Discuss the two group classifications that exist in Windows Server 2012 R2 describing both the group type and group scope. Is there a reason you would use one scope over another? Solution A group is a collection of users and accouts that can be managed as a single unit. The 2 group classification in Windows 2012 are 1. Distribution group 2. Security group Distribution groups are only created to use email applications (like Exchange Server) to send emails to a group of users. It is a feature introduced by Office 365 and allows sending emails to large number of people both inside and outside the organization. It eliminates sending individual emails to users. Bulk emails can be sent to a large group of users. The only purpose of distribution group is to share information Security groups are sets of users who have the same access rights, permission to resources and performs same kind of tasks. There can be many security groups and a user can belong to more than 1 security group. It facilitates administrators to assign same set of permissions to users rather than individually assigning permissions to each one of them. There are 3 group scopes as follows: 1. Universal scope: It can have users, accounts, groups or other universal groups from any domain. Users can add members from any domain to an universal group and can assign permission to access any resource located in any domain. 2. Global scope: These are containers for users and accounts which can be assigned permission to objects in any domain. However, it can only have members from the domain in which it is created. 3. Domain local group: These can have users and accounts from any domain as member. However, only domain local groups can assign permissions to local resources or to resources that reside in the domain in which the domain local group was created. It is preferable to choose domain local group scope as it provides more security than the other 2 scopes. Also, the applied restrictions mean limited resources are utilized by the group..