Possible Bad Question
From: georgewood (georgewood_at_verizon.net)
Date: 04/20/04
- Next message: The Poster Formerly Known as Kline Sphere: "Re: Poking Holes in the Firewall"
- Previous message: Jason: "Re: is there anyway to stop active directory services in Win2k?"
- In reply to: TechGeekPro: "Possible Bad Question"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 20 Apr 2004 05:04:43 GMT
ALL password policies are set at the domain level. It will override local
policies. ( A. ) looks like the best answer there.
"TechGeekPro" <%username%@yahoo.com> wrote in message
news:%23f9pCOOGEHA.1012@TK2MSFTNGP11.phx.gbl...
> I'm taking a practice test for the 70-218 using the CramMaster software.
>
> Question:
>
> Jennifer is an employee of a company called XYZ Dimensions Inc. located in
> Chicago. Jennifer is currently using a stand-alone Windows 2000
Professional
> workstation, named JennyW2KP, to use a locally installed graphics editing
> application. As the administrator, you are going to add JennyW2KP to the
> Windows 2000 Domain, named XYZDimensions.edu, which currently consists of
> one Windows 2000 Server Domain Controller and four Windows 2000
Professional
> workstations.
>
> Before adding JennyW2KP to the XYZDimensions.edu Domain, you use the Local
> Group Policy MMC snap-in on JennyW2KP and configure the account lockout
> policy to lock out Jennifer's local user account after three bad logon
> attempts. Afterwards, you configure the Default Domain Controllers Policy
to
> lockout Jennifer's Domain Account after two bad logon attempts.
>
> What will be Jennifer's result if she attempts to logon to the Windows
2000
> Network using her Domain Logon account and providing an invalid password
> both times? Select the correct answer.
>
> A Jennifer will be locked out of the Windows 2000 Network for a
> configured amount of time designated by the administrator.
>
> B Jennifer will be allowed three more logon attempts to the Windows
> 2000 Network because the Local Group Policy and Default Domain Controllers
> Policy cumulatively allow her five bad logon attempts.
>
> C Jennifer will be allowed one more logon attempt to the Windows
2000
> Professional machine because the Local Group Policy allows her three bad
> logon attempts.
>
> D Jennifer will be allowed one more logon to the Windows 2000
Network
> because the Local Group Policy overrides the Group Policy.
>
>
> Correct answer:
>
> B Jennifer will be allowed three more logon attempts to the Windows
> 2000 Network because the Local Group Policy and Default Domain Controllers
> Policy cumulatively allow her five bad logon attempts.
>
>
> Explanation:
>
> Jennifer is using a Domain User account, which is impacted by the settings
> the administrator configured in the Default Domain Controllers Policy.
>
>
> My question is, since she is not logging on to a domain controller, I
> thought she wouldn't be affected by the default doamin controllers policy,
> therefore, her account should be locked out.
>
> Am I way off base here or is this a bad question?
>
> --
> I may not be fully certified, but I am fully certifiable.
>
>
>
- Next message: The Poster Formerly Known as Kline Sphere: "Re: Poking Holes in the Firewall"
- Previous message: Jason: "Re: is there anyway to stop active directory services in Win2k?"
- In reply to: TechGeekPro: "Possible Bad Question"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
