Test your basic knowledge |

MCTS: Configuring A DNS Zone Infrastructure

Subjects : certifications, mcts, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. What is the name of the record that contains a hash of the public key in a delegated subdomain?
%systemroot%System32Dns
14
A DS record
delegate

2. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
aging
Scavenging
Expires After

3. When you create a new zone - two types of records required for the zone are automatically created. List them.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
14
manually enlist
parent and child AD DS domains

4. You use Group Policy to configure DNS clients to _________________.
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
NS record and an associated A record
request DNSSEC validation for specific queries
dnscmd servername /enlistdirectorypartition FQDN

5. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.
Remove stale
standard
notification
Minimum (Default) TTL

6. By default - zone transfers are ______ from any zone.
Reload
parent and child AD DS domains
aging
disabled

7. What are the server requirements for storing a zone in AD?
The DNS server needs to be a domain controller.
NRPT
server level and at the zone level
accepted

8. To enlist other DNS servers in the partition - type the following command:
dnscmd servername /enlistdirectorypartition FQDN
the cache life of a resource record
Refresh Interval
primary

9. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
decreases
public key
Group Policy
DNS zone

10. To create a custom application directory partition - type the following command:
Scavenging
Group Policy
dnscmd servername /createdirectorypartition FQDN
NRPT

11. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
disabled
Netlogon
public key
Win Srvr 2008 and Win Srvr 2008 R2

12. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.
Win Srvr 2008 and Win Srvr 2008 R2
Netlogon
To All Domain Controllers Specified In The Scope Of This Directory Partition
will not

13. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
trust anchor
masters
To All Domain Controllers Specified In The Scope Of This Directory Partition
DNS server

14. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
will not
dnscmd servername /createdirectorypartition FQDN
accepted

15. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
14
Name Servers
public key
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.

16. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.
will not
To All DNS Servers In This Domain
ForestDnsZones
To All Domain Controllers Specified In The Scope Of This Directory Partition

17. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.
Secondary
14
Minimum (Default) TTL
Notify

18. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
dnscmd /ZoneExport <zone name> <zone file name>
manually enlist
enable zone transfers
The Zone Aging/Scavenging Properties

19. This operation performs a zone transfer from the secondary zone's master server regardless of the serial number in the secondary zone's SOA resource record.
Service location (SRV)
stub
Transfer New Copy Of Zone From Master
Retry Interval

20. This operation reloads the secondary zone from the local storage.
stub
Reload
deploying a GlobalNames zone
delegate

21. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
will not
To All DNS Servers In This Domain
Minimum (Default) TTL
Standard zones

22. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.
public key
masters
will not
Scavenging

23. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.
parent zone to a child zone
Scavenge Stale Resource Records
Transfer New Copy Of Zone From Master
NRPT

24. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.
will not
To All Domain Controllers In This Domain
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
DNS server

25. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco
Group Policy
the cache life of a resource record
AD Zone Replication Scope page
public key

26. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.
To All Domain Controllers In This Domain
aging
Group Policy
Remove stale

27. You can perform a delegation only from a ________________.
parent zone to a child zone
partition
deploying a GlobalNames zone
Scavenging

28. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.
To All DNS Servers In This Forest
Win Srvr 2008 and Win Srvr 2008 R2
server level and at the zone level
time stamp

29. What kind of zones do not automatically perform time stamping on dynamically created resource records?
DNS zone
Standard zones
masters
Name Servers

30. When you create a new zone - two types of records required for the zone are automatically created: ______
1. A SOA record 2. At least one NS record.
Minimum (Default) TTL
will not
Enterprise Admins

31. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
Group Policy
GlobalNames zone
parent and child AD DS domains
trust anchor

32. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Transfer New Copy Of Zone From Master
use more than one name to point to
Aging

33. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
14
Scavenge Stale Resource Records
Standard zones
AD Zone Replication Scope page

34. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
stub
manually enlist
enable zone transfers
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.

35. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.
To All Domain Controllers Specified In The Scope Of This Directory Partition
The Zone Aging/Scavenging Properties
DomainDnsZones
parent zone to a child zone

36. The most common resource records you need to create manually include the following:
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
Service location (SRV)
notification
Win Srvr 2008 and Win Srvr 2008 R2

37. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
Remove stale
trigger zone transfers on secondary zones
request DNSSEC validation for specific queries
accepted

38. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
The Zone Aging/Scavenging Properties
deploying a GlobalNames zone
Minimum (Default) TTL
Create Default Application Directory Partitions

39. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.
DomainDnsZones
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
Service location (SRV)
primary

40. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
trust anchor
Group Policy
partition
Name Servers

41. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.
DNS zone
Minimum (Default) TTL
Netlogon
NRPT

42. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
Scavenge Stale Resource Records
DomainDnsZones
Standard zones
1. A SOA record 2. At least one NS record.

43. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.
Trust anchors
public key
1. DomainDnsZones and - 2. ForestDnsZones
notification

44. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.
aging
The Zone Aging/Scavenging Properties
standard
Notify

45. Any of three events can ________________: When the refresh interval of the primary zone's SOA resource record expires - When a server hosting a secondary zone boots up - When a change occurs in the configuration of the primary zone and this primary
AD Zone Replication Scope page
parent zone to a child zone
trigger zone transfers on secondary zones
dnscmd servername /enlistdirectorypartition FQDN

46. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.
will not
To All Domain Controllers Specified In The Scope Of This Directory Partition
CNAME resource records
Scavenge Stale Resource Records

47. DNSSEC enables a DNS server to ______ the resource records in its zones.
Transfer From Master
Notify
aging
digitally sign

48. The ______ option stores the new zone in the ForestDnsZones partition. Every DC in the entire forest and on which the DNS Server role is installed will receive a copy of the zone.
DNS server
1. DomainDnsZones and - 2. ForestDnsZones
primary
To All DNS Servers In This Forest

49. Increasing the refresh interval ______ zone transfer traffic.
time stamp
decreases
Secondary
%systemroot%System32Dns

50. To enable aging for a particular zone - you have to enable this feature both at the ______ level.
primary
public key
parent and child AD DS domains
server level and at the zone level