You're the on-call security analyst at Helios Logistics. A quarterly review flagged the company's primary domain controller, HELIOS-DC01 (10.20.5.10), as never having been scanned. Using the web-based SentryScope Vulnerability Console, register the controller as a target, run a scan, read the report, then close the findings in Group Policy Management and re-scan to prove the gaps are gone.
Sign in to SentryScope
Console credentials are posted on the SOC whiteboard:
user analyst.kpatel · pass Helios#Scan26.
Targets
| Name | Address | Status |
|---|
Scan task
Scan report
| Advisory | Finding | Severity | Status |
|---|
Group Policy Management — HELIOS-DC01
Select Baseline Domain Policy, then set each flagged setting to its hardened value.
Computer Config › Security Options — "Server: digitally sign communications (always)"
Computer Config › Security Options — "Domain controller: LDAP server signing requirements"
Computer Config › Account Policies › Password Policy — "Minimum password length"
Computer Config › Security Options — "Network security: LAN Manager authentication level"
© 2026 [Author Name]. Original clean-room lab for CompTIA Security+ SY0-701 exam prep. Self-reported scoring; see instructor for graded validation.