Information Technology Reference
In-Depth Information
1.
To which GPOs do you need to link to ensure that all BitLocker passwords can be
backed up to Active Directory?
A.
Default Domain Policy
B.
Default Domain Controller Policy
C.
Both the A and B
D.
A new BitLocker GPO linked to the Domain Users folder
2.
What features are required and installed for the BitLocker Drive Encryption feature?
(Choose all that apply.)
A.
BitLocker Drive Encryption
B.
Remote Server Administration Tools - BitLocker Drive Encryption Administration
Utilities
C.
Remote Server Administration Tools - AD DS Tools
D.
File Server VSS Agent Service
Enhanced Storage
E.
BitLocker Network Unlock
F.
3.
Company policy requires that all servers be encrypted with BitLocker on all fixed
internal drives and volumes. Several existing servers do not support a TPM. You
created a special OU for these servers and linked a GPO to the OU. What policy do
you need to configure to enable BitLocker encryption for the servers?
A.
Choose Drive Encryption Method And Cipher Strength
B.
Choose How BitLocker-Protected Fixed Drives Can Be Recovered
C.
Require Additional Authentication At Startup
D.
Use Enhanced Boot Configuration Data Validation Profile
Allow Network Unlock At Startup
E.
Advanced audit policies extend the basic audit policies to provide granular auditing of events.
Advanced audit policies were extended in Windows Server 2012 with Global Object Access
Auditing and Dynamic Access Control (DAC) to allow for expression-based auditing, giving
administrators more selective auditing of events. Also added in Windows Server 2012 is the
ability to audit removable devices.
