/* */

Test your basic knowledge |

MCTS: Configuring A DNS Zone Infrastructure

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.






2. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition






3. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.






4. Used to facilitate the resolution of single-label computer names in a large network.






5. You must be a member of the ______ group to create an application directory partition.






6. By default - zone transfers are ______ from any zone.






7. Increasing the refresh interval ______ zone transfer traffic.






8. When the zone is stored in a file instead of AD - by default the primary zone file is named zone_name.dns - and this file is located in the ______ folder on the server.






9. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha






10. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.






11. To create a custom application directory partition - type the following command:






12. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.






13. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.






14. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.






15. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.






16. What are the server requirements for storing a zone in AD?






17. You can perform a delegation only from a ________________.






18. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.






19. DNSSEC enables a DNS server to ______ the resource records in its zones.






20. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.






21. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.






22. This operation performs a zone transfer from the secondary zone's master server regardless of the serial number in the secondary zone's SOA resource record.






23. To enable GlobalNames zone support - At an elevated command prompt - type the following: ______.






24. By default - DCs include two application directory partitions reserved for DNS data: ______.






25. To ______ a zone is to create a new zone for a subdomain within a DNS namespace and relinquish authority of that new zone.






26. For a delegation to be implemented - the parent zone must contain a _____ and an _____ (called a glue record) pointing to each authoritative server of the delegated domain.






27. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.






28. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.






29. ______ resource records are used to specify the location of specific services in a domain.






30. What does the 10 refer to in the following example: _ldap._tcp SRV 0 0 389 dc1.lucernepublishing.com.SRV 10 0 389 dc2.lucernepublishing.com.






31. To enable aging for a particular zone - you have to enable this feature both at the ______ level.






32. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.






33. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.






34. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.






35. Scavenging can occur only when ______ is enabled.






36. This operation reloads the secondary zone from the local storage.






37. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.






38. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.






39. To enlist other DNS servers in the partition - type the following command:






40. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.






41. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.






42. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.






43. What is the name of the record that contains a hash of the public key in a delegated subdomain?






44. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval






45. What kind of zones do not automatically perform time stamping on dynamically created resource records?






46. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.






47. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.






48. When you create a new zone - two types of records required for the zone are automatically created: ______






49. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.






50. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.






//