Upgrading Your Skills to MCSA Windows Server 2012 — Question 20

Your network contains two servers named Server1 and Server2 that run Windows Server 2012 R2. Server1 and Server2 are part of a workgroup.
On Server1 and Server2, you create a local user account named Admin1. You add the account to the local Administrators group. On both servers, Admin1 has the same password.
You log on to Server1 as Admin1. You open Computer Management and you connect to Server2.
When you attempt to create a scheduled task, view the event logs, and manage the shared folders, you receive Access Denied messages.
You need to ensure that you can administer Server2 remotely from Server1 by using Computer Management. What should you configure on Server2?

Answer options

• A. From Local Users and Groups, modify the membership of the Remote Management Users group.
• B. From Server Manager, modify the Remote Management setting.
• C. From Windows Firewall, modify the Windows Management Instrumentation (WMI) firewall rule.
• D. From Registry Editor, configure the LocalAccountTokenFilterPolicy resgistry value

Correct answer: D

Explanation

The correct answer is D because configuring the LocalAccountTokenFilterPolicy registry value allows local accounts to have administrative access over remote connections in a workgroup scenario. The other options do not address the specific issue of access denial for local accounts in this context.