HOTSPOT
-
Your network contains an Active Directory Domain Services (AD DS) domain named contoso.com.
The domain contains the users shown in the following table.
The domain has the Group Policy Objects (GPOs) shown in the following table.
The GPOs are configured as shown in the following table.
For each of the following statements, select Yes if the statement is true, Otherwise, select No.
NOTE: Each correct selection is worth one point.
No granular password policies are mentiod. So the Default Domain Policy is leading. In this case minimal password length of 8. So: YES NO NO
You're correct. To add to this, only 1 password policy can be in effect for a domain and can only be defined in the default domain policy, or in another GPO linked to the root domain and that would be given precedence. The only way to have multiple is to use fine grained policies.
YNN should be the answer
This question tricked me since I forgot that password policy can only be applied at the root domain level, so I appreciate the other comments indicating that. I just wanted to mention that User3 is also a red herring - password length is a Computer policy, so the fact that User3 resides in an OU where that policy is applied would make no difference unless loopback was enabled. It's a moot point, but important in its own way in case that failed to trip something in your head.
Actually I take back my mention of loopback as well - it works for user policy in a computer OU, not computer policy in a user OU. So forget I mentioned it - computer policy in a user OU would simply never be enforced (unless the user and computer both reside in that same OU).