Securing Windows Server 2016 — Question 104

Your network contains an Active Directory domain named contoso.com. The domain contains two servers named Server1 and Server2. The domain has Dynamic
Access Control enabled.
Server1 contains a folder named C:\Folder1. Folder1 is shared as Share1.
You need to audit all access to the contents of Folder1 from Server2. The solution must minimize the number of event log entries.
Which two audit policies should you enable on Server1? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

Answer options

• A. Global Object Access- File System
• B. Object Access "" Audit Detailed File Share
• C. Object Access "" Audit Other Object Access Events
• D. Object Access "" Audit File System
• E. Object Access "" Audit File Share

Correct answer: B, E

Explanation

The correct answers are B and E because enabling 'Audit Detailed File Share' (B) will provide specific access details to the shared folder, while 'Audit File Share' (E) will log access attempts to the shared resource itself. The other options either do not target shared folder access specifically or would generate excessive log entries, which contradicts the requirement to minimize event log entries.