SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
public key
dnscmd servername /enlistdirectorypartition FQDN
decreases
dnscmd /ZoneExport <zone name> <zone file name>
2. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha
The Zone Aging/Scavenging Properties
Create Default Application Directory Partitions
CNAME resource records
A DS record
3. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
dnscmd . /config /enableglobalnamessupport 1
14
AD Zone Replication Scope page
accepted
4. There are three basic steps in _______________: 1. Enable GlobalNames zone support. 2. Create the GlobalNames zone. 3. Populate the GlobalNames zone.
deploying a GlobalNames zone
Notify
Retry Interval
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
5. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
public key
trust anchor
request DNSSEC validation for specific queries
Win Srvr 2008 and Win Srvr 2008 R2
6. Increasing the refresh interval ______ zone transfer traffic.
decreases
Retry Interval
1. DomainDnsZones and - 2. ForestDnsZones
1. A SOA record 2. At least one NS record.
7. To enlist other DNS servers in the partition - type the following command:
digitally sign
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Standard zones
dnscmd servername /enlistdirectorypartition FQDN
8. To add an NS record - double-click any existing NS record in DNS Manager and add the server data to the ______ tab.
%systemroot%System32Dns
the cache life of a resource record
delegate
Name Servers
9. ______ resource records are used to specify the location of specific services in a domain.
Notify
The DNS server needs to be a domain controller.
stub
Service location (SRV)
10. You use Group Policy to configure DNS clients to _________________.
To All Domain Controllers In This Domain
server level and at the zone level
time stamp
request DNSSEC validation for specific queries
11. DNS delegations are automatically used to separate ______ in a single forest.
parent and child AD DS domains
dnscmd servername /createdirectorypartition FQDN
1. A SOA record 2. At least one NS record.
Transfer From Master
12. For a delegation to be implemented - the parent zone must contain a _____ and an _____ (called a glue record) pointing to each authoritative server of the delegated domain.
aging
notification
Standard zones
NS record and an associated A record
13. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.
To All Domain Controllers In This Domain
Reload
parent zone to a child zone
Service location (SRV)
14. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
Win Srvr 2008 and Win Srvr 2008 R2
1. DomainDnsZones and - 2. ForestDnsZones
masters
1. A SOA record 2. At least one NS record.
15. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.
digitally sign
Remove stale
partition
parent and child AD DS domains
16. ______ refers to the process of deleting outdated resource records on which time stamps have been placed.
Scavenging
14
Group Policy
Retry Interval
17. When the zone is stored in a file instead of AD - by default the primary zone file is named zone_name.dns - and this file is located in the ______ folder on the server.
delegate
deploying a GlobalNames zone
parent zone to a child zone
%systemroot%System32Dns
18. To enable aging for a particular zone - you have to enable this feature both at the ______ level.
server level and at the zone level
deploying a GlobalNames zone
AD Zone Replication Scope page
Transfer New Copy Of Zone From Master
19. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
AD Zone Replication Scope page
Reload
Secondary
DomainDnsZones
20. The ______ option stores the new zone in the ForestDnsZones partition. Every DC in the entire forest and on which the DNS Server role is installed will receive a copy of the zone.
disabled
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
To All DNS Servers In This Forest
Transfer From Master
21. You can perform a delegation only from a ________________.
dnscmd servername /enlistdirectorypartition FQDN
asymmetric encryption
Scavenge Stale Resource Records
parent zone to a child zone
22. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.
digitally sign
NS record and an associated A record
will not
Create Default Application Directory Partitions
23. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.
request DNSSEC validation for specific queries
The DNS server needs to be a domain controller.
Secondary
NRPT
24. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
DNS server
priority of dc2.lucernepublishing.com.
decreases
Trust anchors
25. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.
decreases
Refresh Interval
A DS record
ForestDnsZones
26. When you create a new zone - two types of records required for the zone are automatically created. List them.
Standard zones
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Refresh Interval
To All DNS Servers In This Forest
27. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.
primary
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
The Zone Aging/Scavenging Properties
To All Domain Controllers Specified In The Scope Of This Directory Partition
28. To create a custom application directory partition - type the following command:
dnscmd servername /createdirectorypartition FQDN
ForestDnsZones
Name Servers
Refresh Interval
29. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
Scavenge Stale Resource Records
GlobalNames zone
NS record and an associated A record
trust anchor
30. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.
use more than one name to point to
notification
trust anchor
Minimum (Default) TTL
31. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.
stub
ForestDnsZones
Group Policy
deploying a GlobalNames zone
32. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.
decreases
Scavenge Stale Resource Records
Notify
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
33. This operation reloads the secondary zone from the local storage.
%systemroot%System32Dns
Reload
CNAME resource records
masters
34. What does the 10 refer to in the following example: _ldap._tcp SRV 0 0 389 dc1.lucernepublishing.com.SRV 10 0 389 dc2.lucernepublishing.com.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
To All Domain Controllers Specified In The Scope Of This Directory Partition
use more than one name to point to
priority of dc2.lucernepublishing.com.
35. You must be a member of the ______ group to create an application directory partition.
Enterprise Admins
primary
decreases
parent and child AD DS domains
36. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.
Expires After
To All Domain Controllers Specified In The Scope Of This Directory Partition
trust anchor
Group Policy
37. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.
Scavenge Stale Resource Records
Group Policy
DNS zone
use more than one name to point to
38. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
standard
parent zone to a child zone
dnscmd servername /enlistdirectorypartition FQDN
39. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
Trust anchors
Standard zones
Win Srvr 2008 and Win Srvr 2008 R2
Scavenge Stale Resource Records
40. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
The DNS server needs to be a domain controller.
Minimum (Default) TTL
Secondary
14
41. The most common resource records you need to create manually include the following:
1. DomainDnsZones and - 2. ForestDnsZones
asymmetric encryption
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
dnscmd servername /createdirectorypartition FQDN
42. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
stub
The Zone Aging/Scavenging Properties
1. DomainDnsZones and - 2. ForestDnsZones
parent and child AD DS domains
43. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
priority of dc2.lucernepublishing.com.
Transfer New Copy Of Zone From Master
Expires After
GlobalNames zone
44. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.
Scavenge Stale Resource Records
Transfer New Copy Of Zone From Master
Netlogon
parent zone to a child zone
45. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
delegate
enable zone transfers
Transfer From Master
The DNS server needs to be a domain controller.
46. DNSSEC enables a DNS server to ______ the resource records in its zones.
1. A SOA record 2. At least one NS record.
Scavenge Stale Resource Records
digitally sign
public key
47. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
To All DNS Servers In This Domain
Create Default Application Directory Partitions
NS record and an associated A record
accepted
48. To enable GlobalNames zone support - At an elevated command prompt - type the following: ______.
trust anchor
The Zone Aging/Scavenging Properties
public key
dnscmd . /config /enableglobalnamessupport 1
49. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
CNAME resource records
Retry Interval
Create Default Application Directory Partitions
Group Policy
50. By default - zone transfers are ______ from any zone.
Minimum (Default) TTL
%systemroot%System32Dns
will not
disabled