Test your basic knowledge |

MCTS: Configuring A DNS Zone Infrastructure

Subjects : certifications, mcts, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. To enable GlobalNames zone support - At an elevated command prompt - type the following: ______.
deploying a GlobalNames zone
dnscmd . /config /enableglobalnamessupport 1
CNAME resource records
accepted

2. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
1. DomainDnsZones and - 2. ForestDnsZones
public key
Transfer From Master
Standard zones

3. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
Expires After
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Notify
%systemroot%System32Dns

4. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.
ForestDnsZones
Win Srvr 2008 and Win Srvr 2008 R2
GlobalNames zone
Retry Interval

5. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.
dnscmd servername /createdirectorypartition FQDN
Scavenge Stale Resource Records
notification
parent and child AD DS domains

6. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha
Reload
CNAME resource records
disabled
deploying a GlobalNames zone

7. ______ refers to the process of deleting outdated resource records on which time stamps have been placed.
Scavenging
priority of dc2.lucernepublishing.com.
Transfer New Copy Of Zone From Master
aging

8. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.
The DNS server needs to be a domain controller.
time stamp
1. A SOA record 2. At least one NS record.
Aging

9. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.
1. A SOA record 2. At least one NS record.
deploying a GlobalNames zone
GlobalNames zone
asymmetric encryption

10. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
time stamp
The Zone Aging/Scavenging Properties
Group Policy
dnscmd /ZoneExport <zone name> <zone file name>

11. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
disabled
dnscmd /ZoneExport <zone name> <zone file name>
delegate
The Zone Aging/Scavenging Properties

12. When you create a new zone - two types of records required for the zone are automatically created: ______
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
Remove stale
Enterprise Admins
1. A SOA record 2. At least one NS record.

13. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.
decreases
To All Domain Controllers In This Domain
Minimum (Default) TTL
disabled

14. A ______ is a data structure in AD that distinguishes data for different replication purposes.
Netlogon
partition
will not
asymmetric encryption

15. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
NS record and an associated A record
14
dnscmd . /config /enableglobalnamessupport 1
aging

16. To create a custom application directory partition - type the following command:
dnscmd servername /createdirectorypartition FQDN
partition
use more than one name to point to
1. DomainDnsZones and - 2. ForestDnsZones

17. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.
Create Default Application Directory Partitions
primary
accepted
use more than one name to point to

18. What does the 10 refer to in the following example: _ldap._tcp SRV 0 0 389 dc1.lucernepublishing.com.SRV 10 0 389 dc2.lucernepublishing.com.
priority of dc2.lucernepublishing.com.
Transfer New Copy Of Zone From Master
the cache life of a resource record
Remove stale

19. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
request DNSSEC validation for specific queries
Expires After
Refresh Interval

20. DNSSEC enables a DNS server to ______ the resource records in its zones.
Win Srvr 2008 and Win Srvr 2008 R2
time stamp
the cache life of a resource record
digitally sign

21. Scavenging can occur only when ______ is enabled.
ForestDnsZones
delegate
aging
Notify

22. You must be a member of the ______ group to create an application directory partition.
NS record and an associated A record
Enterprise Admins
AD Zone Replication Scope page
To All DNS Servers In This Domain

23. You use Group Policy to configure DNS clients to _________________.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Retry Interval
primary
request DNSSEC validation for specific queries

24. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.
Notify
priority of dc2.lucernepublishing.com.
1. DomainDnsZones and - 2. ForestDnsZones
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.

25. To enlist other DNS servers in the partition - type the following command:
decreases
Trust anchors
dnscmd servername /enlistdirectorypartition FQDN
stub

26. The ______ option stores the new zone in the ForestDnsZones partition. Every DC in the entire forest and on which the DNS Server role is installed will receive a copy of the zone.
A DS record
DomainDnsZones
To All DNS Servers In This Forest
ForestDnsZones

27. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.
request DNSSEC validation for specific queries
notification
disabled
DomainDnsZones

28. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
Netlogon
Enterprise Admins
GlobalNames zone
Retry Interval

29. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.
Secondary
standard
Group Policy
deploying a GlobalNames zone

30. What is the name of the record that contains a hash of the public key in a delegated subdomain?
parent zone to a child zone
A DS record
trigger zone transfers on secondary zones
parent and child AD DS domains

31. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.
server level and at the zone level
AD Zone Replication Scope page
Netlogon
enable zone transfers

32. What are the server requirements for storing a zone in AD?
delegate
The DNS server needs to be a domain controller.
parent and child AD DS domains
aging

33. When the zone is stored in a file instead of AD - by default the primary zone file is named zone_name.dns - and this file is located in the ______ folder on the server.
%systemroot%System32Dns
dnscmd . /config /enableglobalnamessupport 1
Scavenge Stale Resource Records
ForestDnsZones

34. Increasing the refresh interval ______ zone transfer traffic.
decreases
%systemroot%System32Dns
masters
standard

35. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.
aging
To All DNS Servers In This Domain
1. A SOA record 2. At least one NS record.
The Zone Aging/Scavenging Properties

36. This operation reloads the secondary zone from the local storage.
partition
accepted
The DNS server needs to be a domain controller.
Reload

37. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
Trust anchors
Refresh Interval
NS record and an associated A record
deploying a GlobalNames zone

38. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.
Netlogon
notification
Scavenge Stale Resource Records
masters

39. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.
To All Domain Controllers Specified In The Scope Of This Directory Partition
GlobalNames zone
Standard zones
accepted

40. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:
public key
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
primary
1. A SOA record 2. At least one NS record.

41. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
public key
dnscmd /ZoneExport <zone name> <zone file name>
AD Zone Replication Scope page
Scavenging

42. Any of three events can ________________: When the refresh interval of the primary zone's SOA resource record expires - When a server hosting a secondary zone boots up - When a change occurs in the configuration of the primary zone and this primary
Group Policy
trigger zone transfers on secondary zones
Scavenge Stale Resource Records
Name Servers

43. You can perform a delegation only from a ________________.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
NRPT
parent zone to a child zone
will not

44. To add an NS record - double-click any existing NS record in DNS Manager and add the server data to the ______ tab.
DNS zone
trust anchor
AD Zone Replication Scope page
Name Servers

45. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.
To All Domain Controllers In This Domain
use more than one name to point to
Aging
Notify

46. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
ForestDnsZones
trust anchor
aging
To All Domain Controllers In This Domain

47. The most common resource records you need to create manually include the following:
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
14
time stamp
NRPT

48. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.
digitally sign
1. A SOA record 2. At least one NS record.
Win Srvr 2008 and Win Srvr 2008 R2
Remove stale

49. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
dnscmd /ZoneExport <zone name> <zone file name>
aging
DomainDnsZones
1. A SOA record 2. At least one NS record.

50. By default - zone transfers are ______ from any zone.
disabled
notification
DNS server
DomainDnsZones