You are the administrator of an OU named WebServers, created in Windows Server 2003 domain. The IPSec policies are defined at Domain level and No Override is not selected. All websites are configured to allow only anonymous users. A new GPO is applied at WebServers OU restricting local Administrators group to login locally. Users report that they are unable to access any of the Web Sites on the servers. What will you do for allowing users access to the websites from the servers in WebServers OU without affecting overall security?

You are the network administrator of a company called Expertrating. Your company's network has a single Active Directory forest with a single domain named expertrating.com. Windows Server 2003 is running on all the servers and all the clients are Windows XP Professional computers. Your company has a test lab that contains a separate forest. You created a GPO (Group Policy Object) for testing and tested it successfully in that lab. Now, you want to implement this GPO on the network for all the computers and users in the domain. How will you accomplish this task by using minimum efforts?

A network consists of one Windows Server 2003 running as Domain Controller and 100 Windows XP Clients. The network administrator has created many OUs in domain and delegated control of OU to relevant administrators. His domain is configured with one OU, named sales, having one child, OU marketing. Two different administrators are appointed to be responsible for their respective OUs. But the marketing OU administrator complains that their OU is inheriting the Group Policies of its parent domain, even when they have blocked the inheritence. What may be the reason for that?

You use Software deployment in Windows Server 2003 to distribute company's softwares on your Windows XP clients. The software image is clean and successfully published to clients. Clients have installed softwares in their desktops. But, when they run the setup from desktop shortcut, it gives an error message. Which of the following may be the reason for this error?

You are the network administrator for your company running Domain Controller on Windows Server 2003. The domain has a Windows 2000 server named production. The production server is not a domain controller. You are allowed to logon locally for making the configuration. You want to run a script that will change the current environment variables setting when users log in.What would be the appropriate course of action?

Which FSMO roles mostly affects the network users functionality immediately?

What is KCC?

You are trying to determine the name of a host but only have the IP Address, what command can you run to finds it's name?

Why is documentation one of the most critical aspects of Active Directory security administration?

What benefit is gained from using global or universal groups when specifying permissions on domain directory objects?

What is a DSRM password used for?