CompTIA
Exam Vouchers
Save money on CompTIA exams
| Question of the day
Sign up to receive
interactive practice questions
for MCSE, CompTIA
Cisco and other exams
| TestKing
Get MCSE, MCSD, CCNA, CCNP,A+, N+ and many more | * ExamSheets *
Guide for Success!
Actual Questions & Answers
MCSE, MCSD, A+ ,CCNA, CCNP
Oracle 8i, Oracle 9i Online practice tests
Certification sites Online university Online college Online education Distance learning Software forum Server administration forum Programming resources
|
|  |
Pages (2): [1] 2 »
| Author |
Deja's Tue 70-217 Question of the Day
|
Deja-vue
Challenge Everything
M
Registered: Jul 2001
Location: Long Beach
Country: United States
State:
Certifications: MCSA 2000
Working on: MCSE 2000,MCSE 2003
Total Posts: 3243
|
|
 Deja's Tue 70-217 Question of the Day
Here is Tuesday's Question:
You are the Windows 2000 network administrator for your company. You are implementing the company's network security model. You network has several servers that contain sensitive or confidential information. You want to configure security auditing on these servers to monitor access to specific folders. You also want to prevent users from gaining access to these servers when the security logs become full.
What should you do?
A. Create a GPO that applies to the servers. Configure the GPO to enable auditing for object access. Set up the individual objects to be audited in Windows Explorer and then customize the Event Viewer logs to limit the size of the security log to 1,024 kb.
B. Create a GPO that applies to the servers. Configure the GPO to enable auditing for Directory Services access. Set up the individual objects to be audited in Windows Explorer and then customize the Event Viewer logs to limit the size of the security log to 1,024 KB. Configure the security event log so that it does not overwrite events.
C. Create a GPO that applies to the servers. Configure the GPO to enable auditing for Directory Service access. Set up the individual objects to be audited in Windows Explorer. Configure the Security Event log so that it does not overwrite events. Then configure the GPO to enable the "Shut down the system immediately if unable to log security audits" setting.
D. Create a GPO that applies to the servers. Configure the GPO to enable auditing for object access. Setup the individual objects to be audited in Windows Explorer. Configure the security event log so that it does not overwrite events. Then configure the GPO to enable the "Shut down the system immediately if unable to log security audits" setting.
We'll see ya tomorrow with the Answer!
__________________
My Home Theater
My DVD Collection
Report this post to a moderator
|
|
 12-17-02 04:38 AM
|
|
CyberDude
Assigned Engineer
M
Registered: Aug 2001
Location: Where ever I lay my hat.
Country: Germany
State:
Certifications: A+, N+, CNA5, CCNA2, MCSE NT4, MCP 2000, MCSA, ACP, ACE
Working on: MCSE 2000 & 2003, CNE, CCNP, Linux, Programming
Total Posts: 929
|
|
Hi De-ja,
D for me as it is the only one that will work. A. is ok but forgets to configure the servers to shut down when the logs are full. B & C are wrong as Directory Access only monitors directory objects and not specific files or folders. 
__________________
If it's not written down, then it never happened!
Report this post to a moderator
|
|
|
12-17-02 06:24 AM
|
|
mdeneau
Junior Member
M
Registered: Dec 2002
Location: Florida
Country: United States
State: FL
Certifications: MCP-210,215,216,217
Working on: MCSA w/ A+ & Net+
Total Posts: 23
|
|
|
|
12-17-02 11:37 AM
|
|
dvinton
Member
F
Registered: Jun 2002
Location: Cleveland
Country: United States
State:
Certifications: CISSP, MCSA, CCNA, Network+, A+, MCP-210, 215, 218, MOUS Master, MOUS Master Trainer, HDA,
Working on: CTT+, SANS GCIA
Total Posts: 48
|
|
I agree with D.
__________________
What lies behind us and what lies before us are tiny matters compared to what lies within us. -- Ralph Waldo Emerson
Report this post to a moderator
|
|
|
12-17-02 12:30 PM
|
|
Deja-vue
Challenge Everything
M
Registered: Jul 2001
Location: Long Beach
Country: United States
State:
Certifications: MCSA 2000
Working on: MCSE 2000,MCSE 2003
Total Posts: 3243
|
|
|
|
12-17-02 02:30 PM
|
|
maxmax79
Senior Member
M
Registered: Apr 2002
Location:
Country: United States
State:
Certifications: A+, MCP , MCSA 2K, MCSE 2K
Working on: MCSE 2K3, MCSA 2K3, CCNA
Total Posts: 118
|
|
|
|
12-17-02 02:45 PM
|
|
jocampo
Proud to be Colombian!
M
Registered: Aug 2002
Location: Ponce, PR
Country: Puerto Rico
State:
Certifications: MCSA [70-210/70-215/70-217/70-218] , Net+, A+, CST
Working on: 70-216
Total Posts: 1014
|
|
|
I think is "D"
__________________
Best Regards
José A. Campo
MCSA, Net+, A+, CST
Colombia: flowers, rivers, oceans, soccer...and nice people!
Report this post to a moderator
|
|
|
12-17-02 03:06 PM
|
|
Deja-vue
Challenge Everything
M
Registered: Jul 2001
Location: Long Beach
Country: United States
State:
Certifications: MCSA 2000
Working on: MCSE 2000,MCSE 2003
Total Posts: 3243
|
|
|
Re: Deja's Tue 70-217 Question of the Day
quote:
Originally posted by Deja-vue
Here is Tuesday's Question:
You are the Windows 2000 network administrator for your company. You are implementing the company's network security model. You network has several servers that contain sensitive or confidential information. You want to configure security auditing on these servers to monitor access to specific folders. You also want to prevent users from gaining access to these servers when the security logs become full.
What should you do?
A. Create a GPO that applies to the servers. Configure the GPO to enable auditing for object access. Set up the individual objects to be audited in Windows Explorer and then customize the Event Viewer logs to limit the size of the security log to 1,024 kb.
B. Create a GPO that applies to the servers. Configure the GPO to enable auditing for Directory Services access. Set up the individual objects to be audited in Windows Explorer and then customize the Event Viewer logs to limit the size of the security log to 1,024 KB. Configure the security event log so that it does not overwrite events.
C. Create a GPO that applies to the servers. Configure the GPO to enable auditing for Directory Service access. Set up the individual objects to be audited in Windows Explorer. Configure the Security Event log so that it does not overwrite events. Then configure the GPO to enable the "Shut down the system immediately if unable to log security audits" setting.
D. Create a GPO that applies to the servers. Configure the GPO to enable auditing for object access. Setup the individual objects to be audited in Windows Explorer. Configure the security event log so that it does not overwrite events. Then configure the GPO to enable the "Shut down the system immediately if unable to log security audits" setting.
We'll see ya tomorrow with the Answer!
Yepp, D was correct!
The two parts of auditing are to setup an audit policy at either the local or domain level (through a GPO) that defines the types of events to be audited (in this case object access). Secondly, the specific events must be specified (in this case by setting up the objects to be audited using Windows Explorer). To meet the last requirement of preventing users' access when log is full then you must configure the GPO to enable the "Shut down the system if unable to log" setting. This setting is actually called CrashOnAuditFail in the registry and in this case, must be set to 1.
__________________
My Home Theater
My DVD Collection
Report this post to a moderator
|
|
|
12-18-02 04:37 AM
|
|
CyberDude
Assigned Engineer
M
Registered: Aug 2001
Location: Where ever I lay my hat.
Country: Germany
State:
Certifications: A+, N+, CNA5, CCNA2, MCSE NT4, MCP 2000, MCSA, ACP, ACE
Working on: MCSE 2000 & 2003, CNE, CCNP, Linux, Programming
Total Posts: 929
|
|
|
Hi Deja, well life is a bit intense at work, so I do not have much time to surf lately as I am studing for my second company exam.
__________________
If it's not written down, then it never happened!
Report this post to a moderator
|
|
|
12-18-02 05:56 AM
|
|
Deja-vue
Challenge Everything
M
Registered: Jul 2001
Location: Long Beach
Country: United States
State:
Certifications: MCSA 2000
Working on: MCSE 2000,MCSE 2003
Total Posts: 3243
|
|
|
Same here, my Friend.
It is 11:03 PM (23:03) here and i am still working recovering some huge Files of a Dell-Server in my Lab.
The Company lost all of their Backups, and i took it home to fix it.
They will need it first thing in the Morning.
__________________
My Home Theater
My DVD Collection
Report this post to a moderator
|
|
|
12-18-02 06:05 AM
|
|
|
Click here for list of 70-217
study guides and order yours now!
MCSE exam notes
70-217 exam details
Forum Rules:
Who Can Read The Forum? Any registered user or guest.
Who Can Post New Topics? Any registered user.
Who Can Post Replies? Any registered user.
Changes: Messages can be edited by their author.
Posts: HTML code is OFF. Smilies are ON. vB code is ON. [IMG] code is ON. |
|
ExamNotes forum archive
|
