SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
Expires After
standard
ForestDnsZones
time stamp
2. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl
To All Domain Controllers Specified In The Scope Of This Directory Partition
partition
aging
dnscmd . /config /enableglobalnamessupport 1
3. By default - zone transfers are ______ from any zone.
ForestDnsZones
dnscmd . /config /enableglobalnamessupport 1
disabled
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
4. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
Trust anchors
14
To All DNS Servers In This Domain
time stamp
5. For a delegation to be implemented - the parent zone must contain a _____ and an _____ (called a glue record) pointing to each authoritative server of the delegated domain.
delegate
Aging
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
NS record and an associated A record
6. When you create a new zone - two types of records required for the zone are automatically created. List them.
Minimum (Default) TTL
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
accepted
parent and child AD DS domains
7. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:
Retry Interval
ForestDnsZones
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
parent and child AD DS domains
8. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.
priority of dc2.lucernepublishing.com.
request DNSSEC validation for specific queries
To All Domain Controllers Specified In The Scope Of This Directory Partition
notification
9. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.
parent zone to a child zone
Netlogon
server level and at the zone level
Trust anchors
10. Used to facilitate the resolution of single-label computer names in a large network.
priority of dc2.lucernepublishing.com.
%systemroot%System32Dns
GlobalNames zone
the cache life of a resource record
11. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.
The Zone Aging/Scavenging Properties
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
Create Default Application Directory Partitions
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
12. DNS delegations are automatically used to separate ______ in a single forest.
parent and child AD DS domains
partition
aging
To All DNS Servers In This Domain
13. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.
stub
Retry Interval
asymmetric encryption
disabled
14. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
Minimum (Default) TTL
Group Policy
Standard zones
notification
15. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
primary
trust anchor
Transfer From Master
enable zone transfers
16. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
accepted
Notify
To All Domain Controllers Specified In The Scope Of This Directory Partition
Enterprise Admins
17. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha
request DNSSEC validation for specific queries
CNAME resource records
DomainDnsZones
Reload
18. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
Transfer From Master
DNS zone
Group Policy
will not
19. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.
notification
trust anchor
Aging
asymmetric encryption
20. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
The DNS server needs to be a domain controller.
Refresh Interval
DomainDnsZones
21. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.
AD Zone Replication Scope page
To All DNS Servers In This Domain
parent and child AD DS domains
trigger zone transfers on secondary zones
22. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
dnscmd servername /enlistdirectorypartition FQDN
Retry Interval
will not
trust anchor
23. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.
To All DNS Servers In This Forest
Refresh Interval
Standard zones
partition
24. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
To All DNS Servers In This Forest
trigger zone transfers on secondary zones
DNS server
Win Srvr 2008 and Win Srvr 2008 R2
25. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.
asymmetric encryption
Create Default Application Directory Partitions
parent and child AD DS domains
accepted
26. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
trust anchor
delegate
Name Servers
DNS server
27. What are the server requirements for storing a zone in AD?
trust anchor
Retry Interval
Scavenge Stale Resource Records
The DNS server needs to be a domain controller.
28. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
parent zone to a child zone
DNS zone
Minimum (Default) TTL
Group Policy
29. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.
DomainDnsZones
Trust anchors
standard
parent and child AD DS domains
30. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
Transfer From Master
Netlogon
A DS record
manually enlist
31. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.
Remove stale
asymmetric encryption
To All Domain Controllers In This Domain
Standard zones
32. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.
To All DNS Servers In This Forest
dnscmd servername /enlistdirectorypartition FQDN
use more than one name to point to
Aging
33. To enlist other DNS servers in the partition - type the following command:
ForestDnsZones
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
dnscmd servername /enlistdirectorypartition FQDN
Transfer From Master
34. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
dnscmd servername /createdirectorypartition FQDN
public key
the cache life of a resource record
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
35. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.
Secondary
DNS zone
The DNS server needs to be a domain controller.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
36. You use Group Policy to configure DNS clients to _________________.
Minimum (Default) TTL
request DNSSEC validation for specific queries
trust anchor
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
37. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.
NRPT
GlobalNames zone
Remove stale
The DNS server needs to be a domain controller.
38. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
14
decreases
Minimum (Default) TTL
dnscmd /ZoneExport <zone name> <zone file name>
39. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.
NS record and an associated A record
Reload
Notify
trigger zone transfers on secondary zones
40. When you create a new zone - two types of records required for the zone are automatically created: ______
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
1. A SOA record 2. At least one NS record.
parent and child AD DS domains
NS record and an associated A record
41. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
Notify
Expires After
Transfer New Copy Of Zone From Master
AD Zone Replication Scope page
42. The ______ option stores the new zone in the ForestDnsZones partition. Every DC in the entire forest and on which the DNS Server role is installed will receive a copy of the zone.
stub
use more than one name to point to
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
To All DNS Servers In This Forest
43. Increasing the refresh interval ______ zone transfer traffic.
Trust anchors
decreases
digitally sign
CNAME resource records
44. By default - DCs include two application directory partitions reserved for DNS data: ______.
Refresh Interval
1. DomainDnsZones and - 2. ForestDnsZones
14
masters
45. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.
AD Zone Replication Scope page
manually enlist
request DNSSEC validation for specific queries
enable zone transfers
46. To enable aging for a particular zone - you have to enable this feature both at the ______ level.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
server level and at the zone level
CNAME resource records
Minimum (Default) TTL
47. The most common resource records you need to create manually include the following:
To All Domain Controllers In This Domain
notification
%systemroot%System32Dns
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
48. To ______ a zone is to create a new zone for a subdomain within a DNS namespace and relinquish authority of that new zone.
Refresh Interval
Scavenging
delegate
ForestDnsZones
49. What is the name of the record that contains a hash of the public key in a delegated subdomain?
GlobalNames zone
Aging
delegate
A DS record
50. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.
time stamp
partition
enable zone transfers
Scavenge Stale Resource Records
