Note: This question is part of a series of questions that present the same scenario. Each…

Question

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You deploy a new Active Directory forest.
You need to ensure that you can create a group Managed Service Account (gMSA) for multiple member servers.
Solution: From Windows PowerShell on a domain controller, you run the Add-KdsRootKey cmdlet.
Does this meet the goal?

Accepted Answer

Correct answer: A. A. Yes — The correct answer is A because running the Add-KdsRootKey cmdlet is necessary to create a key distribution service root key, which is essential for enabling group Managed Service Accounts (gMSAs) in the Active Directory environment. The other option, No, is incorrect as it does not consider the requirement of the KDS root key for gMSA functionality.

Identity with Windows Server 2016 — Question 55

Answer options

Correct answer: A

Explanation