SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. What kind of zones do not automatically perform time stamping on dynamically created resource records?
Reload
primary
Create Default Application Directory Partitions
Standard zones
2. When you create a new zone - two types of records required for the zone are automatically created: ______
To All DNS Servers In This Domain
1. A SOA record 2. At least one NS record.
Notify
standard
3. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
ForestDnsZones
aging
Transfer From Master
NS record and an associated A record
4. To enable GlobalNames zone support - At an elevated command prompt - type the following: ______.
dnscmd . /config /enableglobalnamessupport 1
time stamp
aging
standard
5. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
14
To All Domain Controllers Specified In The Scope Of This Directory Partition
priority of dc2.lucernepublishing.com.
aging
6. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
will not
manually enlist
The DNS server needs to be a domain controller.
DNS server
7. Increasing the refresh interval ______ zone transfer traffic.
decreases
masters
14
request DNSSEC validation for specific queries
8. What are the server requirements for storing a zone in AD?
The DNS server needs to be a domain controller.
To All Domain Controllers Specified In The Scope Of This Directory Partition
To All Domain Controllers In This Domain
public key
9. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.
Enterprise Admins
NRPT
Refresh Interval
DNS server
10. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.
DNS zone
Notify
Create Default Application Directory Partitions
Remove stale
11. This operation reloads the secondary zone from the local storage.
AD Zone Replication Scope page
Enterprise Admins
aging
Reload
12. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
Reload
decreases
Refresh Interval
The Zone Aging/Scavenging Properties
13. You must be a member of the ______ group to create an application directory partition.
public key
Enterprise Admins
server level and at the zone level
Scavenge Stale Resource Records
14. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.
decreases
Win Srvr 2008 and Win Srvr 2008 R2
Notify
time stamp
15. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.
The Zone Aging/Scavenging Properties
NRPT
will not
Scavenging
16. ______ refers to the process of deleting outdated resource records on which time stamps have been placed.
aging
public key
stub
Scavenging
17. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
DNS zone
DNS server
Transfer From Master
Remove stale
18. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.
standard
Secondary
A DS record
the cache life of a resource record
19. You can perform a delegation only from a ________________.
Reload
Minimum (Default) TTL
parent zone to a child zone
DNS zone
20. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.
The DNS server needs to be a domain controller.
Group Policy
masters
To All Domain Controllers In This Domain
21. What is the name of the record that contains a hash of the public key in a delegated subdomain?
A DS record
will not
The DNS server needs to be a domain controller.
Reload
22. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.
disabled
primary
delegate
To All Domain Controllers In This Domain
23. DNSSEC enables a DNS server to ______ the resource records in its zones.
digitally sign
Create Default Application Directory Partitions
manually enlist
Scavenge Stale Resource Records
24. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
server level and at the zone level
Group Policy
To All DNS Servers In This Domain
Notify
25. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha
CNAME resource records
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
accepted
Reload
26. Used to facilitate the resolution of single-label computer names in a large network.
The DNS server needs to be a domain controller.
Aging
GlobalNames zone
Secondary
27. The ______ option stores the new zone in the ForestDnsZones partition. Every DC in the entire forest and on which the DNS Server role is installed will receive a copy of the zone.
Netlogon
To All Domain Controllers In This Domain
To All DNS Servers In This Forest
GlobalNames zone
28. ______ resource records are used to specify the location of specific services in a domain.
Service location (SRV)
Netlogon
DomainDnsZones
Scavenge Stale Resource Records
29. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
standard
Standard zones
Trust anchors
public key
30. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
accepted
manually enlist
Transfer From Master
AD Zone Replication Scope page
31. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.
Aging
Remove stale
digitally sign
DNS zone
32. By default - zone transfers are ______ from any zone.
Minimum (Default) TTL
disabled
The DNS server needs to be a domain controller.
GlobalNames zone
33. Any of three events can ________________: When the refresh interval of the primary zone's SOA resource record expires - When a server hosting a secondary zone boots up - When a change occurs in the configuration of the primary zone and this primary
Retry Interval
trigger zone transfers on secondary zones
Group Policy
parent zone to a child zone
34. For a delegation to be implemented - the parent zone must contain a _____ and an _____ (called a glue record) pointing to each authoritative server of the delegated domain.
NS record and an associated A record
asymmetric encryption
trust anchor
AD Zone Replication Scope page
35. To create a custom application directory partition - type the following command:
Standard zones
primary
parent and child AD DS domains
dnscmd servername /createdirectorypartition FQDN
36. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.
1. DomainDnsZones and - 2. ForestDnsZones
priority of dc2.lucernepublishing.com.
deploying a GlobalNames zone
enable zone transfers
37. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
DNS server
disabled
dnscmd /ZoneExport <zone name> <zone file name>
masters
38. To enlist other DNS servers in the partition - type the following command:
Scavenging
Group Policy
Retry Interval
dnscmd servername /enlistdirectorypartition FQDN
39. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.
Service location (SRV)
Scavenge Stale Resource Records
1. A SOA record 2. At least one NS record.
dnscmd servername /createdirectorypartition FQDN
40. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.
dnscmd . /config /enableglobalnamessupport 1
Scavenging
will not
14
41. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
14
Retry Interval
Refresh Interval
DomainDnsZones
42. You use Group Policy to configure DNS clients to _________________.
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
request DNSSEC validation for specific queries
Reload
aging
43. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
Minimum (Default) TTL
Secondary
public key
To All DNS Servers In This Forest
44. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
Trust anchors
public key
Secondary
Expires After
45. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
Transfer New Copy Of Zone From Master
aging
time stamp
46. Scavenging can occur only when ______ is enabled.
aging
the cache life of a resource record
Expires After
GlobalNames zone
47. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
NS record and an associated A record
dnscmd . /config /enableglobalnamessupport 1
DomainDnsZones
the cache life of a resource record
48. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:
Scavenge Stale Resource Records
Transfer New Copy Of Zone From Master
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
asymmetric encryption
49. DNS delegations are automatically used to separate ______ in a single forest.
Refresh Interval
parent and child AD DS domains
Name Servers
server level and at the zone level
50. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
Transfer From Master
accepted
Enterprise Admins
AD Zone Replication Scope page