nerdexam
Microsoft

70-649 · Question #326

70-649 Question #326: Real Exam Question with Answer & Explanation

The correct answer is D. Reset the password of User1, and then force Active Directory replication.. See the full explanation below for the reasoning.

Question

Your network contains an Active Directory domain named contoso.com. The domain has a branch site that contains a read-only domain controller (RODC) named RODC1. A user named User1 is a member of the Allowed RODC Password Replication Group. User1 frequently logs on to a computer in the branch site. You remove User1 from the Allowed RODC Password Replication Group. You need to ensure that the password of User1 is no longer cached on R0DC1. What should you do?

Options

  • AAdd User1 to the Denied RODC Password Replication Group, and then force Active Directory
  • BRunrepadmin /rodcpwdrepl rodc2.contoso.com dc.contoso.com cn=User1,cn-
  • CRunrepadmin /prp delete rodcl.contoso.com allow cn=User1, cn=users, dc=contoso,dc=com.
  • DReset the password of User1, and then force Active Directory replication.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 70-649 Practice