ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam 70-742 All Questions

View all questions & answers for the 70-742 exam
Go to Exam

Exam 70-742 topic 1 question 111 discussion

Actual exam question from Microsoft's 70-742
Question #: 111
Topic #: 1
[All 70-742 Questions]

Your network contains an Active Directory domain named adatum.com. The domain contains a security group named G_Research and an organizational unit
(OU) named OU_Research.
All the users in the research department are members of G_Research and their user accounts are in OU_Research.
You need to ensure that all the research department users change their password every 28 days and enforce a complex password that is 12 characters long.
What should you do?

  • A. From Group Policy Management, create and link a Group Policy object (GPO) to OU_Research. Modify the password policy in the GPO.
  • B. From Group Policy Management, create and link a Group Policy object (GPO) to the domain. Modify the password policy in the GPO. Filter the GPO to apply to G_Research only.
  • C. From Active Directory Users and Computers, modify the properties of the Password Settings Container.
  • D. From Active Directory Administrative Center, create a new Password Settings object (PSO).
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by panda at Nov. 15, 2019, 12:48 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
coleman
Highly Voted 5 years, 4 months ago
right.
upvoted 6 times
...
lofzee
Most Recent 4 years, 3 months ago
D. Any changes from the default policy should be done in AD Administrative Centre
upvoted 1 times
...
alexnt
4 years, 6 months ago
Similar question from other source: Your network contains an Active Directory domain named contso.com. Each department at your company has an organizational unit (OU) in Active Directory and a global that contains the users in that department. You need to implement the following security requirements: User in the research department must use complex passwords that are at least 14 characters. User in the following department must use complex passwords that are at least 10 characters. All other users must use an eight-character, non-complex password. What should you do? A. From the Default Domain Controller Policy. Modify the Password Policy settings. Create Password settings objects (PSOs) for finance and research. B. From the Default Domain Policy, modify the password policy settings. Create password Settings objects PSOs) for finance and research C. Create group Policy object (GPOs) linked to the finance and research OUs. Modify the Password Policy settings in the Default Domain Policy, the finance GPO and the research GPO. D .Create Group Policy objects (GPOs) linked to the finance and research OUs. Modify the Password Policy settings in the finance GPO and the research GPO. Offered Answer: A Is this correct?
upvoted 1 times
bigmactex
4 years, 5 months ago
Yes this is correct. Because you use the Default Domain Policy for password settings for all users, then you would use a PSO for any deviation from the main policy and specify who to apply those PSOs.
upvoted 1 times
alexnt
4 years, 4 months ago
So as I understand from your explanation B is correct, not A.
upvoted 1 times
...
...
...
panda
5 years, 5 months ago
I think that A and B are also correct in the following case.. --Adatum.com as domain has no other security groups. --Adatum.com as domain has other security groups and they have no member. To determine that only D is correct, does it need the prerequiset that only the research department users change...... ? Or since A and B does'nt include update operation, for example, using gpupdate,they are not correct ? Or if there are multiple correct answer, the best answer is correct ? or has no other security groups but they have no member, A and B can meet the goal.
upvoted 2 times
dittrichdimitri
5 years, 5 months ago
I also think only A and B are correct. I still do not understand.
upvoted 1 times
dittrichdimitri
5 years, 5 months ago
Disregard what I wrote! The answer is correct! There is no way to set a password policy based on OUs or Users, only for Computers! So the only way to do it is by creating a PSO through the Administrative Center! I tested it in practice and I guarantee it is correct!
upvoted 12 times
...
...
VeiN
4 years, 7 months ago
It is written "You need to ensure that all the research department users" not all users in domain. The GPO changes properties of domain container and is for all users, except those to whom the fine grained password is applied. Its done like it`s written in D answer. Also you can`t link those settings in sub ou (it wont work). This is specific and crucial settings that are only in DDP.
upvoted 2 times
...
c3r3br4l
5 years, 5 months ago
This test seems to be very heavy on use cases for PSO's rather than gpo settings for passwords and item level targeting in a setting rather than an additional GPO with wmi filters so if it seems ambigouous and one of the answers is either of those, I lean towards PSOs and item level targeting
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago