What type of group is created for managing the read-only domain controller (RODC)?

The correct answer is that a global security group is created for managing the read-only domain controller (RODC). Global security groups are designed to contain user accounts, computer accounts, and other groups from the same domain. They are particularly useful for organizing users and assigning permissions across resources within the domain.

When it comes to RODCs, using a global security group allows for efficient management and streamlined access control, as these groups can be used to assign permissions to resources within the domain. Since RODCs are domain-specific, global groups are the most fitting choice because they enable well-defined access management that is necessary for the secure operations of an RODC.

Other types of groups, while valuable in different contexts, do not align as closely with the needs of managing an RODC. Local security groups, for example, are limited to the local machine they exist on and cannot be effectively used across domains. Universal groups can contain accounts from any domain, but they may not be necessary when the RODC's management needs are restricted to accounts within the same domain. Domain local groups are specifically tailored to assign permissions for resources within that domain and may not be optimal for RODC management when you need a broader scope across the domain while still focusing on