SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. For a delegation to be implemented - the parent zone must contain a _____ and an _____ (called a glue record) pointing to each authoritative server of the delegated domain.
Expires After
aging
primary
NS record and an associated A record
2. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
NRPT
Transfer From Master
Expires After
Retry Interval
3. What kind of zones do not automatically perform time stamping on dynamically created resource records?
time stamp
dnscmd servername /createdirectorypartition FQDN
Standard zones
primary
4. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
enable zone transfers
DNS server
Expires After
%systemroot%System32Dns
5. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.
To All DNS Servers In This Domain
delegate
will not
Group Policy
6. There are three basic steps in _______________: 1. Enable GlobalNames zone support. 2. Create the GlobalNames zone. 3. Populate the GlobalNames zone.
Notify
deploying a GlobalNames zone
%systemroot%System32Dns
primary
7. You must be a member of the ______ group to create an application directory partition.
Service location (SRV)
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
Enterprise Admins
To All Domain Controllers In This Domain
8. To add an NS record - double-click any existing NS record in DNS Manager and add the server data to the ______ tab.
trust anchor
parent zone to a child zone
Name Servers
%systemroot%System32Dns
9. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco
the cache life of a resource record
stub
Service location (SRV)
aging
10. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.
enable zone transfers
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
1. A SOA record 2. At least one NS record.
11. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
AD Zone Replication Scope page
server level and at the zone level
notification
Remove stale
12. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl
asymmetric encryption
A DS record
priority of dc2.lucernepublishing.com.
aging
13. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.
NRPT
DNS zone
time stamp
Enterprise Admins
14. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
accepted
To All DNS Servers In This Forest
ForestDnsZones
%systemroot%System32Dns
15. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.
time stamp
will not
use more than one name to point to
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
16. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.
Create Default Application Directory Partitions
parent zone to a child zone
partition
Netlogon
17. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
The Zone Aging/Scavenging Properties
public key
To All Domain Controllers In This Domain
Netlogon
18. To create a custom application directory partition - type the following command:
ForestDnsZones
To All Domain Controllers In This Domain
Create Default Application Directory Partitions
dnscmd servername /createdirectorypartition FQDN
19. This operation performs a zone transfer from the secondary zone's master server regardless of the serial number in the secondary zone's SOA resource record.
Scavenging
The Zone Aging/Scavenging Properties
parent and child AD DS domains
Transfer New Copy Of Zone From Master
20. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.
masters
parent and child AD DS domains
trust anchor
AD Zone Replication Scope page
21. When the zone is stored in a file instead of AD - by default the primary zone file is named zone_name.dns - and this file is located in the ______ folder on the server.
Enterprise Admins
%systemroot%System32Dns
request DNSSEC validation for specific queries
aging
22. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
Win Srvr 2008 and Win Srvr 2008 R2
The Zone Aging/Scavenging Properties
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
23. What is the name of the record that contains a hash of the public key in a delegated subdomain?
Reload
dnscmd servername /createdirectorypartition FQDN
CNAME resource records
A DS record
24. By default - DCs include two application directory partitions reserved for DNS data: ______.
Retry Interval
parent zone to a child zone
1. DomainDnsZones and - 2. ForestDnsZones
disabled
25. DNS delegations are automatically used to separate ______ in a single forest.
Scavenge Stale Resource Records
time stamp
Expires After
parent and child AD DS domains
26. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
ForestDnsZones
Group Policy
Win Srvr 2008 and Win Srvr 2008 R2
27. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
14
Enterprise Admins
To All DNS Servers In This Forest
dnscmd servername /enlistdirectorypartition FQDN
28. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.
Scavenging
decreases
dnscmd servername /enlistdirectorypartition FQDN
Refresh Interval
29. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
stub
Retry Interval
partition
primary
30. You can perform a delegation only from a ________________.
parent zone to a child zone
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
DNS server
enable zone transfers
31. The most common resource records you need to create manually include the following:
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Remove stale
Aging
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
32. To enlist other DNS servers in the partition - type the following command:
dnscmd servername /enlistdirectorypartition FQDN
asymmetric encryption
parent and child AD DS domains
enable zone transfers
33. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.
enable zone transfers
Notify
will not
Standard zones
34. What does the 10 refer to in the following example: _ldap._tcp SRV 0 0 389 dc1.lucernepublishing.com.SRV 10 0 389 dc2.lucernepublishing.com.
Name Servers
AD Zone Replication Scope page
priority of dc2.lucernepublishing.com.
CNAME resource records
35. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
disabled
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Service location (SRV)
DomainDnsZones
36. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.
CNAME resource records
digitally sign
asymmetric encryption
use more than one name to point to
37. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.
primary
The DNS server needs to be a domain controller.
will not
Enterprise Admins
38. Any of three events can ________________: When the refresh interval of the primary zone's SOA resource record expires - When a server hosting a secondary zone boots up - When a change occurs in the configuration of the primary zone and this primary
notification
request DNSSEC validation for specific queries
ForestDnsZones
trigger zone transfers on secondary zones
39. You use Group Policy to configure DNS clients to _________________.
Retry Interval
request DNSSEC validation for specific queries
accepted
server level and at the zone level
40. When you create a new zone - two types of records required for the zone are automatically created: ______
stub
1. A SOA record 2. At least one NS record.
CNAME resource records
parent and child AD DS domains
41. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
masters
Minimum (Default) TTL
dnscmd . /config /enableglobalnamessupport 1
Netlogon
42. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.
Expires After
Service location (SRV)
Aging
standard
43. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
GlobalNames zone
Minimum (Default) TTL
DNS server
Create Default Application Directory Partitions
44. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
dnscmd . /config /enableglobalnamessupport 1
14
The Zone Aging/Scavenging Properties
ForestDnsZones
45. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.
To All Domain Controllers In This Domain
GlobalNames zone
A DS record
%systemroot%System32Dns
46. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
digitally sign
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
Remove stale
manually enlist
47. To enable GlobalNames zone support - At an elevated command prompt - type the following: ______.
public key
accepted
priority of dc2.lucernepublishing.com.
dnscmd . /config /enableglobalnamessupport 1
48. DNSSEC enables a DNS server to ______ the resource records in its zones.
dnscmd /ZoneExport <zone name> <zone file name>
digitally sign
asymmetric encryption
accepted
49. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
Scavenging
Aging
Reload
Group Policy
50. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
Trust anchors
Name Servers
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
time stamp