Administering Windows Server Hybrid Core Infrastructure (AZ-800) Practice

Which Group Policy setting should an administrator change to tighten UAC elevation prompts?

• A. Behavior of elevation prompt for administrators in Admin Approval Mode.
• B. Behavior of elevation prompt for standard users.
• C. User Account Control: Switch to Secure Desktop.
• D. Account Control: Require additional credentials.

The correct answer is: Behavior of elevation prompt for standard users.

To tighten User Account Control (UAC) elevation prompts, changing the behavior of elevation prompts for standard users is essential. This setting specifically addresses how UAC responds to requests for administrative access from standard user accounts, which are more commonly used in a secure environment. By adjusting this setting, an administrator can reduce the frequency or verbosity of elevation prompts experienced by users, thereby streamlining the experience while maintaining security controls. When the behavior of elevation prompts for standard users is modified to be more restrictive, it ensures that the prompts are not only effective in requesting elevated privileges but also that they minimize interruptions to the user's workflow. Implementing this change helps to enforce discipline around elevated privileges, ensuring that users are only prompted for elevation when it is genuinely necessary, thereby enhancing overall security posture. While other settings related to UAC provide control over different aspects of privilege elevations and notifications, the focus on standard users directly impacts daily interactions with UAC, making it the most relevant choice for tightening elevation prompts in user scenarios.