What should you do?

Your network contains an Active Directory forest named contoso.com. You deploy another Active Directory forest named admin.contoso.com.
You create a trust relationship between the two forests. The trust relationship has the following configurations:
SID history is disabled
SID filtering is disabled
You need to implement Privileged Access Management (PAM) and to specify admin.contoso.com as an administrative forest. What should you do?
A. Run netdom.exe and specify the /quarantine switch.
B. Enable SID filtering on the trust.
C. Run netdom.exe and specify the /transitive switch.
D. Enable SID history on the trust.

microsoft-exams

4 thoughts on “What should you do?

  1. I am not sure about this question. Looks like we need two action:
    netdom trust corp.secid.se /domain:priv.secid.se /ForestTRANsitive:Yes
    netdom trust corp.secid.se /domain:priv.secid.se /EnableSIDHistory:Yes
    So what answer is fit better?

Leave a Reply

Your email address will not be published. Required fields are marked *


The reCAPTCHA verification period has expired. Please reload the page.