SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.
DNS zone
Transfer From Master
server level and at the zone level
Enterprise Admins
2. When you create a new zone - two types of records required for the zone are automatically created. List them.
To All Domain Controllers In This Domain
will not
To All DNS Servers In This Forest
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
3. This operation reloads the secondary zone from the local storage.
request DNSSEC validation for specific queries
parent and child AD DS domains
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
Reload
4. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.
Create Default Application Directory Partitions
standard
Group Policy
priority of dc2.lucernepublishing.com.
5. What is the name of the record that contains a hash of the public key in a delegated subdomain?
Win Srvr 2008 and Win Srvr 2008 R2
A DS record
To All Domain Controllers Specified In The Scope Of This Directory Partition
To All DNS Servers In This Domain
6. ______ refers to the process of deleting outdated resource records on which time stamps have been placed.
trust anchor
request DNSSEC validation for specific queries
Scavenge Stale Resource Records
Scavenging
7. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.
parent and child AD DS domains
Transfer From Master
decreases
To All Domain Controllers Specified In The Scope Of This Directory Partition
8. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
request DNSSEC validation for specific queries
Group Policy
Service location (SRV)
disabled
9. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
ForestDnsZones
digitally sign
public key
DomainDnsZones
10. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.
time stamp
Remove stale
disabled
Standard zones
11. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.
aging
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
asymmetric encryption
notification
12. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
DNS server
The Zone Aging/Scavenging Properties
partition
To All DNS Servers In This Forest
13. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.
Retry Interval
masters
Refresh Interval
To All DNS Servers In This Forest
14. Scavenging can occur only when ______ is enabled.
Refresh Interval
DomainDnsZones
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
aging
15. To enable GlobalNames zone support - At an elevated command prompt - type the following: ______.
dnscmd servername /enlistdirectorypartition FQDN
Transfer New Copy Of Zone From Master
dnscmd . /config /enableglobalnamessupport 1
use more than one name to point to
16. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.
digitally sign
DNS server
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
To All Domain Controllers In This Domain
17. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco
use more than one name to point to
the cache life of a resource record
NRPT
To All DNS Servers In This Forest
18. To enlist other DNS servers in the partition - type the following command:
dnscmd servername /enlistdirectorypartition FQDN
Name Servers
server level and at the zone level
To All DNS Servers In This Domain
19. Used to facilitate the resolution of single-label computer names in a large network.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
decreases
GlobalNames zone
Scavenging
20. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.
NRPT
Refresh Interval
Aging
time stamp
21. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.
asymmetric encryption
enable zone transfers
Win Srvr 2008 and Win Srvr 2008 R2
will not
22. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
Trust anchors
Expires After
aging
Netlogon
23. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
Win Srvr 2008 and Win Srvr 2008 R2
manually enlist
DNS zone
A DS record
24. To enable aging for a particular zone - you have to enable this feature both at the ______ level.
Netlogon
The Zone Aging/Scavenging Properties
public key
server level and at the zone level
25. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
Remove stale
Transfer New Copy Of Zone From Master
notification
AD Zone Replication Scope page
26. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
14
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
dnscmd /ZoneExport <zone name> <zone file name>
trust anchor
27. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
Group Policy
accepted
Transfer From Master
the cache life of a resource record
28. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.
parent and child AD DS domains
enable zone transfers
time stamp
aging
29. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl
aging
Group Policy
NRPT
Trust anchors
30. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.
disabled
stub
The DNS server needs to be a domain controller.
deploying a GlobalNames zone
31. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
dnscmd servername /enlistdirectorypartition FQDN
manually enlist
Standard zones
dnscmd /ZoneExport <zone name> <zone file name>
32. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.
NS record and an associated A record
To All Domain Controllers Specified In The Scope Of This Directory Partition
1. DomainDnsZones and - 2. ForestDnsZones
time stamp
33. Increasing the refresh interval ______ zone transfer traffic.
Transfer From Master
Reload
decreases
primary
34. When you create a new zone - two types of records required for the zone are automatically created: ______
notification
Netlogon
1. A SOA record 2. At least one NS record.
Group Policy
35. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
manually enlist
DomainDnsZones
The DNS server needs to be a domain controller.
asymmetric encryption
36. For a delegation to be implemented - the parent zone must contain a _____ and an _____ (called a glue record) pointing to each authoritative server of the delegated domain.
NS record and an associated A record
Transfer New Copy Of Zone From Master
ForestDnsZones
The Zone Aging/Scavenging Properties
37. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.
The Zone Aging/Scavenging Properties
dnscmd /ZoneExport <zone name> <zone file name>
asymmetric encryption
masters
38. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.
To All Domain Controllers Specified In The Scope Of This Directory Partition
Aging
Secondary
dnscmd /ZoneExport <zone name> <zone file name>
39. By default - zone transfers are ______ from any zone.
To All DNS Servers In This Domain
To All DNS Servers In This Forest
disabled
dnscmd servername /enlistdirectorypartition FQDN
40. The ______ option stores the new zone in the ForestDnsZones partition. Every DC in the entire forest and on which the DNS Server role is installed will receive a copy of the zone.
Standard zones
To All DNS Servers In This Domain
To All DNS Servers In This Forest
dnscmd . /config /enableglobalnamessupport 1
41. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.
Reload
digitally sign
primary
Secondary
42. By default - DCs include two application directory partitions reserved for DNS data: ______.
stub
1. DomainDnsZones and - 2. ForestDnsZones
GlobalNames zone
Service location (SRV)
43. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.
Secondary
dnscmd servername /enlistdirectorypartition FQDN
DomainDnsZones
14
44. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.
To All DNS Servers In This Domain
1. A SOA record 2. At least one NS record.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
aging
45. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
standard
Transfer From Master
the cache life of a resource record
Retry Interval
46. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
Minimum (Default) TTL
dnscmd . /config /enableglobalnamessupport 1
ForestDnsZones
GlobalNames zone
47. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
Service location (SRV)
Notify
Expires After
decreases
48. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
will not
DNS server
Name Servers
49. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.
AD Zone Replication Scope page
priority of dc2.lucernepublishing.com.
Minimum (Default) TTL
standard
50. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
14
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Transfer New Copy Of Zone From Master
Service location (SRV)
