70-298 training material description
70-298 pdf we provide are in a format of PDF, including all exam questions and answers.
It is different from traditional study materials for not only just help you summarize the main points, these dumps contains the majority of the real test questions which you will see in the 70-298 dumps. In order not to waste your valuable time, we removed all unrelated questions, the questions are enough for you to prepare for your test, we can promise to you that we have the coverage for at least 96%.
Question 1
You need to design a method to log changes that are made to servers and domain controllers. You also need
to track when administrators modify local security account manager objects on servers. What should you do?
A. Enable failure audit for privilege use and object access on all servers and domain controllers.
B. Enable success audit for policy change and account management on all servers and domain controllers.
C. Enable success audit for process tracking and logon events on all servers and domain controllers.
D. Enable failure audit for system events and directory service access on all servers and domain controllers.
Answer: B
Question 2
You need to design a strategy to ensure that all servers are in compliance with the business requirements
for maintaining security patches. What should you do?
A. Log on to a domain controller and run the Resultant Set of Policy wizard in planning mode on the domain.
B. Log on to each server and run Security Configuration and Analysis to analyze the security settings by using
a custom security template.
C. Create a logon script to run the secedit command to analyze all servers in the domain.
D. Run the Microsoft Baseline Security Analyzer (MBSA) on a server to scan for Windows vulnerabilities on all
servers in the domain.
Answer: D