Test your basic knowledge |

MCTS: Configuring A DNS Zone Infrastructure

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.






2. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco






3. What are the server requirements for storing a zone in AD?






4. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl






5. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.






6. The most common resource records you need to create manually include the following:






7. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia






8. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.






9. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.






10. To create a custom application directory partition - type the following command:






11. To enable aging for a particular zone - you have to enable this feature both at the ______ level.






12. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.






13. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.






14. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.






15. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.






16. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.






17. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.






18. You can perform a delegation only from a ________________.






19. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.






20. A ______ is a data structure in AD that distinguishes data for different replication purposes.






21. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain






22. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.






23. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.






24. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.






25. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.






26. Scavenging can occur only when ______ is enabled.






27. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.






28. What is the name of the record that contains a hash of the public key in a delegated subdomain?






29. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:






30. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.






31. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.






32. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.






33. This operation performs a zone transfer from the secondary zone's master server regardless of the serial number in the secondary zone's SOA resource record.






34. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.






35. Any of three events can ________________: When the refresh interval of the primary zone's SOA resource record expires - When a server hosting a secondary zone boots up - When a change occurs in the configuration of the primary zone and this primary






36. What does the 10 refer to in the following example: _ldap._tcp SRV 0 0 389 dc1.lucernepublishing.com.SRV 10 0 389 dc2.lucernepublishing.com.






37. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.






38. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.






39. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.






40. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.






41. Used to facilitate the resolution of single-label computer names in a large network.






42. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.






43. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.






44. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.






45. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.






46. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha






47. You must be a member of the ______ group to create an application directory partition.






48. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.






49. To ______ a zone is to create a new zone for a subdomain within a DNS namespace and relinquish authority of that new zone.






50. By default - DCs include two application directory partitions reserved for DNS data: ______.