You're correct. Actually, the answer shown is the first step to enable DNSSEC. To make all DNS clients to use DNSSEC, you'll need to create a GPO following these steps:
1. Group Policy Management:
Open the Group Policy Management Console (GPMC) on a domain controller.
2. Create or Edit a GPO:
Create a new Group Policy Object (GPO) or edit an existing one that applies to all computers in the domain.
3. Navigate to DNS Client Settings:
Go to Computer Configuration > Policies > Administrative Templates > Network > DNS Client.
4. Enable DNSSEC Settings:
- Turn on DNSSEC in this rule: Set to Enabled.
- Configure DNSSEC validation: Set to Validation is required.
- Configure DNSSEC name resolution behavior: Set to Always require DNSSEC in responses.
Maybe it has moved, its now under:
Computer Configuration > Policies > Windows Settings > Name Resolution Policy
ADMX File date: 1-apr-2024.
upvoted 1 times
...
...
...
This section is not available anymore. Please use the main Exam Page.AZ-800 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Hull1
7 months, 1 week agonublit
7 months agoltkiller
2 months, 4 weeks ago