多选题You need to ensure that the company’s standard password policy is enforced for all logins that areused to access SQL Server 2005.Which two actions should you perform？（）ASet the appropriate local password policies for all computers on which SQL Server i

第1题：

You need to recommend a solution to ensure that all of the client computers that run Windows 7 meet the company’s security requirements.   What should you include in the recommendation？（）

• A、Encrypted File System （EFS）
• B、the AppLocker Group Policy settings
• C、the IPSec enforcement method
• D、Windows BitLocker Drive Encryption （BitLocker）

第2题：

Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service Pack 2 (SP2). You create a new domain user account named User1 and assign the account a password of P@ssw0rd. On the new account, you enable the User must change password at next logon option. A week later, you discover that User1 is still using the password P@ssw0rd to log on to the domain. You need to ensure that User1 is forced to use a different password the next time she changes her password. What should you do first? （）

• A、In the Default Domain Policy, select Enforce password history.
• B、In the Default Domain Policy, select Passwords must meet complexity requirements.
• C、From the User’s account properties, select Account is sensitive and cannot be delegated.
• D、From the User’s account properties, select Store password using reversible encryption.

第3题：

第4题：

Your company has a main office and a branch office. The branch office has an Active Directory  site that contains a read-only domain controller （RODC）.   A user from the branch office reports that his account is locked out. From a writable domain  controller in the main office， you discover that the user’s account is not locked out.     You need to ensure that the user can log on to the domain.     What should you do（）

• A、Modify the Password Replication Policy.
• B、Reset the password of the user account.
• C、Run the Knowledge Consistency Checker （KCC） on the RODC.
• D、Restore network communication between the branch office and the main office.

第5题：

You deploy mobile devices that run Microsoft Windows Mobile 5.0 with Microsoft Messaging and Security Feature Pack. A server that runs Microsoft Exchange Server 2003 Service Pack 2 is configured by using the default installation settings.   Company security policy requires a complex password for unlocking the Windows Mobilebased devices.   You need to ensure that the Windows Mobilebased devices that perform Microsoft ActiveSync synchronization meet the company security policy.   Which two actions should you perform？（）

• A、Enter all mobile device users in the Exceptions list.
• B、Enable the Require both numbers and letters option.
• C、Enable the Allow access to devices that do not fully support password settings option.
• D、Enable the Minimum password length （characters） option. Configure a value of 6 or greater.

第6题：

. Your network consists of a single Active Directory domain. All servers run Windows Server 2003 Service Pack 2 (SP2). You create a new domain user account named User1 and assign the account a password of P@ssw0rd. On the new account, you enable the User must change password at next logon option. A week later, you discover that User1 is still using the password P@ssw0rd to log on to the domain. You need to ensure that User1 is forced to use a different password the next time she changes her password. What should you do first? （）

• A、In the Default Domain Policy, select Enforce password history.
• B、In the Default Domain Policy, select Passwords must meet complexity requirements.
• C、From the User’s account properties, select Account is sensitive and cannot be delegated.
• D、From the User’s account properties, select Store password using reversible encryption.

第7题：

Your portable computer is in sleep mode. When you resume work on the portable computer， you are not prompted for a password.  You need to ensure that you are prompted for a password each time the portable computer recovers from sleep mode.  What should you do？（）

• A、Configure the computer to hibernate when not in use.
• B、In the current power plan settings， configure the computer to require a password when recovering from sleep mode.
• C、Configure the computer to use the High Performance power plan.
• D、Configure the screen saver settings to require a password on resumption of work.

第8题：

第9题：

Your company has a main office and a branch office.  The network contains an Active Directory domain.   The main office contains a writable domain controller named DC1. The branch office contains a read-only  domain controller （RODC） named DC2.   You discover that the password of an administrator named Admin1 is cached on DC2.  You need to prevent Admin1s password from being cached on DC2.   What should you do（）

• A、Modify the NTDS Site Settings.
• B、Modify the properties of the domain.
• C、Create a Password Setting object （PSO）.
• D、Modify the properties of DC2s computer account.

第10题：

Your company has a main office and a branch office You deploy a read-only domain controller （RODC） that runs Microsoft Windows Server 2008 to the branch office You need to ensure that users at the branch office are able to log on to the domain by using the RODC What should you do（）

• A、Add another RODC to the branch office
• B、Configure a new bridgehead server in the main office
• C、Configure the Password Replication Policy on the RODC
• D、Decrease the replication interval for all connection objects by using the Actrve Directory Sites and Services console