Upgrading Your Skills to MCSA Windows Server 2012 — Question 68

Note: This question is part of a series of questions that use the same or similar answer choices. An answer may be correct for more than one question in the series. Each question is independent of the other questions in this series. Information and details provided in a question apply only to that question.
Your network contains one Active Directory domain named contoso.com. The forest functional level is Windows Server 2012. All servers run Windows Server
2012 R2. All client computers run Windows 8.1.
The domain contains 10 domain controllers and a read-only domain controller (RODC) named RODC01. All domain controllers and RODCs are hosted on a
Hyper-V host that runs Windows Server 2012 R2.
You need to identify which domain controllers are authorized to be cloned by using virtual domain controller cloning.
Which cmdlet should you use?

Answer options

• A. Get-AdGroupMember
• B. Get-ADDomainControllerPasswordReplicationPolicy
• C. Get-ADDomainControllerPasswordReplicationPolicyUsage
• D. Get-ADDomain
• E. Get-ADOptionalFeature
• F. Get-ADAccountAuthorizationGroup
• G. Get-ADAuthenticationPolicySilo
• H. Get-ADAuthenticationPolicy

Correct answer: A

Explanation

The correct answer is A, Get-AdGroupMember, as it retrieves members of an Active Directory group, helping you identify which domain controllers are authorized for cloning. The other options either relate to password replication policies or account authorization, which do not directly address the cloning capability of the domain controllers.