Configuring Advanced Windows Server 2012 Services — Question 109

Your network contains an Active Directory domain named contoso.com. The domain contains a file server named Server1 and a domain controller named DC1. All servers run Windows Server 2012 R2. A Group Policy object (GPO) named GPO1 is linked to the domain.
Server1 contains a folder named Folder1. Folder1 is shared as Share1.
You need to ensure that authenticated users can request assistance when they are denied access to the resources on Server1.
Which two actions should you perform? (Each correct answer presents part of the solution. (Choose two.)

Answer options

• A. Assignthe Read Attributes NTFS permission on Folder1 to the Authenticated Users group.
• B. Install the File Server Resource Manager role service on Server1.
• C. Configure the Customize message for Access Denied errors policy setting of GPO1.
• D. Enable the Enableaccess-denied assistance on client for all file types policy setting for GPO1.
• E. Install the File Server Resource Manager role service on DC1.

Correct answer: B, D

Explanation

The correct answers are B and D. Installing the File Server Resource Manager role service on Server1 (B) is necessary to manage and configure access-denied assistance features. Enabling the access-denied assistance setting in GPO1 (D) allows users to request help when they encounter access issues. The other options do not provide the necessary configuration to achieve the desired functionality.