SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco
Notify
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
public key
the cache life of a resource record
2. You use Group Policy to configure DNS clients to _________________.
request DNSSEC validation for specific queries
Secondary
Minimum (Default) TTL
%systemroot%System32Dns
3. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.
1. DomainDnsZones and - 2. ForestDnsZones
use more than one name to point to
notification
asymmetric encryption
4. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.
To All DNS Servers In This Domain
Service location (SRV)
aging
DNS zone
5. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
Expires After
server level and at the zone level
Group Policy
accepted
6. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.
asymmetric encryption
To All DNS Servers In This Domain
Notify
primary
7. By default - DCs include two application directory partitions reserved for DNS data: ______.
standard
Refresh Interval
parent zone to a child zone
1. DomainDnsZones and - 2. ForestDnsZones
8. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.
parent and child AD DS domains
Netlogon
primary
time stamp
9. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
14
Secondary
The Zone Aging/Scavenging Properties
Trust anchors
10. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
%systemroot%System32Dns
14
delegate
server level and at the zone level
11. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
Create Default Application Directory Partitions
Secondary
Transfer From Master
accepted
12. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
trigger zone transfers on secondary zones
Win Srvr 2008 and Win Srvr 2008 R2
dnscmd servername /enlistdirectorypartition FQDN
1. DomainDnsZones and - 2. ForestDnsZones
13. When you create a new zone - two types of records required for the zone are automatically created. List them.
the cache life of a resource record
Aging
notification
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
14. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
aging
DomainDnsZones
Netlogon
Reload
15. To add an NS record - double-click any existing NS record in DNS Manager and add the server data to the ______ tab.
Name Servers
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Minimum (Default) TTL
Scavenge Stale Resource Records
16. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
The DNS server needs to be a domain controller.
DNS zone
To All DNS Servers In This Domain
Trust anchors
17. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
dnscmd /ZoneExport <zone name> <zone file name>
accepted
Group Policy
To All DNS Servers In This Domain
18. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
dnscmd servername /createdirectorypartition FQDN
the cache life of a resource record
DNS server
1. A SOA record 2. At least one NS record.
19. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.
Retry Interval
disabled
Aging
ForestDnsZones
20. DNSSEC enables a DNS server to ______ the resource records in its zones.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
1. A SOA record 2. At least one NS record.
dnscmd /ZoneExport <zone name> <zone file name>
digitally sign
21. To ______ a zone is to create a new zone for a subdomain within a DNS namespace and relinquish authority of that new zone.
Refresh Interval
Create Default Application Directory Partitions
delegate
asymmetric encryption
22. When the zone is stored in a file instead of AD - by default the primary zone file is named zone_name.dns - and this file is located in the ______ folder on the server.
1. DomainDnsZones and - 2. ForestDnsZones
DNS zone
%systemroot%System32Dns
partition
23. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.
Scavenging
delegate
To All Domain Controllers In This Domain
public key
24. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha
aging
primary
14
CNAME resource records
25. What is the name of the record that contains a hash of the public key in a delegated subdomain?
Win Srvr 2008 and Win Srvr 2008 R2
A DS record
DNS server
DomainDnsZones
26. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.
deploying a GlobalNames zone
DomainDnsZones
Secondary
trigger zone transfers on secondary zones
27. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.
1. DomainDnsZones and - 2. ForestDnsZones
asymmetric encryption
dnscmd /ZoneExport <zone name> <zone file name>
Name Servers
28. Increasing the refresh interval ______ zone transfer traffic.
Transfer New Copy Of Zone From Master
dnscmd servername /createdirectorypartition FQDN
decreases
aging
29. The ______ option stores the new zone in the ForestDnsZones partition. Every DC in the entire forest and on which the DNS Server role is installed will receive a copy of the zone.
disabled
Scavenging
To All DNS Servers In This Forest
CNAME resource records
30. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.
Scavenging
Scavenge Stale Resource Records
AD Zone Replication Scope page
DNS zone
31. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.
Standard zones
A DS record
DomainDnsZones
NRPT
32. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
AD Zone Replication Scope page
enable zone transfers
dnscmd servername /createdirectorypartition FQDN
Transfer New Copy Of Zone From Master
33. The most common resource records you need to create manually include the following:
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
The DNS server needs to be a domain controller.
Trust anchors
accepted
34. To enlist other DNS servers in the partition - type the following command:
dnscmd servername /enlistdirectorypartition FQDN
Retry Interval
public key
1. DomainDnsZones and - 2. ForestDnsZones
35. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.
digitally sign
public key
Remove stale
partition
36. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl
NS record and an associated A record
Trust anchors
Transfer From Master
aging
37. To enable aging for a particular zone - you have to enable this feature both at the ______ level.
The DNS server needs to be a domain controller.
aging
Standard zones
server level and at the zone level
38. This operation performs a zone transfer from the secondary zone's master server regardless of the serial number in the secondary zone's SOA resource record.
Netlogon
standard
Transfer New Copy Of Zone From Master
ForestDnsZones
39. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.
asymmetric encryption
parent and child AD DS domains
stub
%systemroot%System32Dns
40. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.
Transfer New Copy Of Zone From Master
standard
Aging
Refresh Interval
41. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
Expires After
trigger zone transfers on secondary zones
ForestDnsZones
42. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.
To All Domain Controllers Specified In The Scope Of This Directory Partition
Enterprise Admins
will not
stub
43. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
Scavenging
stub
Service location (SRV)
trust anchor
44. Scavenging can occur only when ______ is enabled.
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
To All DNS Servers In This Domain
aging
digitally sign
45. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
ForestDnsZones
dnscmd /ZoneExport <zone name> <zone file name>
manually enlist
%systemroot%System32Dns
46. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
Expires After
decreases
NS record and an associated A record
stub
47. Any of three events can ________________: When the refresh interval of the primary zone's SOA resource record expires - When a server hosting a secondary zone boots up - When a change occurs in the configuration of the primary zone and this primary
NRPT
stub
Transfer New Copy Of Zone From Master
trigger zone transfers on secondary zones
48. There are three basic steps in _______________: 1. Enable GlobalNames zone support. 2. Create the GlobalNames zone. 3. Populate the GlobalNames zone.
Retry Interval
deploying a GlobalNames zone
notification
Enterprise Admins
49. Used to facilitate the resolution of single-label computer names in a large network.
Remove stale
Notify
CNAME resource records
GlobalNames zone
50. What kind of zones do not automatically perform time stamping on dynamically created resource records?
digitally sign
Standard zones
The DNS server needs to be a domain controller.
Netlogon
