Test your basic knowledge |

MCTS: Configuring A DNS Zone Infrastructure

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.






2. By default - DCs include two application directory partitions reserved for DNS data: ______.






3. When the zone is stored in a file instead of AD - by default the primary zone file is named zone_name.dns - and this file is located in the ______ folder on the server.






4. To add an NS record - double-click any existing NS record in DNS Manager and add the server data to the ______ tab.






5. This operation performs a zone transfer from the secondary zone's master server regardless of the serial number in the secondary zone's SOA resource record.






6. To ______ a zone is to create a new zone for a subdomain within a DNS namespace and relinquish authority of that new zone.






7. What kind of zones do not automatically perform time stamping on dynamically created resource records?






8. The ______ option stores the new zone in the ForestDnsZones partition. Every DC in the entire forest and on which the DNS Server role is installed will receive a copy of the zone.






9. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.






10. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.






11. To create a custom application directory partition - type the following command:






12. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.






13. To enlist other DNS servers in the partition - type the following command:






14. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.






15. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.






16. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:






17. For a delegation to be implemented - the parent zone must contain a _____ and an _____ (called a glue record) pointing to each authoritative server of the delegated domain.






18. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.






19. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia






20. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.






21. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.






22. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.






23. What does the 10 refer to in the following example: _ldap._tcp SRV 0 0 389 dc1.lucernepublishing.com.SRV 10 0 389 dc2.lucernepublishing.com.






24. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.






25. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha






26. To enable GlobalNames zone support - At an elevated command prompt - type the following: ______.






27. DNS delegations are automatically used to separate ______ in a single forest.






28. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.






29. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.






30. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.






31. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco






32. What are the server requirements for storing a zone in AD?






33. You must be a member of the ______ group to create an application directory partition.






34. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval






35. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.






36. You use Group Policy to configure DNS clients to _________________.






37. To enable aging for a particular zone - you have to enable this feature both at the ______ level.






38. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.






39. When you create a new zone - two types of records required for the zone are automatically created. List them.






40. The most common resource records you need to create manually include the following:






41. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.






42. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.






43. By default - zone transfers are ______ from any zone.






44. Scavenging can occur only when ______ is enabled.






45. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.






46. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.






47. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain






48. Any of three events can ________________: When the refresh interval of the primary zone's SOA resource record expires - When a server hosting a secondary zone boots up - When a change occurs in the configuration of the primary zone and this primary






49. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.






50. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.