SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. There are three basic steps in _______________: 1. Enable GlobalNames zone support. 2. Create the GlobalNames zone. 3. Populate the GlobalNames zone.
Enterprise Admins
standard
DomainDnsZones
deploying a GlobalNames zone
2. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.
aging
digitally sign
1. A SOA record 2. At least one NS record.
Remove stale
3. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
Minimum (Default) TTL
dnscmd servername /createdirectorypartition FQDN
dnscmd /ZoneExport <zone name> <zone file name>
decreases
4. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
time stamp
The Zone Aging/Scavenging Properties
manually enlist
dnscmd servername /enlistdirectorypartition FQDN
5. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.
the cache life of a resource record
To All DNS Servers In This Domain
Scavenge Stale Resource Records
Transfer New Copy Of Zone From Master
6. Increasing the refresh interval ______ zone transfer traffic.
will not
decreases
the cache life of a resource record
partition
7. To ______ a zone is to create a new zone for a subdomain within a DNS namespace and relinquish authority of that new zone.
trust anchor
To All DNS Servers In This Forest
Notify
delegate
8. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.
Standard zones
DNS server
digitally sign
time stamp
9. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.
Aging
digitally sign
Reload
parent zone to a child zone
10. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.
To All DNS Servers In This Forest
enable zone transfers
dnscmd servername /createdirectorypartition FQDN
will not
11. What is the name of the record that contains a hash of the public key in a delegated subdomain?
primary
Scavenging
partition
A DS record
12. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl
aging
Secondary
primary
parent and child AD DS domains
13. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.
To All Domain Controllers In This Domain
will not
Reload
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
14. By default - zone transfers are ______ from any zone.
request DNSSEC validation for specific queries
decreases
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
disabled
15. You use Group Policy to configure DNS clients to _________________.
request DNSSEC validation for specific queries
will not
enable zone transfers
trust anchor
16. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.
Aging
ForestDnsZones
NS record and an associated A record
dnscmd /ZoneExport <zone name> <zone file name>
17. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
masters
server level and at the zone level
Win Srvr 2008 and Win Srvr 2008 R2
trust anchor
18. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco
trigger zone transfers on secondary zones
Netlogon
the cache life of a resource record
asymmetric encryption
19. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
decreases
Transfer From Master
Name Servers
Reload
20. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
AD Zone Replication Scope page
Name Servers
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
DNS server
21. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
NRPT
%systemroot%System32Dns
Trust anchors
parent and child AD DS domains
22. What are the server requirements for storing a zone in AD?
The Zone Aging/Scavenging Properties
The DNS server needs to be a domain controller.
Notify
GlobalNames zone
23. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
Aging
The Zone Aging/Scavenging Properties
aging
manually enlist
24. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.
primary
Notify
dnscmd /ZoneExport <zone name> <zone file name>
deploying a GlobalNames zone
25. This operation performs a zone transfer from the secondary zone's master server regardless of the serial number in the secondary zone's SOA resource record.
priority of dc2.lucernepublishing.com.
To All DNS Servers In This Domain
accepted
Transfer New Copy Of Zone From Master
26. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.
disabled
Netlogon
To All DNS Servers In This Domain
1. DomainDnsZones and - 2. ForestDnsZones
27. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.
accepted
Create Default Application Directory Partitions
NRPT
server level and at the zone level
28. By default - DCs include two application directory partitions reserved for DNS data: ______.
Minimum (Default) TTL
1. A SOA record 2. At least one NS record.
1. DomainDnsZones and - 2. ForestDnsZones
Transfer New Copy Of Zone From Master
29. ______ resource records are used to specify the location of specific services in a domain.
Service location (SRV)
priority of dc2.lucernepublishing.com.
Enterprise Admins
A DS record
30. To enable GlobalNames zone support - At an elevated command prompt - type the following: ______.
Aging
dnscmd . /config /enableglobalnamessupport 1
The DNS server needs to be a domain controller.
server level and at the zone level
31. DNS delegations are automatically used to separate ______ in a single forest.
parent and child AD DS domains
The Zone Aging/Scavenging Properties
digitally sign
Standard zones
32. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.
asymmetric encryption
Scavenging
Service location (SRV)
Scavenge Stale Resource Records
33. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
trust anchor
Netlogon
deploying a GlobalNames zone
To All DNS Servers In This Forest
34. A ______ is a data structure in AD that distinguishes data for different replication purposes.
%systemroot%System32Dns
partition
parent and child AD DS domains
DomainDnsZones
35. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
parent and child AD DS domains
Expires After
DomainDnsZones
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
36. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.
deploying a GlobalNames zone
primary
the cache life of a resource record
Notify
37. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
notification
Trust anchors
will not
Group Policy
38. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
Scavenge Stale Resource Records
accepted
To All Domain Controllers Specified In The Scope Of This Directory Partition
14
39. You must be a member of the ______ group to create an application directory partition.
masters
stub
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Enterprise Admins
40. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.
Create Default Application Directory Partitions
request DNSSEC validation for specific queries
NRPT
accepted
41. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
%systemroot%System32Dns
public key
partition
accepted
42. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
Transfer New Copy Of Zone From Master
Netlogon
1. DomainDnsZones and - 2. ForestDnsZones
43. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
Service location (SRV)
Retry Interval
public key
44. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
Remove stale
AD Zone Replication Scope page
Scavenge Stale Resource Records
disabled
45. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
Remove stale
stub
Expires After
Retry Interval
46. The ______ option stores the new zone in the ForestDnsZones partition. Every DC in the entire forest and on which the DNS Server role is installed will receive a copy of the zone.
dnscmd . /config /enableglobalnamessupport 1
To All DNS Servers In This Forest
Notify
use more than one name to point to
47. What kind of zones do not automatically perform time stamping on dynamically created resource records?
Name Servers
The Zone Aging/Scavenging Properties
Notify
Standard zones
48. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.
trust anchor
Secondary
Name Servers
aging
49. To create a custom application directory partition - type the following command:
dnscmd servername /createdirectorypartition FQDN
Group Policy
Remove stale
use more than one name to point to
50. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
dnscmd /ZoneExport <zone name> <zone file name>
Standard zones
trust anchor
enable zone transfers