/* */
SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. By default - zone transfers are ______ from any zone.
Win Srvr 2008 and Win Srvr 2008 R2
AD Zone Replication Scope page
dnscmd /ZoneExport <zone name> <zone file name>
disabled
2. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
DNS server
1. A SOA record 2. At least one NS record.
Retry Interval
dnscmd servername /createdirectorypartition FQDN
3. DNS delegations are automatically used to separate ______ in a single forest.
Transfer New Copy Of Zone From Master
Minimum (Default) TTL
parent and child AD DS domains
disabled
4. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.
masters
dnscmd /ZoneExport <zone name> <zone file name>
Scavenge Stale Resource Records
accepted
5. A ______ is a data structure in AD that distinguishes data for different replication purposes.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
partition
Transfer New Copy Of Zone From Master
dnscmd /ZoneExport <zone name> <zone file name>
6. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
Group Policy
dnscmd . /config /enableglobalnamessupport 1
DomainDnsZones
partition
7. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.
To All Domain Controllers Specified In The Scope Of This Directory Partition
To All Domain Controllers In This Domain
decreases
enable zone transfers
8. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
Transfer From Master
Create Default Application Directory Partitions
Aging
dnscmd . /config /enableglobalnamessupport 1
9. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.
parent and child AD DS domains
server level and at the zone level
partition
Notify
10. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
Transfer From Master
Scavenging
14
Win Srvr 2008 and Win Srvr 2008 R2
11. Increasing the refresh interval ______ zone transfer traffic.
1. A SOA record 2. At least one NS record.
stub
decreases
dnscmd servername /enlistdirectorypartition FQDN
12. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
dnscmd /ZoneExport <zone name> <zone file name>
trust anchor
To All Domain Controllers In This Domain
Win Srvr 2008 and Win Srvr 2008 R2
13. To enable aging for a particular zone - you have to enable this feature both at the ______ level.
The DNS server needs to be a domain controller.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
server level and at the zone level
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
14. Any of three events can ________________: When the refresh interval of the primary zone's SOA resource record expires - When a server hosting a secondary zone boots up - When a change occurs in the configuration of the primary zone and this primary
trigger zone transfers on secondary zones
Scavenging
delegate
The DNS server needs to be a domain controller.
15. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.
digitally sign
NRPT
To All DNS Servers In This Domain
CNAME resource records
16. ______ resource records are used to specify the location of specific services in a domain.
deploying a GlobalNames zone
Service location (SRV)
The DNS server needs to be a domain controller.
request DNSSEC validation for specific queries
17. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
accepted
GlobalNames zone
decreases
stub
18. This operation performs a zone transfer from the secondary zone's master server regardless of the serial number in the secondary zone's SOA resource record.
Refresh Interval
To All Domain Controllers In This Domain
Transfer New Copy Of Zone From Master
14
19. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.
stub
To All DNS Servers In This Forest
dnscmd . /config /enableglobalnamessupport 1
NRPT
20. Scavenging can occur only when ______ is enabled.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
deploying a GlobalNames zone
aging
Create Default Application Directory Partitions
21. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.
request DNSSEC validation for specific queries
A DS record
ForestDnsZones
will not
22. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.
primary
trust anchor
Transfer From Master
Trust anchors
23. When the zone is stored in a file instead of AD - by default the primary zone file is named zone_name.dns - and this file is located in the ______ folder on the server.
%systemroot%System32Dns
NS record and an associated A record
Transfer From Master
To All DNS Servers In This Domain
24. When you create a new zone - two types of records required for the zone are automatically created. List them.
deploying a GlobalNames zone
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
trust anchor
parent and child AD DS domains
25. To enable GlobalNames zone support - At an elevated command prompt - type the following: ______.
deploying a GlobalNames zone
dnscmd . /config /enableglobalnamessupport 1
DNS server
masters
26. There are three basic steps in _______________: 1. Enable GlobalNames zone support. 2. Create the GlobalNames zone. 3. Populate the GlobalNames zone.
partition
asymmetric encryption
deploying a GlobalNames zone
14
27. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.
DNS server
digitally sign
Aging
Scavenging
28. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.
ForestDnsZones
Service location (SRV)
time stamp
Retry Interval
29. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.
trigger zone transfers on secondary zones
DNS zone
1. A SOA record 2. At least one NS record.
NRPT
30. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.
will not
masters
digitally sign
request DNSSEC validation for specific queries
31. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.
Remove stale
The Zone Aging/Scavenging Properties
dnscmd . /config /enableglobalnamessupport 1
1. DomainDnsZones and - 2. ForestDnsZones
32. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
priority of dc2.lucernepublishing.com.
notification
public key
Win Srvr 2008 and Win Srvr 2008 R2
33. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:
the cache life of a resource record
time stamp
aging
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
34. The most common resource records you need to create manually include the following:
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
dnscmd . /config /enableglobalnamessupport 1
dnscmd servername /enlistdirectorypartition FQDN
NRPT
35. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.
To All Domain Controllers Specified In The Scope Of This Directory Partition
Enterprise Admins
Transfer From Master
enable zone transfers
36. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.
notification
Expires After
enable zone transfers
The DNS server needs to be a domain controller.
37. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco
Service location (SRV)
the cache life of a resource record
Scavenging
accepted
38. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
partition
dnscmd servername /createdirectorypartition FQDN
The Zone Aging/Scavenging Properties
NRPT
39. This operation reloads the secondary zone from the local storage.
partition
Reload
14
Standard zones
40. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
GlobalNames zone
DNS server
A DS record
AD Zone Replication Scope page
41. What are the server requirements for storing a zone in AD?
use more than one name to point to
CNAME resource records
disabled
The DNS server needs to be a domain controller.
42. What is the name of the record that contains a hash of the public key in a delegated subdomain?
DNS server
dnscmd servername /createdirectorypartition FQDN
A DS record
To All DNS Servers In This Forest
43. You can perform a delegation only from a ________________.
Scavenging
parent zone to a child zone
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
A DS record
44. Used to facilitate the resolution of single-label computer names in a large network.
public key
GlobalNames zone
manually enlist
Remove stale
45. To add an NS record - double-click any existing NS record in DNS Manager and add the server data to the ______ tab.
primary
Trust anchors
enable zone transfers
Name Servers
46. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
notification
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
decreases
Group Policy
47. When you create a new zone - two types of records required for the zone are automatically created: ______
To All Domain Controllers Specified In The Scope Of This Directory Partition
A DS record
%systemroot%System32Dns
1. A SOA record 2. At least one NS record.
48. To enlist other DNS servers in the partition - type the following command:
The Zone Aging/Scavenging Properties
dnscmd servername /enlistdirectorypartition FQDN
Transfer From Master
aging
49. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
The DNS server needs to be a domain controller.
manually enlist
digitally sign
dnscmd servername /enlistdirectorypartition FQDN
50. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.
The Zone Aging/Scavenging Properties
aging
Secondary
standard
//
//
