SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer
50
questions in
15 minutes
.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.
Create Default Application Directory Partitions
To All Domain Controllers Specified In The Scope Of This Directory Partition
digitally sign
%systemroot%System32Dns
2. A ______ is a data structure in AD that distinguishes data for different replication purposes.
asymmetric encryption
CNAME resource records
partition
%systemroot%System32Dns
3. DNS delegations are automatically used to separate ______ in a single forest.
Name Servers
parent and child AD DS domains
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
1. A SOA record 2. At least one NS record.
4. What is the name of the record that contains a hash of the public key in a delegated subdomain?
server level and at the zone level
A DS record
To All DNS Servers In This Domain
14
5. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
disabled
Expires After
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
To All Domain Controllers Specified In The Scope Of This Directory Partition
6. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl
aging
Enterprise Admins
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
delegate
7. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
1. DomainDnsZones and - 2. ForestDnsZones
Reload
14
Create Default Application Directory Partitions
8. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.
deploying a GlobalNames zone
The Zone Aging/Scavenging Properties
DNS zone
%systemroot%System32Dns
9. To enlist other DNS servers in the partition - type the following command:
request DNSSEC validation for specific queries
DNS server
dnscmd servername /enlistdirectorypartition FQDN
manually enlist
10. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
dnscmd . /config /enableglobalnamessupport 1
14
1. A SOA record 2. At least one NS record.
trust anchor
11. When the zone is stored in a file instead of AD - by default the primary zone file is named zone_name.dns - and this file is located in the ______ folder on the server.
The Zone Aging/Scavenging Properties
%systemroot%System32Dns
To All Domain Controllers Specified In The Scope Of This Directory Partition
1. DomainDnsZones and - 2. ForestDnsZones
12. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.
stub
Retry Interval
Name Servers
Secondary
13. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.
Standard zones
dnscmd servername /enlistdirectorypartition FQDN
Minimum (Default) TTL
notification
14. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.
Create Default Application Directory Partitions
Remove stale
To All DNS Servers In This Forest
use more than one name to point to
15. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.
Netlogon
dnscmd servername /createdirectorypartition FQDN
%systemroot%System32Dns
Aging
16. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.
ForestDnsZones
time stamp
priority of dc2.lucernepublishing.com.
deploying a GlobalNames zone
17. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
notification
DNS server
Win Srvr 2008 and Win Srvr 2008 R2
18. Scavenging can occur only when ______ is enabled.
accepted
aging
enable zone transfers
The DNS server needs to be a domain controller.
19. To create a custom application directory partition - type the following command:
dnscmd servername /createdirectorypartition FQDN
manually enlist
Group Policy
NRPT
20. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
trust anchor
CNAME resource records
The DNS server needs to be a domain controller.
21. When you create a new zone - two types of records required for the zone are automatically created. List them.
Expires After
server level and at the zone level
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Secondary
22. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.
masters
NRPT
Secondary
dnscmd servername /enlistdirectorypartition FQDN
23. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.
notification
%systemroot%System32Dns
primary
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
24. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco
Transfer From Master
the cache life of a resource record
NRPT
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
25. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
CNAME resource records
Win Srvr 2008 and Win Srvr 2008 R2
partition
DNS server
26. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
Minimum (Default) TTL
dnscmd servername /createdirectorypartition FQDN
notification
stub
27. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
To All DNS Servers In This Domain
A DS record
To All Domain Controllers In This Domain
AD Zone Replication Scope page
28. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
Enterprise Admins
DomainDnsZones
server level and at the zone level
Win Srvr 2008 and Win Srvr 2008 R2
29. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.
Reload
asymmetric encryption
To All DNS Servers In This Forest
decreases
30. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.
stub
use more than one name to point to
the cache life of a resource record
Notify
31. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
A DS record
Trust anchors
manually enlist
Aging
32. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
Transfer From Master
dnscmd . /config /enableglobalnamessupport 1
the cache life of a resource record
partition
33. You can perform a delegation only from a ________________.
delegate
Minimum (Default) TTL
The Zone Aging/Scavenging Properties
parent zone to a child zone
34. The most common resource records you need to create manually include the following:
Trust anchors
DNS server
dnscmd /ZoneExport <zone name> <zone file name>
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
35. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
Retry Interval
time stamp
14
The DNS server needs to be a domain controller.
36. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.
stub
dnscmd /ZoneExport <zone name> <zone file name>
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
time stamp
37. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.
Refresh Interval
Transfer From Master
AD Zone Replication Scope page
server level and at the zone level
38. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.
Secondary
Transfer New Copy Of Zone From Master
%systemroot%System32Dns
Aging
39. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
public key
AD Zone Replication Scope page
Scavenge Stale Resource Records
parent and child AD DS domains
40. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
AD Zone Replication Scope page
digitally sign
asymmetric encryption
Trust anchors
41. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.
standard
To All Domain Controllers Specified In The Scope Of This Directory Partition
parent zone to a child zone
masters
42. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
decreases
priority of dc2.lucernepublishing.com.
accepted
parent zone to a child zone
43. You use Group Policy to configure DNS clients to _________________.
request DNSSEC validation for specific queries
dnscmd servername /createdirectorypartition FQDN
1. DomainDnsZones and - 2. ForestDnsZones
Name Servers
44. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.
Enterprise Admins
use more than one name to point to
manually enlist
parent zone to a child zone
45. For a delegation to be implemented - the parent zone must contain a _____ and an _____ (called a glue record) pointing to each authoritative server of the delegated domain.
deploying a GlobalNames zone
Expires After
NS record and an associated A record
1. DomainDnsZones and - 2. ForestDnsZones
46. To enable aging for a particular zone - you have to enable this feature both at the ______ level.
NRPT
stub
server level and at the zone level
dnscmd /ZoneExport <zone name> <zone file name>
47. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
the cache life of a resource record
AD Zone Replication Scope page
Standard zones
dnscmd /ZoneExport <zone name> <zone file name>
48. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.
To All DNS Servers In This Domain
enable zone transfers
GlobalNames zone
time stamp
49. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
partition
use more than one name to point to
The Zone Aging/Scavenging Properties
AD Zone Replication Scope page
50. To add an NS record - double-click any existing NS record in DNS Manager and add the server data to the ______ tab.
ForestDnsZones
Name Servers
primary
Enterprise Admins
