220-1102 Question #721: Real Exam Question with Answer & Explanation

The correct answer is C: gpupdate. To enforce a company's security policy that prohibits USB drives, a network administrator should use Group Policy to disable USB access and then run gpupdate to apply the new policy settings to workstations.

Security

Question

A network administrator wants to enforce a company's security policy that prohibits USB drives on user workstations. Which of the following commands should the administrator run on the users' workstations?

Options

Adiskpart
Bchown
Cgpupdate
Dnetstat

Explanation

To enforce a company's security policy that prohibits USB drives, a network administrator should use Group Policy to disable USB access and then run gpupdate to apply the new policy settings to workstations.

Common mistakes.

A. diskpart is a command-line utility used for managing disk partitions and volumes, not for enforcing system-wide security policies like disabling USB access.
B. chown is a Unix-like command used to change the owner of files and directories, which is irrelevant for enforcing USB drive policies on Windows workstations.
D. netstat displays network connections, routing tables, and network interface statistics, which is unrelated to enforcing hardware access policies like prohibiting USB drives.

Concept tested. Group Policy enforcement

Reference. https://learn.microsoft.com/windows-server/administration/windows-commands/gpupdate

Topics

#Group Policy#Security Policy#Windows administration#USB restriction

Community Discussion

No community discussion yet for this question.

Full 220-1102 Practice Browse All 220-1102 Questions