Test your basic knowledge |

MCTS: Configuring A DNS Zone Infrastructure

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.






2. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.






3. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl






4. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.






5. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.






6. When you create a new zone - two types of records required for the zone are automatically created. List them.






7. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.






8. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.






9. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition






10. For a delegation to be implemented - the parent zone must contain a _____ and an _____ (called a glue record) pointing to each authoritative server of the delegated domain.






11. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.






12. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.






13. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:






14. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.






15. What kind of zones do not automatically perform time stamping on dynamically created resource records?






16. To ______ a zone is to create a new zone for a subdomain within a DNS namespace and relinquish authority of that new zone.






17. By default - zone transfers are ______ from any zone.






18. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.






19. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval






20. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco






21. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.






22. You use Group Policy to configure DNS clients to _________________.






23. DNS delegations are automatically used to separate ______ in a single forest.






24. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.






25. The most common resource records you need to create manually include the following:






26. When you create a new zone - two types of records required for the zone are automatically created: ______






27. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.






28. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.






29. What are the server requirements for storing a zone in AD?






30. There are three basic steps in _______________: 1. Enable GlobalNames zone support. 2. Create the GlobalNames zone. 3. Populate the GlobalNames zone.






31. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.






32. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.






33. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.






34. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia






35. When the zone is stored in a file instead of AD - by default the primary zone file is named zone_name.dns - and this file is located in the ______ folder on the server.






36. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.






37. Increasing the refresh interval ______ zone transfer traffic.






38. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.






39. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.






40. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.






41. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.






42. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.






43. The ______ option stores the new zone in the ForestDnsZones partition. Every DC in the entire forest and on which the DNS Server role is installed will receive a copy of the zone.






44. Scavenging can occur only when ______ is enabled.






45. To enable GlobalNames zone support - At an elevated command prompt - type the following: ______.






46. You can perform a delegation only from a ________________.






47. Used to facilitate the resolution of single-label computer names in a large network.






48. To enlist other DNS servers in the partition - type the following command:






49. ______ refers to the process of deleting outdated resource records on which time stamps have been placed.






50. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.