Help
Options
Didn't know it?
click below
click below
Knew it?
click below
click below
Don't Know
Remaining cards (0)
Know
retry
shuffle
restart
0:00
Embed Code - If you would like this activity on your web page, copy the script below and paste it into your web page.
Normal Size Small Size show me how
Normal Size Small Size show me how
microsoft study gaid
lol
| Question | Answer |
|---|---|
| The process of keeping each domain controller in synch with changes that have been made elsewhere on the network is called __________. | replication |
| What allows businesses to define, manage, access, and secure network resources including files, printers, people, and applications? | directory service |
| A Windows Server 2008 computer that has been configured with the Active Directory DS role is referred to as a __________. | domain controller |
| Interoperability with prior versions of Microsoft Windows is available in Windows Server 2008 through the use of __________. | functional levels |
| The largest container object within Active Directory is a(n) __________. | forest |
| The __________ Domain Controller contains a copy of the ntds.dit file that cannot be modified and does not replicate its changes to other domain controllers within Active Directory. | Read-Only |
| A __________ is defined as one or more IP subnets that are connected by fast links. | site |
| What protocol has become an industry standard that enables data exchange between directory services and applications? | LDAP |
| __________ is the highest available forest functional level. | Windows Server 2008 |
| Active Directory uses __________ relationships to allow access between multiple domains and/or forests, either within a single forest or across multiple enterprise networks. | trust |
| Which of the following is not a benefit of Active Directory Domain Services? | personalized desktops |
| What master database contains definitions of all objects in the Active Directory? | schema |
| What contains the rules and definitions that are used for creating and modifying object classes and attributes within Active Directory? | Schema NC |
| What locator records within DNS allow clients to locate an Active Directory domain controller or global catalog? | SRV records |
| A __________ name references an object in the Active Directory directory structure by using its entire hierarchical path, starting with the object itself and including all parent objects up to the root of the domain. | distinguished |
| Which functional level only allows Windows Server 2003 and Windows 2008 domain controllers? | Windows Server 2003 |
| When a child domain is created, it automatically receives a __________ trust with its parent domain. | two-way transitive |
| What type of trust is new to Windows Server 2008 and is only available when the forest functionality is set to Windows Server 2008? | parent-child trust |
| What shared folder exists on all domain controllers and is used to store Group Policy objects, login scripts, and other files that are replicated domain-wide? | SYSVOL |
| What is the process of replicating DNS information from one DNS server to another? | zone transfer |
| To raise the functional level of a forest, you must be logged on as a member of the __________ group. | Enterprise Admins |
| When modifying the schema, Microsoft recommends adding administrators to what group only for the duration of the task? | Schema Admins |
| __________ roles work together to enable the multimaster functionality of Active Directory. | FSMO |
| What processes can be used by Windows Server 2008 DNS to clean up the DNS database after DNS records become “stale” or out of date? | aging and scavenging |
| Each class or attribute that you add to the schema should have a valid __________. | OID |
| What command can you use to run the Active Directory Installation Wizard? | dcpromo |
| What SRV record information serves as a mechanism to set up load balancing between multiple servers that are advertising the same SRV records? | priority |
| What new Windows Server 2008 feature is a special installation option that creates a minimal environment for running only specific services and roles? | Server Core |
| What type of trust relationship allows you to create two-way transitive trusts between separate forests? | cross-forest |
| What utility is used to manually create trust relationships? | Active Directory Domains and Trusts MMC snap-in |
| Read-Only Domain Controllers provide added security in the way passwords are stored through what feature? | Password Replication Policy |
| What type of trust allows you to configure trust relationships between Windows Server 2008 Active Directory and a UNIX MIT Kerberos realm? | realm |
| What feature makes it possible to configure a user as the local administrator of a specific RODC without making the user a Domain Admins with far-reaching authority over all domain controllers in your entire domain and full access to your Active Directory | Admin Role Separation |
| What is the minimum amount of storage space required for the Active Directory installation files? | 200 MB |
| What type of zone is necessary for computer hostname-to-IP address mappings, which are used for name resolution by a variety of services? | forward lookup |
| What role provides developers with the ability to store data for directory-enabled applications without incurring the overhead of extending the Active Directory schema to support their applications? | AD LDS |
| When configuring a site link object, which attribute allows the administrator to define the path that replication will take? | cost |
| __________ partitions are used to separate forest-wide DNS information from domain-wide DNS information to control the scope of replication of different types of DNS data. | Application Directory |
| Active Directory __________ provide the means by which administrators can control replication traffic. | sites |
| What command-line tool is used to create, delete, verify, and reset trust relationships from the Windows Server 2008 command line? | netdom |
| What DLL must be registered to use the Schema Management snap-in? | schmmgmt.dll |
| How often does intrasite replication occur by default? | 15 seconds |
| Replication within Active Directory will occur when which of the following conditions is met? | All of the above: An object is added or removed from Active Directory, The value of an attribute has changed, and The name of an object has changed. |
| What is an alternative solution for intersite replication when a direct or reliable IP connection is not available? | SMTP |
| Domain controllers located in different sites will participate in __________ replication. | intersite |
| When you install the forest root domain controller in an Active Directory forest, the Active Directory Installation Wizard creates a single site named __________. | Default-First-Site-Name |
| The primary goal of intersite replication is to minimize the usage of __________. | bandwidth |
| What command-line tool used for monitoring Active Directory provides functionality that includes performing connectivity and replication tests? | dcdiag |
| What command-line tool can be used to manually create a replication topology if site link bridging is disabled if the network is not fully routed? | Repadmin |
| What describes the amount of time that it takes for all domain controllers in the environment to contain the most up-to-date information? | convergence |
| The KCC is responsible for calculating intrasite replication partners. During this process, what is the maximum number of hops that the KCC will allow between domain controllers? | 3 |
| For both intrasite and intersite replication, what protocol does Active Directory use for all replication traffic? | RPC over IP |
| What process is responsible for selecting a bridgehead server and mapping the topology to be used for replication between sites? | Intersite Topology Generator |
| When replicating information between sites, Active Directory will designate a __________ server in each site to act as a gatekeeper in managing site-to-site replication. | bridgehead |
| Certain operations, such as a password change or an account lockout, will be transmitted by using __________ replication, which means that the change will be placed at the “beginning of the line” and applied before any other changes that are waiting to be | urgent |
| Which of these design aspects should you consider when planning the appropriate location of FSMO role holders? | all of the above: number of domains that are or will be part of the forest, physical structure of the network, number of domain controllers that will be available in each domain |
| Active Directory creates a __________ with the idea that all writeable domain controllers in a domain should communicate Active Directory information to each other, in addition to communicating forest-wide information with other domains. | replication topology |
| What is a partial copy of all objects from other domains within the same forest that is held on a global catalog server? | partial attribute set |
| How often does replication occur in intersite replication by default? | 180 minutes |
| What defines a chain of site links by which domain controllers from different sites can communicate? | site link bridge |
| Which FSMO role has the authority to manage the creation and deletion of domains, domain trees, and application data partitions in the forest? | Domain Naming Master |
| What allows a user to be able to log on using a cached copy of his or her logon credentials that have been stored on his or her local workstation? | cached credentials |
| What holds a subset of forest-wide Active Directory objects and acts as a central repository by holding a complete copy of all objects from the host server’s local domain with a partial copy of all objects from other domains within the same forest? | global catalog |
| What tool is used to seize a FSMO role? | ntdsutil |
| The ISTG automatically assigns one server in each site as the bridgehead server unless you override this by establishing a list of __________ bridgehead servers | preferred |
| How many FSMO roles does Active Directory support? | 5 |
| What types of memberships are stored in the global catalog? | universal |
| Which FSMO role is responsible for reference updates from its domain objects to other domains? | Infrastructure Master |
| What process is used when you move a FSMO role gracefully from one domain controller to another? | role transfer |
| Which of the following is not a function performed by a global catalog server? | maintaining a backup of all data stored on a domain controller |
| As a rule of thumb, you should estimate __________ percent of the size of the ntds.dit file of every other domain in the forest when sizing hardware for a global catalog server. | 50 |
| How many RID Masters can a domain have? | 1 |
| What console must be used to move the Domain Naming Master FSMO role? | Active Directory Domains and Trusts |
| What port is used by Active Directory to direct search requests to a global catalog server? | 3268 |
| What Windows Server 2008 feature stores universal group memberships on a local domain controller that can be used for logon to the domain, eliminating the need for frequent access to a global catalog server? | universal group membership caching |
| When a user logs on, what is created that identifies the user and all of the user’s group memberships? | access token |
| Active Directory relies on DNS to provide a locator service for clients on the network. | True |
| Administration of an OU also can be delegated to a departmental supervisor or manager, and thus can allow that person to manage day-to-day resource access or more mundane tasks, such as resetting passwords. This is referred to as assignment of control. | False |
| Inbound replication is when a domain controller transmits replication information to other domain controllers on the network. | False |
| Interoperability with prior versions of Microsoft Windows is available in Windows Server 2008 through the use of functional levels. | True |
| Only the primary domain controller of the entire forest must be running an operating system supported by the targeted forest functional level. | False |
| Aging is the process of removing records that were not refreshed or updated within specified time intervals, which will occur naturally with machines that are removed from the network. | False |
| Because Server Core does not support graphical utilities, such as Server Manager and the Active Directory Installation Wizard, you need to run dcpromo from the command line using an unattended installation, which uses a specially formatted text file to sp | True |
| For domain controllers to register their records with DNS at startup, dynamic updates must be allowed. | True |
| The default location for the Active Directory database and log files is C:\Windows\System32. | False |
| Domain Accounts are automatically created when Microsoft Windows Server 2008 is installed. | False |
| When a user initiates a search for an object in Active Directory, the request is automatically sent to TCP port 3389, which is used by Active Directory to direct these requests to a global catalog server. | False |
| The domain controller that hosts the global catalog must have enough space on the hard drive to house the global catalog. As a rule of thumb, you should estimate 75 percent of the size of the ntds.dit file of every other domain in the forest when sizing h | False |
| The Infrastructure Master FSMO role is responsible for reference updates from its domain objects to other domains | True |
| The PDC Emulator is responsible for managing time synchronization within an Active Directory domain | True |
| The Domain Naming Master is responsible for managing changes to the Active Directory schema | False |
| Domain controllers located in different sites will participate in intrasite replication | False |
| Active Directory is only replicated when the name of an object has changed | False |
| When replicating information between sites, Active Directory will designate a bridgehead server in each site to act as a gatekeeper in managing site-to-site replication | True |
| The guiding principle involved in the KCC’s selection of replication partners and its creation of replication objects is the “Rule of Four,” which states that no single domain controller should be more than four network hops away from any domain controlle | False |
| Site links connect two sites that communicate using the same protocol | True |
| The Active Directory database is stored on each domain controller in a file called ____ | ntds.dit |
| The Active Directory ______ is considered the security boundary for an Active Directory environment. | forest |
| To provide fault tolerance, Active Directory utilizes a _ _ _ replication model | multimaster |
| To create a trust relationship with an NT4 domain, you will configure a(n) _____ | external trust |
| The _ _ naming context is replicated across the domain | Domain |
| Each object in the schema must have a unique ___ | OID |
| A(n) __ __ provides a two-way transitive trust relationship between all domains within two forests | cross-forest trust |
| Each domain in an Active Directory forest has a(n) ___ ___ trust relationship with every other domain in a forest | two-way transitive |
| ___ allows a user at a remote site to be able to log into Active Directory without needing to contact aglobal catalog server. | Universal group caching |
| Active Directory clients rely on ___ ___ in DNS to locate Active Directory resources such as domain controllers andglobal catalog servers | SRV records |
| You can install Active Directory from the Windows command-line using the ____ utility | dcpromo |
| The ___ will configure which user accounts will or will not be cached on an RODC. | Password Replication Policy |
| The ___ command allows you to troubleshoot DNS information from the command line | nslookup |
| To install Active Directory on a Server Core computer, you will need to use a(n) _ | unattended installation |
| You can use ____ to ease the user logon process in a large, multidomain environment | User Principal Names (UPNs) |
| The ____ shared folder is replicated to each domain controller and stores domain-wide information such as Group Policy Objects and login scripts | SYSVOL |
| Active directory ______refers to the amount of time it takes for changes to replicate to every domain controller in an environment | latency |
| _ ___ _ zone transfers allow modern DNS servers to replicate only records that have been changed, rather than the contents of an entire zone. | Incremental |
| The Active Directory Domain Services __ __ are not installed on a Windows Server 2008computer until you add the AD DS role to the computer | binaries |
| If two SRV records have the same priority, the frequency by which they are accessed by clients will be determined by their relative _ ___ | weight |
| . The amount of time that it takes for a change to be replicated to all domain controllers in an environment is called ____ | convergence |
| The default _____of any new site link is 100. | cost |
| Intersite replication uses ______ traffic by default to reduce the impact to bandwidth on corporate WAN links | compressed |
| The KCC creates a(n)________ to allow replication to take place in the opposite direction in the event that a single domain controller in the replication topology fails. | dual counter-rotating ring |
| The purpose of the KCC is to create a(n) ________ between multiple domain controllers within a site as well as between sites. | replication topology |
| By default, all Active Directory site links are _______ | transitive |
| When Active Directory detects a replication conflict in which two objects have been modified nearly simultaneously, the first attribute that Active Direc will use as a tie-breaker is the _____ | update sequence number , Version ID, Timestamp, and thenn GUID |
| ______ replication doesnt have to wait for one domain controller to finish replicating before the other can start | Asynchronous |
| Active Directory will designate a(n) _______ within each site to manage intersite replication activity. | bridgehead server |
| The minimum ______ that you can assign to a site link is 15 minutes | frequency |
| Within a single site, domain controllers will use_________ to inform other DCs thatintrasite replication needs to take place | change notification |
| Active Directory will tolerate a maximum of a 5-minute _______ between a client and the domain controller that authenticates it. | clock skew |
| The _________ is responsible for managing time synchronization within a domain. | PDC Emulator |
| You can improve login times in a site that does not contain a global catalog server by implementing ____ | universal group membership caching |
| To add or remove an application directory partition from Active Directory, the _____ needs to be accessible. | Domain Naming Master |
| If a domain controller that holds a FSMO role fails and will not be returned to the network, you can _____ the FSMO role to another domain controller. | seize |
| You can add additional attributes to the ______ by modifying the Active Directory schema. | partial attribute set (PAS) |
| The ________ uniquely identifies an object within an Active Directory domain, but will change if an object is moved from one domain to another. | security identifier (SID) |
| The ___________ FSMO role should not be housed on a domain controller that has been configured as a global catalog. | Infrastructure Master |
| You can transfer the __________ FSMO from one domain controller to another using the Active Directory Domains and Trusts MMC snap-in. | Domain Naming Master |
| Membership information for a(n) _______ is stored on the global catalog | universal group |
Created by:
eggowafflez