nerdexam
CompTIA

SY0-301 · Question #776

The system administrator is tasked with changing the administrator password across all 2000 computers in the organization. Which of the following should the system administrator implement to accomplis

The correct answer is B. A group policy. Group Policy (GPO) in a Windows Active Directory environment allows administrators to centrally define and push configuration settings - including password policies - to all computers in the domain simultaneously. This is the correct tool for making a change across 2,000 endpoint

Security operations

Question

The system administrator is tasked with changing the administrator password across all 2000 computers in the organization. Which of the following should the system administrator implement to accomplish this task?

Options

  • AA security group
  • BA group policy
  • CKey escrow
  • DCertificate revocation

How the community answered

(59 responses)
  • A
    8% (5)
  • B
    86% (51)
  • C
    3% (2)
  • D
    2% (1)

Explanation

Group Policy (GPO) in a Windows Active Directory environment allows administrators to centrally define and push configuration settings - including password policies - to all computers in the domain simultaneously. This is the correct tool for making a change across 2,000 endpoints without touching each machine individually. A security group is used to organize users/computers for permission assignment, not to push configuration changes. Key escrow stores encryption keys with a third party. Certificate revocation invalidates PKI certificates. None of those alternatives accomplish a mass password change.

Topics

#group policy#password management#account management#enterprise administration

Community Discussion

No community discussion yet for this question.

Full SY0-301 Practice