Microsoft Exam 70-744 Topic 8 Question 3 Discussion

Actual exam question for Microsoft's 70-744 exam

Question #: 3
Topic #: 8

Your network contains an Active Directory domain named contoso.com. The domain contains 1,000 client computers that run Windows 10.

A security audit reveals that the network recently experienced a Pass-the-Hash attack. The attack was initiated from a client computer and accessed Active Directory objects restricted to the members of the Domain Admins group.

You need to minimize the impact of another successful Pass-the-Hash attack on the domain.

What should you recommend?

AInstruct all users to sign in to a client computer by using a Microsoft account.

BMove the computer accounts of all the client computers to a new organizational unit (OU). Remove the permissions to the new OU from the Domain Admins group.

CInstruct all administrators to use a local Administrators account when they sign in to a client computer.

DMove the computer accounts of the domain controllers to a new organizational unit (OU). Remove the permissions to the new OU from the Domain Admins group.

Show Suggested Answer

Suggested Answer: C

https://docs.microsoft.com/en-us/windows/access-protection/remote-credential-guard

by Joni at May 08, 2022, 07:09 AM

Limited Time Offer

25%

Off

Get Premium 70-744 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!