ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam 70-744 All Questions

View all questions & answers for the 70-744 exam
Go to Exam

Exam 70-744 topic 1 question 131 discussion

Actual exam question from Microsoft's 70-744
Question #: 131
Topic #: 1
[All 70-744 Questions]

HOTSPOT -
Your network contains an Active Directory domain named adatum.com.
The domain contains a server named Server1 that runs Windows Server 2016. The domain contains two users named User1 and User2.
On Server1, you create two files named File1.doc and File2.doc in a folder named C:\Folder1.
The Audit Entry for File1.doc is configured as shown in the File1 exhibit. (Click the File1 tab.)

File2.doc has an empty auditing entry list.
The Auditing Entry for Global File SACL that applies to Server1 is configured as shown in the SACL exhibit. (Click the SACL tab.)

The Advanced Audit Policy Configuration for Server1 is configured as shown in the Audit Policy exhibit. (Click the Audit Policy tab.)

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
References:
http://sourcedaddy.com/windows-7/auditing-file-and-folder-access.html
by Kamikazekiller at Aug. 9, 2020, 3:23 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
SamsOtro
4 years, 5 months ago
Global Access Auditing gets applied to a user or Security Group. Exhibits only prove it is applied to user2. Seems like No, Yes, Yes could be correct.
upvoted 1 times
...
KidCastaldo
4 years, 7 months ago
Yes, Yes, No. File2 doesn't have a matching ACL https://sourcedaddy.com/windows-7/auditing-file-and-folder-access.html Audit File System: Generates audit events for objects when the type of access requested and the account making the request match the settings in SACLs set on the objects. For example, if a user tries to modify a file and is a member of a group for which you enabled auditing of success and failure Modify events, related audit events will be generated and recorded in the security log. An audit event is generated each time an account accesses a file system object with a matching SACL.
upvoted 3 times
psycho202
4 years, 5 months ago
The given answer of yes, yes, yes seems correct to me. File2 doesn't have an ACL, but is caught under the Global SACL set on User2.
upvoted 1 times
...
expert_ms
4 years, 5 months ago
OK,man, but in second picture we see the Global File SACL for user2! This setting applies a global system access control list (SACL) to every file and folder. If both a file or folder SACL and a global SACL are configured on a computer, the effective SACL is derived by combining the file or folder SACL and the global SACL. This means that an audit event is generated when an activity matches either the file or folder SACL or the global SACL. So answer is correct: Yes Yes Yes
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago