单项选择题
Your company has an Active Directory domain. You install an Enterprise Root certification authority (CA) on a member server named Server1. You need to ensure that only the Security Manager is authorized to revoke certificates that are supplied by Server1. What should you do()
A.Remove the Request Certificates permission from the Domain Users group.
B.Remove the Request Certificated permission from the Authenticated Users group.
C.Assign the Allow - Manage CA permission toonly the Security Manager user Account.
D.Assign the Allow - Issue and Manage Certificates permission to only the Security Manger user account
相关考题
-
单项选择题
YournetworkconsistsofasingleActiveDirectorydomain.AlldomaincontrollersrunWindowsServer2008.AuditingisconfiguredtologchangesmadetotheManagedByattributeongroupobjectsinanorganizationalunitnamedOUI.YouneedtologchangesmadetotheDescriptionattributeonallgroupobjectsinOUIonly.Whatshouldyoudo()
A.Run auditpol.exe.
B.Modify the auditing entry for OUI.
C.Modify the auditing entry for the domain.
D.Create a new Group PolicyObject (GPO). Enable Audit account management policy setting. Link the GPO to OUI. -
单项选择题
YouwantuserstologontoActiveDirectorybyusinganewPrincipalName(UPN).YouneedtomodifytheUPNsuffixforalluseraccounts.Whichtoolshouldyouuse()
A.Dsmod
B.Netdom
C.Redirusr
D.Active Directory Domains and Trusts -
单项选择题
YouhaveaWindowsServer2008thathastheActiveDirectoryCertificateServicesserverroleinstalled.Youneedtominimizetheamountoftimeittakestodownloadacertificaterevocationlist(CRL).Whatshouldyoudo()
A.Install and configure an Online Responder.
B.Install and configure an addtional domain controller.
C.Import the Root CA certificate into the Trusted Root Certification Authorities on all client workstations.
D.Import the Issuing CA certificate into the Trusted Root Certification Authorities on all client workstations.
