You work as a desktop technician at YourCompany.com. The YourCompany.com network consists of a single Active Directory domain named YourCompany.com. All client computers on the YourCompany.com network run Windows 7 and are contained in an organizational unit (OU) named Win7Clients. The domain has recently been upgraded from a Windows 2003 domain to a Windows 2008 domain.
When YourCompany.com was a Windows 2003 domain, Software Restriction Policies were configured in a Group Policy object (GPO) to implement application control. The GPO is linked to the Win7Clients OU. You want to deploy Microsoft Office 2010 to client computers in the Win7Clients OU. You now configure the GPO to use AppLocker as the application control method.
How can you configure the AppLocker policies whilst ensuring that applications already installed on the client computers continue to function?
A. You should apply the Software Restriction Policy and AppLocker rules through a new Group Policy object (GPO).
B. You should apply the AppLocker rules through the Default Domain Controllers group policy.
C. You should apply the AppLocker rules through a new Group Policy object (GPO) linked to the Win7Clients OU.
D. You should apply the AppLocker rules through a new Group Policy object (GPO) linked to the domain. Block inheritance on the Win7Clients OU.
E. You should link the existing Group Policy object (GPO) to the domain.
