contestada

You work as the IT security administrator for a small corporate network. You plan to configure AppLocker rules for workstations on your network. As a result, you need to make sure the Application Identity service is running on all workstations. You have also identified several services that should not be running because of security concerns. You want to make sure that these services are not running on any workstations. All workstations reside in a container named Workstations in Active Directory. A GPO named WorkstationGPO is linked to this container. In this lab, your task is to configure the Workstation GPO with the following settings:

Respuesta :

MrRoyal

Question Continuation

Service Setting

Application Identity Automatic

Remote Registry Disabled

Routing and Remote Access Disabled

SSDP Discovery Disabled

UPnP Device Host Disabled

Answer:

You'll need to do the following:

1. Modify the Application Identity service to Automatic

2. Disable the Remote Registry service

3. Also, Disable the Routing and Remote Access service

4. Disable the SSDP Discovery service

And lastly

5. Disable UPnP Device Host service

Explanation

After you have configured the Workstation GPO with the settings (in Answer) above

You then ensure that the following are completed.

1. Goto-> Server Manager,

Select Tools >

Select Group Policy Management.

2. Expand Forest: CorpNet.com

- > Domains

- > CorpNet.com

-> Group Policy Objects.

3. Right-click WorkstationGPO

Then select Edit.

4. Under Computer Configuration,

-> Expand Policies

- > Windows Settings

- > Security Settings.

5. Select System Services.

6. In the right pane, double-click the policy to edit.

7. Select Define this policy setting.

8. Select the policy setting; then click OK.

9. Repeat this for other policies

Otras preguntas