Refer to the exhibits.
An administrator created a Deny policy with default settings to deny Webserver access for Remote-User2. Remote-User1 must be able to access theWebserver. Remote-User2 must not able to access the Webserver.
Which two changes can the administrator make to deny Webserver access for Remote-User2? (Choose two.)

A. Set the Destination address as Deny_IP in the Allow_access policy. B. Enable match-vip in the Deny policy. C. Set the Destination address as Webserver in the Deny policy. D. Disable match-vip in the Deny policy.