Configuring Windows Server Hybrid Advanced Services — Question 36

Your network contains an Active Directory Domain Services (AD DS) forest. The forest contains a user named User1.

You deploy a read-only domain controller (RODC) named RODC1.

You need to ensure that User1 is a local administrator on RODC1. The solution must use the principle of least privilege.

What should you use?

Answer options

• A. ntdsutil.exe
• B. dsamain.exe
• C. net user
• D. Local Users and Groups

Correct answer: A

Explanation

The correct answer is A, ntdsutil.exe, which is used to manage Active Directory and can help in configuring the RODC to include User1 as a local administrator. Options B (dsamain.exe) is used for restoring Active Directory databases, C (net user) is for managing user accounts, and D (Local Users and Groups) is not suitable for RODC configuration tasks, making them incorrect choices.