/* */
SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha
Aging
To All DNS Servers In This Forest
To All Domain Controllers In This Domain
CNAME resource records
2. DNSSEC enables a DNS server to ______ the resource records in its zones.
digitally sign
1. A SOA record 2. At least one NS record.
Aging
Minimum (Default) TTL
3. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco
the cache life of a resource record
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
aging
GlobalNames zone
4. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
1. DomainDnsZones and - 2. ForestDnsZones
deploying a GlobalNames zone
Group Policy
notification
5. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.
asymmetric encryption
deploying a GlobalNames zone
primary
Notify
6. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:
notification
Aging
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
7. By default - DCs include two application directory partitions reserved for DNS data: ______.
Aging
Minimum (Default) TTL
NRPT
1. DomainDnsZones and - 2. ForestDnsZones
8. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.
1. A SOA record 2. At least one NS record.
stub
parent zone to a child zone
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
9. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
server level and at the zone level
parent zone to a child zone
Retry Interval
decreases
10. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
Remove stale
disabled
To All DNS Servers In This Forest
The Zone Aging/Scavenging Properties
11. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
A DS record
DomainDnsZones
Create Default Application Directory Partitions
NS record and an associated A record
12. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.
stub
Aging
Reload
trigger zone transfers on secondary zones
13. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
public key
masters
deploying a GlobalNames zone
Transfer From Master
14. What is the name of the record that contains a hash of the public key in a delegated subdomain?
request DNSSEC validation for specific queries
A DS record
Scavenge Stale Resource Records
To All DNS Servers In This Domain
15. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.
Scavenging
Refresh Interval
CNAME resource records
Netlogon
16. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.
Minimum (Default) TTL
Create Default Application Directory Partitions
Aging
accepted
17. You must be a member of the ______ group to create an application directory partition.
notification
DNS zone
dnscmd /ZoneExport <zone name> <zone file name>
Enterprise Admins
18. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.
trigger zone transfers on secondary zones
use more than one name to point to
stub
primary
19. This operation performs a zone transfer from the secondary zone's master server regardless of the serial number in the secondary zone's SOA resource record.
A DS record
deploying a GlobalNames zone
partition
Transfer New Copy Of Zone From Master
20. The most common resource records you need to create manually include the following:
Remove stale
dnscmd servername /createdirectorypartition FQDN
aging
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
21. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.
Refresh Interval
asymmetric encryption
masters
The Zone Aging/Scavenging Properties
22. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.
dnscmd /ZoneExport <zone name> <zone file name>
Reload
will not
Trust anchors
23. To create a custom application directory partition - type the following command:
dnscmd servername /createdirectorypartition FQDN
Service location (SRV)
parent zone to a child zone
notification
24. Used to facilitate the resolution of single-label computer names in a large network.
use more than one name to point to
aging
asymmetric encryption
GlobalNames zone
25. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
deploying a GlobalNames zone
will not
Trust anchors
trust anchor
26. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.
disabled
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
%systemroot%System32Dns
time stamp
27. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.
trust anchor
ForestDnsZones
Group Policy
trigger zone transfers on secondary zones
28. When you create a new zone - two types of records required for the zone are automatically created. List them.
Name Servers
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Create Default Application Directory Partitions
A DS record
29. ______ refers to the process of deleting outdated resource records on which time stamps have been placed.
asymmetric encryption
Remove stale
Scavenging
To All DNS Servers In This Domain
30. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.
dnscmd servername /enlistdirectorypartition FQDN
priority of dc2.lucernepublishing.com.
use more than one name to point to
Win Srvr 2008 and Win Srvr 2008 R2
31. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
digitally sign
dnscmd . /config /enableglobalnamessupport 1
accepted
Transfer From Master
32. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
AD Zone Replication Scope page
To All Domain Controllers Specified In The Scope Of This Directory Partition
parent zone to a child zone
Trust anchors
33. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl
aging
trigger zone transfers on secondary zones
To All Domain Controllers Specified In The Scope Of This Directory Partition
standard
34. Scavenging can occur only when ______ is enabled.
aging
Enterprise Admins
request DNSSEC validation for specific queries
Netlogon
35. A ______ is a data structure in AD that distinguishes data for different replication purposes.
Scavenging
partition
asymmetric encryption
Retry Interval
36. When you create a new zone - two types of records required for the zone are automatically created: ______
Name Servers
To All Domain Controllers Specified In The Scope Of This Directory Partition
1. A SOA record 2. At least one NS record.
Aging
37. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.
aging
notification
1. A SOA record 2. At least one NS record.
To All Domain Controllers Specified In The Scope Of This Directory Partition
38. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.
Notify
Aging
enable zone transfers
Refresh Interval
39. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.
DNS zone
To All Domain Controllers In This Domain
Retry Interval
Create Default Application Directory Partitions
40. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.
aging
Scavenge Stale Resource Records
Notify
NRPT
41. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
dnscmd /ZoneExport <zone name> <zone file name>
parent zone to a child zone
Name Servers
decreases
42. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
1. DomainDnsZones and - 2. ForestDnsZones
dnscmd servername /createdirectorypartition FQDN
Netlogon
43. What are the server requirements for storing a zone in AD?
%systemroot%System32Dns
standard
Standard zones
The DNS server needs to be a domain controller.
44. There are three basic steps in _______________: 1. Enable GlobalNames zone support. 2. Create the GlobalNames zone. 3. Populate the GlobalNames zone.
Trust anchors
deploying a GlobalNames zone
Service location (SRV)
Refresh Interval
45. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.
Scavenge Stale Resource Records
To All Domain Controllers In This Domain
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
AD Zone Replication Scope page
46. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
priority of dc2.lucernepublishing.com.
Transfer From Master
public key
enable zone transfers
47. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
parent zone to a child zone
Expires After
1. DomainDnsZones and - 2. ForestDnsZones
dnscmd . /config /enableglobalnamessupport 1
48. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
dnscmd /ZoneExport <zone name> <zone file name>
primary
masters
manually enlist
49. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.
Retry Interval
Win Srvr 2008 and Win Srvr 2008 R2
To All Domain Controllers Specified In The Scope Of This Directory Partition
Standard zones
50. What kind of zones do not automatically perform time stamping on dynamically created resource records?
decreases
use more than one name to point to
Standard zones
CNAME resource records
//
//