SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.
primary
use more than one name to point to
accepted
Trust anchors
2. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
request DNSSEC validation for specific queries
primary
Service location (SRV)
manually enlist
3. To add an NS record - double-click any existing NS record in DNS Manager and add the server data to the ______ tab.
request DNSSEC validation for specific queries
Name Servers
Trust anchors
Win Srvr 2008 and Win Srvr 2008 R2
4. What are the server requirements for storing a zone in AD?
A DS record
The DNS server needs to be a domain controller.
asymmetric encryption
Create Default Application Directory Partitions
5. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.
Refresh Interval
Aging
manually enlist
NS record and an associated A record
6. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.
Create Default Application Directory Partitions
To All DNS Servers In This Domain
Netlogon
aging
7. By default - zone transfers are ______ from any zone.
the cache life of a resource record
Transfer From Master
Scavenge Stale Resource Records
disabled
8. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.
enable zone transfers
trigger zone transfers on secondary zones
Transfer New Copy Of Zone From Master
CNAME resource records
9. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.
primary
dnscmd /ZoneExport <zone name> <zone file name>
To All DNS Servers In This Domain
notification
10. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
trigger zone transfers on secondary zones
Minimum (Default) TTL
DomainDnsZones
partition
11. Scavenging can occur only when ______ is enabled.
masters
aging
NRPT
standard
12. ______ refers to the process of deleting outdated resource records on which time stamps have been placed.
Scavenging
Netlogon
GlobalNames zone
To All DNS Servers In This Domain
13. Any of three events can ________________: When the refresh interval of the primary zone's SOA resource record expires - When a server hosting a secondary zone boots up - When a change occurs in the configuration of the primary zone and this primary
enable zone transfers
parent and child AD DS domains
trigger zone transfers on secondary zones
partition
14. DNSSEC enables a DNS server to ______ the resource records in its zones.
primary
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
DNS server
digitally sign
15. To create a custom application directory partition - type the following command:
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
Group Policy
dnscmd servername /createdirectorypartition FQDN
will not
16. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
Name Servers
public key
The DNS server needs to be a domain controller.
parent zone to a child zone
17. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.
stub
Refresh Interval
DomainDnsZones
Trust anchors
18. To enable aging for a particular zone - you have to enable this feature both at the ______ level.
trigger zone transfers on secondary zones
server level and at the zone level
DNS zone
standard
19. DNS delegations are automatically used to separate ______ in a single forest.
Notify
To All Domain Controllers In This Domain
parent and child AD DS domains
dnscmd /ZoneExport <zone name> <zone file name>
20. Used to facilitate the resolution of single-label computer names in a large network.
GlobalNames zone
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
1. A SOA record 2. At least one NS record.
NRPT
21. The most common resource records you need to create manually include the following:
Reload
dnscmd /ZoneExport <zone name> <zone file name>
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
%systemroot%System32Dns
22. You can perform a delegation only from a ________________.
Enterprise Admins
parent zone to a child zone
digitally sign
delegate
23. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.
parent and child AD DS domains
delegate
1. DomainDnsZones and - 2. ForestDnsZones
masters
24. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha
CNAME resource records
Service location (SRV)
accepted
Remove stale
25. This operation reloads the secondary zone from the local storage.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Scavenging
parent and child AD DS domains
Reload
26. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
Retry Interval
CNAME resource records
server level and at the zone level
parent and child AD DS domains
27. You use Group Policy to configure DNS clients to _________________.
request DNSSEC validation for specific queries
will not
dnscmd servername /enlistdirectorypartition FQDN
To All Domain Controllers Specified In The Scope Of This Directory Partition
28. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.
To All Domain Controllers Specified In The Scope Of This Directory Partition
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
trigger zone transfers on secondary zones
time stamp
29. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.
GlobalNames zone
asymmetric encryption
partition
Remove stale
30. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.
asymmetric encryption
NRPT
digitally sign
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
31. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.
Create Default Application Directory Partitions
trust anchor
Secondary
masters
32. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl
To All DNS Servers In This Domain
aging
NS record and an associated A record
Transfer From Master
33. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
Expires After
disabled
NS record and an associated A record
CNAME resource records
34. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.
Reload
trigger zone transfers on secondary zones
NRPT
notification
35. ______ resource records are used to specify the location of specific services in a domain.
stub
A DS record
Service location (SRV)
Refresh Interval
36. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.
CNAME resource records
To All DNS Servers In This Forest
Netlogon
Secondary
37. Increasing the refresh interval ______ zone transfer traffic.
asymmetric encryption
The Zone Aging/Scavenging Properties
The DNS server needs to be a domain controller.
decreases
38. What kind of zones do not automatically perform time stamping on dynamically created resource records?
deploying a GlobalNames zone
Create Default Application Directory Partitions
Reload
Standard zones
39. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
NS record and an associated A record
will not
server level and at the zone level
Group Policy
40. There are three basic steps in _______________: 1. Enable GlobalNames zone support. 2. Create the GlobalNames zone. 3. Populate the GlobalNames zone.
deploying a GlobalNames zone
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
dnscmd . /config /enableglobalnamessupport 1
will not
41. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.
parent and child AD DS domains
parent zone to a child zone
NRPT
Aging
42. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
Trust anchors
dnscmd servername /createdirectorypartition FQDN
primary
43. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
dnscmd /ZoneExport <zone name> <zone file name>
A DS record
GlobalNames zone
Win Srvr 2008 and Win Srvr 2008 R2
44. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
Minimum (Default) TTL
1. DomainDnsZones and - 2. ForestDnsZones
Win Srvr 2008 and Win Srvr 2008 R2
dnscmd . /config /enableglobalnamessupport 1
45. When you create a new zone - two types of records required for the zone are automatically created. List them.
trigger zone transfers on secondary zones
dnscmd . /config /enableglobalnamessupport 1
Notify
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
46. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
enable zone transfers
Win Srvr 2008 and Win Srvr 2008 R2
To All DNS Servers In This Forest
DNS server
47. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.
disabled
deploying a GlobalNames zone
ForestDnsZones
Refresh Interval
48. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
The Zone Aging/Scavenging Properties
Reload
dnscmd servername /enlistdirectorypartition FQDN
accepted
49. To enlist other DNS servers in the partition - type the following command:
dnscmd servername /enlistdirectorypartition FQDN
Standard zones
Trust anchors
delegate
50. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
Transfer New Copy Of Zone From Master
trust anchor
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)