To comply with a new email retention policy, where should an administrator configure settings? (Select THREE)

To address compliance with an email retention policy effectively, the most relevant places to configure settings are primarily on the email server, where emails are hosted and managed. The email server holds the necessary configurations for retention settings, allowing administrators to dictate how long emails are kept, when they should be archived, or how they should be deleted based on the policy.

Moreover, domain controllers can play a significant role in enforcing security policies and access controls that might relate to email data management, though the core retention policies would still be managed at the email server level.

Choosing local workstations is less optimal because retention policies should be centralized and applied across the entire organization to ensure consistency and compliance. Workstations may have individual settings, but relying on them could lead to discrepancies in policy enforcement. Backup tapes are also not suitable for configuring retention policies since they are used primarily for recovering data, not for the management of retention cycles in real-time.

Ultimately, configuring retention settings directly on the email server ensures that the policy is consistently applied and managed effectively across the entire organization.