Final answer:
In a new Active Directory domain, two GPOs are automatically created: the Default Domain Policy and the Domain Controllers Policy. Option c. Both a and b.
Step-by-step explanation:
When creating a new Active Directory (AD) domain, there are indeed two Group Policy Objects (GPOs) that are automatically created. These are the Default Domain Policy and the Domain Controllers Policy. The Default Domain Policy is applied to the entire domain and is used to configure security settings, password policies, and account lockout policies for all users and computers in the domain. The Domain Controllers Policy is applied specifically to domain controllers and includes settings that are meant to be more restrictive as domain controllers are critical servers that maintain the security and integrity of the entire domain.
It is important to not modify these default GPOs extensively, as this could lead to unintended consequences across the domain. Instead, it is recommended to create new GPOs for specific purposes and to use the default GPOs as a baseline or template. Additionally, the Default Domain Policy and the Domain Controllers Policy should be regularly backed up as part of disaster recovery plans as they both play a critical role in the operation and security of the domain.