X

AZ-800 / Q4 / MS

Exam
Microsoft AZ-800
Answer confirmed
Microsoft Learinng Path Questions
Question

The on-premises network contains an Active Directory Domain Services (AD DS) domain. The domain contains two sites named Site1 and Site2. Site1 contains two domain controllers.

You need to deploy a domain controller to Site2. The solution must meet the following requirements:

  • Minimize administrative effort.
  • Maximize security.

What should you deploy to Site2?

Proposed answer
  • a read-only domain controller (RODC)
  • A domain controller in Azure
  • A replica domain controller
  • Microsoft Entra Domain Services
Suggested answer
  • a read-only domain controller (RODC)

 

Correct answer

An RODC addresses a scenario of sites with poor physical security and no IT staff.

  • Correct – An RODC addresses a scenario of sites with poor physical security and no IT staff.
  • Incorrect - A domain controller in Azure will not enable local domain resiliency.
  • Incorrect - A replica domain controller is not recommended because of security issues caused by no server room or IT staff.
  • Incorrect – Microsoft Entra Domain Services is not an option as the resources are not in Azure.

Install a Windows Server 2012 Active Directory Read-Only Domain Controller (RODC) (Level 200) | Microsoft Learn

Related exam questions

AZ-800 / Q7 / T1

Your network contains a single domain Active Directory Domain Services (AD DS) forest named contoso.com. The forest contains a single Active Directory site.

AZ-800 / Q4 / MS

The on-premises network contains an Active Directory Domain Services (AD DS) domain. The domain contains two sites named Site1 and Site2. Site1 contains two domain controllers.