You are the network administrator for a single Active Directory - ProProfs Discuss
Topics
Products
Follow Us:

You are the network administrator for a single Active Directory domain. The domain contains 1,000 Windows XP Professional client computers and 20 Windows Server 2003 computers. Internet Protocol Security (IPSec) is implemented on your network. You suspect that a user has been changing the IPSec policies on your network. You must determine which user is making IPSec policy changes. In addition, you want to identify any users who are attempting to make changes. What should you do?



A. Enable success auditing for the Audit logon events audit policy for your domain.
B. Enable success auditing for the Audit policy change audit policy for your domain.
C. Enable success auditing for the Audit privilege use audit policy for your domain.
D. Enable success and failure auditing for the Audit logon events audit policy for your domain.
E. Enable success and failure auditing for the Audit privilege use audit policy for your domain.

This question is part of

Microsoft 70-291 Practice Exam
Asked by Bradon, Last updated: Mar 28, 2020

+ Answer
Request

1 Answer

John Smith

John Smith

Answered Sep 08, 2016

Enable success and failure auditing for the audit privilege use audit policy for your domain.-explanation: you should enable success and failure auditing for the audit policy change audit policy for your domain. this will allow you to identify the user making the ipsec policy changes as well as identify any users attempting to make changes. you should not enable success auditing for the audit logon events audit policy for your domain. this policy only audits each time a user logs on or logs off a computer. you should not enable success auditing for the audit policy change audit policy for your domain. this will only identify the user making the ipsec policy changes. it will not identify any users attempting to make changes. you should not enable success auditing for the audit privilege use audit policy for your domain. this policy audits each instance of a user exercising a user right. you should not enable success and failure auditing for the audit logon events audit policy for your domain. this policy audits each time a user attempts to log on or log off a computer or successfully logs on or logs off a computer. you should not enable success and failure auditing for the audit privilege use audit policy for your domain. this policy audits each successful instance of a user exercising a user right and each failed attempt to exercise a user right.
 

Search for Google images
Select a recommended image
Upload from your computer
Search for Google images
Select a recommended image
Upload from your computer
Search for Google images
Select a recommended image
Upload from your computer

Email Sent
We have sent an email to your address "" with instructions to reset your password.