Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
|
SUBJECTS
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 30 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. By default - DCs include two application directory partitions reserved for DNS data: ______.
1. DomainDnsZones and - 2. ForestDnsZones
disabled
decreases
Group Policy
2. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
Service location (SRV)
Transfer From Master
digitally sign
NRPT
3. The most common resource records you need to create manually include the following:
notification
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
dnscmd servername /createdirectorypartition FQDN
enable zone transfers
4. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.
stub
Notify
dnscmd . /config /enableglobalnamessupport 1
Expires After
5. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.
To All Domain Controllers Specified In The Scope Of This Directory Partition
stub
NS record and an associated A record
digitally sign
6. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
Expires After
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
AD Zone Replication Scope page
aging
7. To enable aging for a particular zone - you have to enable this feature both at the ______ level.
server level and at the zone level
To All Domain Controllers In This Domain
dnscmd /ZoneExport <zone name> <zone file name>
Create Default Application Directory Partitions
8. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
GlobalNames zone
Trust anchors
dnscmd . /config /enableglobalnamessupport 1
Standard zones
9. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
Aging
Name Servers
Group Policy
Netlogon
10. To create a custom application directory partition - type the following command:
dnscmd servername /createdirectorypartition FQDN
primary
priority of dc2.lucernepublishing.com.
parent and child AD DS domains
11. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.
Retry Interval
To All Domain Controllers In This Domain
NRPT
stub
12. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
decreases
Retry Interval
DNS server
Netlogon
13. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco
dnscmd . /config /enableglobalnamessupport 1
the cache life of a resource record
dnscmd /ZoneExport <zone name> <zone file name>
1. A SOA record 2. At least one NS record.
14. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
stub
DNS zone
The Zone Aging/Scavenging Properties
15. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.
1. DomainDnsZones and - 2. ForestDnsZones
masters
request DNSSEC validation for specific queries
manually enlist
16. You must be a member of the ______ group to create an application directory partition.
DomainDnsZones
The Zone Aging/Scavenging Properties
Enterprise Admins
DNS zone
17. To ______ a zone is to create a new zone for a subdomain within a DNS namespace and relinquish authority of that new zone.
AD Zone Replication Scope page
dnscmd servername /createdirectorypartition FQDN
NRPT
delegate
18. ______ resource records are used to specify the location of specific services in a domain.
Service location (SRV)
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
AD Zone Replication Scope page
decreases
19. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
primary
dnscmd /ZoneExport <zone name> <zone file name>
notification
the cache life of a resource record
20. What is the name of the record that contains a hash of the public key in a delegated subdomain?
time stamp
deploying a GlobalNames zone
public key
A DS record
21. When you create a new zone - two types of records required for the zone are automatically created: ______
Retry Interval
1. A SOA record 2. At least one NS record.
NS record and an associated A record
aging
22. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.
Remove stale
primary
Notify
will not
23. This operation performs a zone transfer from the secondary zone's master server regardless of the serial number in the secondary zone's SOA resource record.
Transfer New Copy Of Zone From Master
disabled
deploying a GlobalNames zone
Standard zones
24. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.
delegate
notification
enable zone transfers
dnscmd servername /enlistdirectorypartition FQDN
25. Any of three events can ________________: When the refresh interval of the primary zone's SOA resource record expires - When a server hosting a secondary zone boots up - When a change occurs in the configuration of the primary zone and this primary
Win Srvr 2008 and Win Srvr 2008 R2
trigger zone transfers on secondary zones
request DNSSEC validation for specific queries
accepted
26. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.
Service location (SRV)
asymmetric encryption
manually enlist
Retry Interval
27. DNS delegations are automatically used to separate ______ in a single forest.
Win Srvr 2008 and Win Srvr 2008 R2
AD Zone Replication Scope page
parent and child AD DS domains
Transfer From Master
28. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
primary
Group Policy
public key
29. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
accepted
Scavenge Stale Resource Records
NRPT
dnscmd . /config /enableglobalnamessupport 1
30. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.
NRPT
aging
public key
enable zone transfers
31. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
Retry Interval
Aging
Refresh Interval
32. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.
To All DNS Servers In This Domain
Scavenge Stale Resource Records
To All DNS Servers In This Forest
Aging
33. You can perform a delegation only from a ________________.
DNS server
NRPT
parent zone to a child zone
parent and child AD DS domains
34. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
dnscmd servername /enlistdirectorypartition FQDN
Minimum (Default) TTL
The Zone Aging/Scavenging Properties
Group Policy
35. Scavenging can occur only when ______ is enabled.
standard
aging
delegate
enable zone transfers
36. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.
GlobalNames zone
priority of dc2.lucernepublishing.com.
use more than one name to point to
dnscmd servername /enlistdirectorypartition FQDN
37. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.
standard
NS record and an associated A record
Netlogon
enable zone transfers
38. The ______ option stores the new zone in the ForestDnsZones partition. Every DC in the entire forest and on which the DNS Server role is installed will receive a copy of the zone.
dnscmd /ZoneExport <zone name> <zone file name>
disabled
To All DNS Servers In This Forest
Refresh Interval
39. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
decreases
trust anchor
Scavenging
use more than one name to point to
40. You use Group Policy to configure DNS clients to _________________.
request DNSSEC validation for specific queries
dnscmd servername /enlistdirectorypartition FQDN
Netlogon
manually enlist
41. What does the 10 refer to in the following example: _ldap._tcp SRV 0 0 389 dc1.lucernepublishing.com.SRV 10 0 389 dc2.lucernepublishing.com.
dnscmd servername /createdirectorypartition FQDN
priority of dc2.lucernepublishing.com.
%systemroot%System32Dns
Trust anchors
42. There are three basic steps in _______________: 1. Enable GlobalNames zone support. 2. Create the GlobalNames zone. 3. Populate the GlobalNames zone.
%systemroot%System32Dns
manually enlist
AD Zone Replication Scope page
deploying a GlobalNames zone
43. DNSSEC enables a DNS server to ______ the resource records in its zones.
GlobalNames zone
digitally sign
dnscmd servername /enlistdirectorypartition FQDN
priority of dc2.lucernepublishing.com.
44. Used to facilitate the resolution of single-label computer names in a large network.
manually enlist
Group Policy
GlobalNames zone
decreases
45. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
Win Srvr 2008 and Win Srvr 2008 R2
Expires After
Transfer New Copy Of Zone From Master
CNAME resource records
46. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.
Netlogon
Trust anchors
GlobalNames zone
Notify
47. What are the server requirements for storing a zone in AD?
Aging
notification
The DNS server needs to be a domain controller.
To All Domain Controllers In This Domain
48. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
To All DNS Servers In This Forest
DomainDnsZones
Standard zones
Trust anchors
49. This operation reloads the secondary zone from the local storage.
1. DomainDnsZones and - 2. ForestDnsZones
Reload
To All Domain Controllers Specified In The Scope Of This Directory Partition
Notify
50. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
aging
parent and child AD DS domains
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
14