Test your basic knowledge |

MCTS: Configuring A DNS Zone Infrastructure

Subjects : certifications, mcts, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.
Retry Interval
Reload
To All DNS Servers In This Domain
The DNS server needs to be a domain controller.

2. What does the 10 refer to in the following example: _ldap._tcp SRV 0 0 389 dc1.lucernepublishing.com.SRV 10 0 389 dc2.lucernepublishing.com.
priority of dc2.lucernepublishing.com.
standard
manually enlist
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.

3. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.
notification
trigger zone transfers on secondary zones
partition
aging

4. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
Win Srvr 2008 and Win Srvr 2008 R2
A DS record
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
time stamp

5. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.
NRPT
Trust anchors
Service location (SRV)
manually enlist

6. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
ForestDnsZones
To All DNS Servers In This Domain
enable zone transfers
Minimum (Default) TTL

7. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.
stub
enable zone transfers
The DNS server needs to be a domain controller.
1. A SOA record 2. At least one NS record.

8. To add an NS record - double-click any existing NS record in DNS Manager and add the server data to the ______ tab.
To All DNS Servers In This Forest
stub
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Name Servers

9. You must be a member of the ______ group to create an application directory partition.
GlobalNames zone
deploying a GlobalNames zone
digitally sign
Enterprise Admins

10. What are the server requirements for storing a zone in AD?
primary
stub
The DNS server needs to be a domain controller.
request DNSSEC validation for specific queries

11. The most common resource records you need to create manually include the following:
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
The DNS server needs to be a domain controller.
NRPT
parent and child AD DS domains

12. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.
1. A SOA record 2. At least one NS record.
Trust anchors
standard
Reload

13. To ______ a zone is to create a new zone for a subdomain within a DNS namespace and relinquish authority of that new zone.
dnscmd servername /enlistdirectorypartition FQDN
1. DomainDnsZones and - 2. ForestDnsZones
delegate
request DNSSEC validation for specific queries

14. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.
request DNSSEC validation for specific queries
Scavenge Stale Resource Records
GlobalNames zone
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)

15. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.
primary
aging
parent zone to a child zone
parent and child AD DS domains

16. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.
Create Default Application Directory Partitions
masters
Secondary
Win Srvr 2008 and Win Srvr 2008 R2

17. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.
DNS zone
Create Default Application Directory Partitions
stub
To All DNS Servers In This Domain

18. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
DNS server
Transfer From Master
A DS record
Standard zones

19. ______ refers to the process of deleting outdated resource records on which time stamps have been placed.
Trust anchors
aging
Scavenging
dnscmd . /config /enableglobalnamessupport 1

20. To enable GlobalNames zone support - At an elevated command prompt - type the following: ______.
To All Domain Controllers In This Domain
primary
dnscmd . /config /enableglobalnamessupport 1
decreases

21. When the zone is stored in a file instead of AD - by default the primary zone file is named zone_name.dns - and this file is located in the ______ folder on the server.
server level and at the zone level
deploying a GlobalNames zone
%systemroot%System32Dns
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.

22. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha
Create Default Application Directory Partitions
CNAME resource records
priority of dc2.lucernepublishing.com.
time stamp

23. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.
DNS zone
standard
1. DomainDnsZones and - 2. ForestDnsZones
dnscmd servername /createdirectorypartition FQDN

24. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
Refresh Interval
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
Expires After
%systemroot%System32Dns

25. To enlist other DNS servers in the partition - type the following command:
Notify
dnscmd servername /enlistdirectorypartition FQDN
dnscmd servername /createdirectorypartition FQDN
Trust anchors

26. A ______ is a data structure in AD that distinguishes data for different replication purposes.
aging
CNAME resource records
partition
public key

27. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
Aging
The Zone Aging/Scavenging Properties
DomainDnsZones
public key

28. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.
dnscmd /ZoneExport <zone name> <zone file name>
1. A SOA record 2. At least one NS record.
To All Domain Controllers In This Domain
primary

29. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
Trust anchors
primary
The DNS server needs to be a domain controller.
Enterprise Admins

30. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
primary
Name Servers
stub

31. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
DNS server
14
Retry Interval
DomainDnsZones

32. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
DomainDnsZones
trust anchor
dnscmd servername /createdirectorypartition FQDN
notification

33. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.
Netlogon
ForestDnsZones
Service location (SRV)
Reload - Transfer From Master - Transfer New Copy Of Zone From Master

34. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco
the cache life of a resource record
notification
primary
Expires After

35. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
NS record and an associated A record
Reload
manually enlist
use more than one name to point to

36. By default - zone transfers are ______ from any zone.
public key
disabled
Aging
masters

37. There are three basic steps in _______________: 1. Enable GlobalNames zone support. 2. Create the GlobalNames zone. 3. Populate the GlobalNames zone.
Scavenge Stale Resource Records
partition
deploying a GlobalNames zone
delegate

38. To enable aging for a particular zone - you have to enable this feature both at the ______ level.
NRPT
stub
AD Zone Replication Scope page
server level and at the zone level

39. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
Remove stale
trust anchor
Reload
Minimum (Default) TTL

40. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.
stub
Refresh Interval
To All Domain Controllers Specified In The Scope Of This Directory Partition
Remove stale

41. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl
aging
Expires After
manually enlist
The Zone Aging/Scavenging Properties

42. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
trust anchor
dnscmd /ZoneExport <zone name> <zone file name>
DomainDnsZones
Group Policy

43. You use Group Policy to configure DNS clients to _________________.
Win Srvr 2008 and Win Srvr 2008 R2
CNAME resource records
time stamp
request DNSSEC validation for specific queries

44. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.
1. A SOA record 2. At least one NS record.
Secondary
masters
use more than one name to point to

45. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
Service location (SRV)
digitally sign
dnscmd /ZoneExport <zone name> <zone file name>
Aging

46. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
Group Policy
Retry Interval
DNS server
parent and child AD DS domains

47. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.
masters
Secondary
GlobalNames zone
AD Zone Replication Scope page

48. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.
request DNSSEC validation for specific queries
Enterprise Admins
will not
manually enlist

49. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
parent and child AD DS domains
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
AD Zone Replication Scope page

50. Scavenging can occur only when ______ is enabled.
1. DomainDnsZones and - 2. ForestDnsZones
dnscmd servername /createdirectorypartition FQDN
aging
Transfer From Master