contestada

You have three users who travel to four branch offices often and need to log on to the RODCs at these offices. The branch offices are connected to the main office with slow WAN links. You don't want domain controllers at the main office to authenticate these three users when they log on at the branch offices. What should you do that requires the least administrative effort yet adheres to best practices?

Respuesta :

Lanuel

Answer:

Create a new global group named "Universal".

Explanation:

As a network engineer, you can use a configuration to create a new global group named "Universal" and add the four users to this group. You then add the "Universal" group to the Allowed Read Only Domain Controllers (RODC) Password Replication group thereby preventing domain controllers at the main office to authenticate.