New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft AZ-801 Exam - Topic 6 Question 45 Discussion

Actual exam question for Microsoft's AZ-801 exam
Question #: 45
Topic #: 6
[All AZ-801 Questions]

Your network contains an Active Directory Domain Services (AD DS) forest. The forest contains a user named User1. You deploy a read-only domain controller (RODQ named RODC1.

You need to ensure that User1 is a local administrator on RODC1. The solution must use the principle of least privilege. What should you use?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Carin at Dec 26, 2023, 09:13 PM

Limited Time Offer

25%

Off

Get Premium AZ-801 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Van
3 months ago
Wait, can you really do that with Computer Management? Sounds too easy!
upvoted 0 times
...
Xochitl
3 months ago
ntdsutil.exe is for directory services, not local admin stuff.
upvoted 0 times
...
Theola
3 months ago
I thought you couldn't add users directly to RODCs?
upvoted 0 times
...
Dannette
4 months ago
Definitely B! Makes the most sense for local admin rights.
upvoted 0 times
...
Katie
4 months ago
You can use Computer Management to add local admins on RODC.
upvoted 0 times
...
Edna
4 months ago
I’m leaning towards using ntdsutil.exe, but I’m not completely confident it’s the best option for ensuring least privilege for User1.
upvoted 0 times
...
Henriette
4 months ago
I vaguely recall that dsamain.exe is used for directory services, but I don't think it applies to local admin tasks on an RODC.
upvoted 0 times
...
Solange
4 months ago
I think we practiced a similar question where we had to manage user permissions on a server. I feel like Computer Management might be the right choice here.
upvoted 0 times
...
Renato
5 months ago
I remember we discussed how RODCs have different management requirements, but I'm not sure which tool to use for adding local admins.
upvoted 0 times
...
Belen
5 months ago
I've got a good feeling about this one. The solution is probably using one of the Active Directory management tools to grant User1 the appropriate permissions on the RODC1 server.
upvoted 0 times
...
Howard
5 months ago
Okay, I've got this. The solution involves granting User1 the necessary permissions on the RODC1 server, but it has to be done in a way that follows the principle of least privilege.
upvoted 0 times
...
Sheridan
5 months ago
Hmm, the key here is using the principle of least privilege. I think I know the right approach, but I'll double-check my understanding.
upvoted 0 times
...
Orville
5 months ago
This question seems straightforward, but I want to make sure I understand the requirements correctly before answering.
upvoted 0 times
...
Tracey
5 months ago
I'm a bit confused about the difference between a read-only domain controller and a regular domain controller. I'll need to review that before I can confidently answer this question.
upvoted 0 times
...
James
5 months ago
Hmm, I'm a bit unsure about this one. I'll have to think it through carefully to make sure I don't miss anything.
upvoted 0 times
...
Marilynn
5 months ago
Okay, let's see here. I think the key is to find a way to filter the logs specifically for port-access events. I'm leaning towards option B, but I'll need to double-check the details.
upvoted 0 times
...
Lenna
10 months ago
I wonder if User1 is related to that guy from 'The Office' - you know, the one who always seems to be causing trouble?
upvoted 0 times
Sommer
8 months ago
C) ntdsutil.exe
upvoted 0 times
...
Skye
8 months ago
B) Computer Management
upvoted 0 times
...
Joanne
8 months ago
A) dsamain.exe
upvoted 0 times
...
...
Berry
10 months ago
net user? Now we're talking! That sounds like the simplest and most direct way to add a user to the local admin group on the RODC.
upvoted 0 times
Alexia
8 months ago
Exactly, keeping it simple with net user is the best approach for adding User1 as a local admin on RODC1.
upvoted 0 times
...
Miesha
8 months ago
I agree, net user is the simplest option. No need to overcomplicate things with other tools.
upvoted 0 times
...
Remona
9 months ago
Net user is definitely the way to go. It's straightforward and gets the job done quickly.
upvoted 0 times
...
Gearldine
9 months ago
D) net user
upvoted 0 times
...
Jerrod
9 months ago
C) ntdsutil.exe
upvoted 0 times
...
Ming
9 months ago
B) Computer Management
upvoted 0 times
...
Marquetta
9 months ago
A) dsamain.exe
upvoted 0 times
...
...
Graciela
10 months ago
ntdsutil.exe? Really? That seems like the wrong approach. Isn't that for managing the Active Directory database directly?
upvoted 0 times
Cordelia
8 months ago
I agree, Computer Management would be the best option for granting local administrator rights.
upvoted 0 times
...
Nickie
8 months ago
Yeah, ntdsutil.exe doesn't seem like the right tool for this task.
upvoted 0 times
...
Paz
8 months ago
I think we should use Computer Management to make User1 a local administrator on RODC1.
upvoted 0 times
...
Tamesha
8 months ago
D) net user
upvoted 0 times
...
Martin
8 months ago
C) ntdsutil.exe
upvoted 0 times
...
Jannette
10 months ago
B) Computer Management
upvoted 0 times
...
Deangelo
10 months ago
A) dsamain.exe
upvoted 0 times
...
...
Gregoria
10 months ago
I'm not sure, but I think ntdsutil.exe could also be used to achieve the same result. It's worth considering as well.
upvoted 0 times
...
Lawana
10 months ago
Computer Management? Nah, that's probably overkill. I'm guessing we need something more targeted for this task.
upvoted 0 times
Mable
9 months ago
C) ntdsutil.exe
upvoted 0 times
...
Judy
9 months ago
A) dsamain.exe
upvoted 0 times
...
Frederica
10 months ago
C) ntdsutil.exe
upvoted 0 times
...
Carma
10 months ago
A) dsamain.exe
upvoted 0 times
...
...
Ciara
10 months ago
I agree with Mari. Using Computer Management is the best option to grant User1 local administrator access on RODC1.
upvoted 0 times
...
Alisha
10 months ago
Hmm, I'm not sure that dsamain.exe is the right tool for this. Isn't that more for managing the NTDS database?
upvoted 0 times
...
Mari
10 months ago
I think the answer is B) Computer Management because you can manage local users and groups there.
upvoted 0 times
...
Ilona
11 months ago
I think ntdsutil.exe could also be used to make Lewis a local administrator on RODC1.
upvoted 0 times
...
Herminia
11 months ago
I agree with Lewis. Computer Management is the best option for this scenario.
upvoted 0 times
...
Lewis
11 months ago
I think we should use Computer Management to make Lewis a local administrator on RODC1.
upvoted 0 times
...

Save Cancel