SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.
enable zone transfers
DNS server
Win Srvr 2008 and Win Srvr 2008 R2
Name Servers
2. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
DNS server
standard
Trust anchors
parent and child AD DS domains
3. DNS delegations are automatically used to separate ______ in a single forest.
Notify
parent and child AD DS domains
aging
partition
4. Scavenging can occur only when ______ is enabled.
Minimum (Default) TTL
CNAME resource records
aging
digitally sign
5. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.
AD Zone Replication Scope page
Transfer New Copy Of Zone From Master
Remove stale
To All DNS Servers In This Domain
6. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.
stub
Create Default Application Directory Partitions
Secondary
1. DomainDnsZones and - 2. ForestDnsZones
7. What does the 10 refer to in the following example: _ldap._tcp SRV 0 0 389 dc1.lucernepublishing.com.SRV 10 0 389 dc2.lucernepublishing.com.
public key
A DS record
1. A SOA record 2. At least one NS record.
priority of dc2.lucernepublishing.com.
8. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
AD Zone Replication Scope page
Trust anchors
use more than one name to point to
Remove stale
9. The most common resource records you need to create manually include the following:
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
Win Srvr 2008 and Win Srvr 2008 R2
1. DomainDnsZones and - 2. ForestDnsZones
Service location (SRV)
10. You use Group Policy to configure DNS clients to _________________.
asymmetric encryption
use more than one name to point to
dnscmd servername /enlistdirectorypartition FQDN
request DNSSEC validation for specific queries
11. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.
notification
standard
1. A SOA record 2. At least one NS record.
Scavenge Stale Resource Records
12. This operation reloads the secondary zone from the local storage.
use more than one name to point to
dnscmd servername /enlistdirectorypartition FQDN
Reload
request DNSSEC validation for specific queries
13. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
priority of dc2.lucernepublishing.com.
Standard zones
accepted
Create Default Application Directory Partitions
14. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:
ForestDnsZones
delegate
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
trust anchor
15. By default - DCs include two application directory partitions reserved for DNS data: ______.
Standard zones
server level and at the zone level
1. DomainDnsZones and - 2. ForestDnsZones
Expires After
16. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.
Reload
dnscmd servername /enlistdirectorypartition FQDN
aging
To All Domain Controllers Specified In The Scope Of This Directory Partition
17. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
Enterprise Admins
Transfer From Master
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
asymmetric encryption
18. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
DNS server
Service location (SRV)
Transfer From Master
19. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl
Scavenge Stale Resource Records
Secondary
aging
1. A SOA record 2. At least one NS record.
20. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.
dnscmd /ZoneExport <zone name> <zone file name>
Aging
Transfer From Master
parent zone to a child zone
21. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.
will not
standard
dnscmd . /config /enableglobalnamessupport 1
Netlogon
22. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
14
manually enlist
The DNS server needs to be a domain controller.
masters
23. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
public key
%systemroot%System32Dns
14
The Zone Aging/Scavenging Properties
24. ______ refers to the process of deleting outdated resource records on which time stamps have been placed.
The DNS server needs to be a domain controller.
Retry Interval
Remove stale
Scavenging
25. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
Minimum (Default) TTL
request DNSSEC validation for specific queries
Refresh Interval
primary
26. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
stub
Remove stale
Expires After
Transfer From Master
27. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.
Transfer New Copy Of Zone From Master
Scavenge Stale Resource Records
will not
Retry Interval
28. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
stub
enable zone transfers
Win Srvr 2008 and Win Srvr 2008 R2
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
29. When you create a new zone - two types of records required for the zone are automatically created: ______
1. A SOA record 2. At least one NS record.
Standard zones
Enterprise Admins
request DNSSEC validation for specific queries
30. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha
CNAME resource records
Group Policy
Secondary
To All Domain Controllers Specified In The Scope Of This Directory Partition
31. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
digitally sign
CNAME resource records
DomainDnsZones
notification
32. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.
server level and at the zone level
request DNSSEC validation for specific queries
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
Remove stale
33. The ______ option stores the new zone in the ForestDnsZones partition. Every DC in the entire forest and on which the DNS Server role is installed will receive a copy of the zone.
To All DNS Servers In This Forest
ForestDnsZones
masters
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
34. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
dnscmd servername /createdirectorypartition FQDN
manually enlist
Netlogon
35. By default - zone transfers are ______ from any zone.
To All DNS Servers In This Forest
disabled
Scavenging
DNS zone
36. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
public key
Retry Interval
Service location (SRV)
trust anchor
37. ______ resource records are used to specify the location of specific services in a domain.
Service location (SRV)
To All Domain Controllers In This Domain
enable zone transfers
digitally sign
38. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.
1. A SOA record 2. At least one NS record.
use more than one name to point to
primary
1. DomainDnsZones and - 2. ForestDnsZones
39. What are the server requirements for storing a zone in AD?
The DNS server needs to be a domain controller.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
primary
Transfer From Master
40. You can perform a delegation only from a ________________.
Name Servers
trigger zone transfers on secondary zones
decreases
parent zone to a child zone
41. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.
masters
Standard zones
aging
A DS record
42. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
dnscmd servername /createdirectorypartition FQDN
dnscmd servername /enlistdirectorypartition FQDN
Retry Interval
parent zone to a child zone
43. To enable GlobalNames zone support - At an elevated command prompt - type the following: ______.
AD Zone Replication Scope page
NRPT
Service location (SRV)
dnscmd . /config /enableglobalnamessupport 1
44. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.
digitally sign
Notify
DomainDnsZones
Netlogon
45. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.
primary
priority of dc2.lucernepublishing.com.
Secondary
notification
46. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
Scavenge Stale Resource Records
server level and at the zone level
Service location (SRV)
dnscmd /ZoneExport <zone name> <zone file name>
47. To add an NS record - double-click any existing NS record in DNS Manager and add the server data to the ______ tab.
deploying a GlobalNames zone
Name Servers
notification
enable zone transfers
48. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
public key
Enterprise Admins
The DNS server needs to be a domain controller.
To All DNS Servers In This Forest
49. DNSSEC enables a DNS server to ______ the resource records in its zones.
digitally sign
enable zone transfers
NS record and an associated A record
1. A SOA record 2. At least one NS record.
50. To enlist other DNS servers in the partition - type the following command:
14
trigger zone transfers on secondary zones
dnscmd servername /enlistdirectorypartition FQDN
notification