A company has an Active Directory Domain Services (AD DS) domain. All servers run Windows Server 2008 R2.
The company plans to open a branch office that will be available for the use of up to 250 traveling Sales department staff. Finance department staff will also use the office during financial audits. The branch office does not have a secure location in which to store network equipment and servers. A password policy enforces eight-character passwords across the domain.
You are designing a server deployment strategy for the new branch office. You have the following requirements:
- Minimize logon time for Sales department staff.
- Maximize domain security for Finance department staff.
You need to design a deployment strategy that meets the requirements.
What should you recommend? (More than one answer choice may achieve the goal. Select the BEST answer.)
A. Install a read-only domain controller (RODC) and configure it as a Global Catalog Server.
B. Install a read-only domain controller (RODC). Set a password replication policy to deny replication of only the Finance security group.
C. Install a read-only domain controller (RODC). Set a password replication policy to allow replication of only the Sales security group.
D. Install a writeable domain controller. Create a fine-grained password policy to enforce complex 15-character passwords for the Finance department.
