Your network contains an Active Directory domain named contoso.com. The password policy for the domain is set to require a minimum password length of 10 characters. A user named User1 and a user named User2 work for the sales department. User1 is forced to create a domain password that has a minimum of 12 characters. User2 is forced to create a domain password that has a minimum of eight characters. You need to identify what forces the two users to have different password lengths.
Which tool should you use?
A . Credential Manager
B . Security Configuration Wizard (SCW)
C . Group Policy Management
D . Active Directory Administrative Center
Answer: D
Explanation:
In Windows Server 2008, you can use fine-grained password policies to specify multiple password policies and apply different password restrictions and account lockout policies to different sets of users within a single domain. For example, to increase the security of privileged accounts, you can apply stricter settings to the privileged accounts and then apply less strict settings to the accounts of other users. Or in some cases, you may want to apply a special password policy for accounts whose passwords are synchronized with other data sources.
This is found in the Active Directory Administrative Center. You can use Active Directory Administrative Center to perform the following Active Directory administrative tasks:
Create new user accounts or manage existing user accounts
Create new groups or manage existing groups
Create new computer accounts or manage existing computer accounts
Create new organizational units (OUs) and containers or manage existing OUs
Connect to one or several domains or domain controllers in the same instance of Active Directory Administrative Center, and view or manage the directory information for those domains or domain controllers
Filter Active Directory data by using query-building search
Reference: http://technet.microsoft.com/en-us/library/cc770842(v=ws.10).aspx