Server policy

The human resources department has servers that contain confidential
information stored in files. The client computers in the human resources
department access the confidential information over the LAN. The network design
requires that any access to the human resources department servers must be
encrypted to protect the confidentiality of the data transmissions.
You need to automatically enforce the network design requirement at regular
intervals. What should you do?
A. Assign the Secure Server (Require Security) IPSec policy to the human resources
department servers by using Group Policy
B. Assign the Secure Server (Require Security) IPSec policy to the human resources
department servers by using local policy
C. Apply the Hisecws.inf security template to the human resources department
servers by using Group Policy
D. Apply the Hisecws.inf security template to the human resources department
servers by using the secedit command
/////////////////////////////////////////////

I go for b since the server is on LAN
LVL 2
kunalclkAsked:
Who is Participating?
 
relliott66Commented:
'A' is what I would select.  Why mess with local policy when you can set it in AD at Group Policy level and have it applied to all systems?  This will also take care of making sure the policy is applied to any systems brought into the network later on.
0
 
Krzysztof PytkoSenior Active Directory EngineerCommented:
That's right A is correct answer. By default GPOs are reapplied after 90 minutes. So, even if someone makes any changes after 90 minutes it will be reverted by GPO which was linked to the OU with that/those server(s)

Regards,
Krzysztof
0
 
kunalclkAuthor Commented:
tnx
0
 
relliott66Commented:
no prob.  Feel free to continue posting the ones you are curious about on the tests, even with no or low points for assistance.  It's a good refresher for some of us :)
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.