Test your basic knowledge |

MCTS: Configuring A DNS Zone Infrastructure

Subjects : certifications, mcts, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
1. DomainDnsZones and - 2. ForestDnsZones
Transfer From Master
dnscmd . /config /enableglobalnamessupport 1
request DNSSEC validation for specific queries

2. For a delegation to be implemented - the parent zone must contain a _____ and an _____ (called a glue record) pointing to each authoritative server of the delegated domain.
NS record and an associated A record
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
the cache life of a resource record
1. DomainDnsZones and - 2. ForestDnsZones

3. This operation reloads the secondary zone from the local storage.
Refresh Interval
trigger zone transfers on secondary zones
Reload
%systemroot%System32Dns

4. To add an NS record - double-click any existing NS record in DNS Manager and add the server data to the ______ tab.
Name Servers
primary
Win Srvr 2008 and Win Srvr 2008 R2
accepted

5. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
Enterprise Admins
delegate
Aging

6. DNSSEC enables a DNS server to ______ the resource records in its zones.
Refresh Interval
digitally sign
deploying a GlobalNames zone
NS record and an associated A record

7. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
use more than one name to point to
%systemroot%System32Dns
Group Policy
ForestDnsZones

8. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.
notification
deploying a GlobalNames zone
Minimum (Default) TTL
Aging

9. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.
will not
Create Default Application Directory Partitions
standard
manually enlist

10. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.
will not
Group Policy
Minimum (Default) TTL
NRPT

11. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.
delegate
asymmetric encryption
Refresh Interval
use more than one name to point to

12. ______ resource records are used to specify the location of specific services in a domain.
Refresh Interval
notification
Standard zones
Service location (SRV)

13. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco
the cache life of a resource record
CNAME resource records
server level and at the zone level
%systemroot%System32Dns

14. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.
manually enlist
masters
NS record and an associated A record
primary

15. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.
aging
enable zone transfers
notification
To All DNS Servers In This Forest

16. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.
delegate
Retry Interval
Service location (SRV)
use more than one name to point to

17. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
Expires After
standard
public key
notification

18. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
Name Servers
Retry Interval
Minimum (Default) TTL
Aging

19. When the zone is stored in a file instead of AD - by default the primary zone file is named zone_name.dns - and this file is located in the ______ folder on the server.
Scavenging
Win Srvr 2008 and Win Srvr 2008 R2
%systemroot%System32Dns
Minimum (Default) TTL

20. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.
standard
aging
accepted
Refresh Interval

21. The ______ option stores the new zone in the ForestDnsZones partition. Every DC in the entire forest and on which the DNS Server role is installed will receive a copy of the zone.
deploying a GlobalNames zone
Win Srvr 2008 and Win Srvr 2008 R2
disabled
To All DNS Servers In This Forest

22. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.
To All Domain Controllers Specified In The Scope Of This Directory Partition
partition
NS record and an associated A record
Standard zones

23. Increasing the refresh interval ______ zone transfer traffic.
decreases
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
Reload
request DNSSEC validation for specific queries

24. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
Reload
notification
dnscmd /ZoneExport <zone name> <zone file name>
standard

25. What is the name of the record that contains a hash of the public key in a delegated subdomain?
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
asymmetric encryption
decreases
A DS record

26. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.
Netlogon
notification
Name Servers
use more than one name to point to

27. By default - zone transfers are ______ from any zone.
disabled
trust anchor
Service location (SRV)
To All Domain Controllers Specified In The Scope Of This Directory Partition

28. What does the 10 refer to in the following example: _ldap._tcp SRV 0 0 389 dc1.lucernepublishing.com.SRV 10 0 389 dc2.lucernepublishing.com.
A DS record
request DNSSEC validation for specific queries
priority of dc2.lucernepublishing.com.
%systemroot%System32Dns

29. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
GlobalNames zone
Netlogon
trust anchor
Scavenge Stale Resource Records

30. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
manually enlist
DNS server
14
time stamp

31. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
To All DNS Servers In This Forest
CNAME resource records
Refresh Interval
Trust anchors

32. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
Minimum (Default) TTL
parent zone to a child zone
accepted
Transfer From Master

33. You can perform a delegation only from a ________________.
parent zone to a child zone
trigger zone transfers on secondary zones
dnscmd servername /createdirectorypartition FQDN
ForestDnsZones

34. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.
GlobalNames zone
stub
dnscmd . /config /enableglobalnamessupport 1
manually enlist

35. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.
Enterprise Admins
will not
masters
To All Domain Controllers In This Domain

36. To enlist other DNS servers in the partition - type the following command:
CNAME resource records
deploying a GlobalNames zone
partition
dnscmd servername /enlistdirectorypartition FQDN

37. To enable aging for a particular zone - you have to enable this feature both at the ______ level.
server level and at the zone level
manually enlist
Netlogon
aging

38. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.
delegate
DNS zone
CNAME resource records
1. A SOA record 2. At least one NS record.

39. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
Minimum (Default) TTL
AD Zone Replication Scope page
The Zone Aging/Scavenging Properties
1. A SOA record 2. At least one NS record.

40. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.
GlobalNames zone
1. DomainDnsZones and - 2. ForestDnsZones
trigger zone transfers on secondary zones
To All DNS Servers In This Domain

41. DNS delegations are automatically used to separate ______ in a single forest.
A DS record
Trust anchors
the cache life of a resource record
parent and child AD DS domains

42. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
14
priority of dc2.lucernepublishing.com.
The DNS server needs to be a domain controller.
aging

43. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
DNS server
trigger zone transfers on secondary zones
Transfer New Copy Of Zone From Master
use more than one name to point to

44. What kind of zones do not automatically perform time stamping on dynamically created resource records?
manually enlist
NS record and an associated A record
notification
Standard zones

45. You use Group Policy to configure DNS clients to _________________.
request DNSSEC validation for specific queries
Reload
Enterprise Admins
masters

46. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
the cache life of a resource record
Expires After
Reload
enable zone transfers

47. By default - DCs include two application directory partitions reserved for DNS data: ______.
NS record and an associated A record
1. DomainDnsZones and - 2. ForestDnsZones
disabled
Reload

48. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.
Secondary
decreases
partition
dnscmd . /config /enableglobalnamessupport 1

49. When you create a new zone - two types of records required for the zone are automatically created. List them.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
A DS record
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
manually enlist

50. You must be a member of the ______ group to create an application directory partition.
dnscmd . /config /enableglobalnamessupport 1
Enterprise Admins
digitally sign
DNS server