Securing Windows Server 2016 — Question 112

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this sections, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your network contains an Active Directory domain named contoso.com. The domain contains a server named Server1 that runs Windows Server 2016.
You need to prevent NTLM authentication on Server1.
Solution: From a Group Policy, you configure the Kerberos Policy.
Does this meet the goal?

Answer options

• A. Yes
• B. No

Correct answer: B

Explanation

Configuring the Kerberos Policy does not disable NTLM authentication; instead, it focuses on Kerberos settings. To effectively prevent NTLM authentication, you would need to modify specific security settings that directly control NTLM usage, which is not accomplished through just Kerberos Policy configuration.