windows Server 2008 R2. The domain functional level is Windows 2000 native and the forest functional level is Windows 2000. You need to ensure the UPN suffix for contoso.com is available for user accounts. What should you do first()
A.Raise the intranet.contoso.com forest functional level to Windows Server 2003 or higher.
B.Raise the intranet.contoso.com domain functional level to Windows Server 2003 or higher.
C.Add the new UPN suffix to the forest.
D.Change the Primary DNS Suffix option in the Default Domain Controllers Group Policy Object (GPO) to contoso.com. -
单项选择题
You need to deploy a read-only domain controller (RODC) that runs Windows Server 2008 R2. What is the minimal forest functional level that you should use()
A.Windows Server 2008 R2
B.Windows Server 2008
C.Windows Server 2003
D.Windows 2000 -
单项选择题
Your company has an Active Directory domain. The main office has a DNS server named DNS1 that is configured with Active Directory-integrated DNS. The branch office has a DNS server named DNS2 that contains a secondary copy of the zone from DNS1. The two offices are connected with an unreliable WAN link. You add a new server to the main office. Five minutes after adding the server, a user from the branch office reports that he is unable to connect to the new server. You need to ensure that the user is able to connect to the new server. What should you do()
A.Clear the cache on DNS2.
B.Reload the zone on DNS1.
C.Refresh the zone on DNS2.
D.Export the zone from DNS1 and import the zone to DNS2.
