SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
ForestDnsZones
public key
enable zone transfers
request DNSSEC validation for specific queries
2. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
trigger zone transfers on secondary zones
NS record and an associated A record
partition
DNS server
3. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.
parent and child AD DS domains
Service location (SRV)
masters
AD Zone Replication Scope page
4. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.
time stamp
To All DNS Servers In This Domain
Aging
deploying a GlobalNames zone
5. Used to facilitate the resolution of single-label computer names in a large network.
Enterprise Admins
Name Servers
GlobalNames zone
14
6. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.
Retry Interval
standard
Standard zones
disabled
7. You must be a member of the ______ group to create an application directory partition.
Standard zones
Transfer New Copy Of Zone From Master
disabled
Enterprise Admins
8. By default - DCs include two application directory partitions reserved for DNS data: ______.
Transfer From Master
Win Srvr 2008 and Win Srvr 2008 R2
dnscmd servername /enlistdirectorypartition FQDN
1. DomainDnsZones and - 2. ForestDnsZones
9. A ______ is a data structure in AD that distinguishes data for different replication purposes.
delegate
Create Default Application Directory Partitions
partition
parent and child AD DS domains
10. This operation reloads the secondary zone from the local storage.
1. A SOA record 2. At least one NS record.
aging
%systemroot%System32Dns
Reload
11. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
Minimum (Default) TTL
14
trust anchor
Create Default Application Directory Partitions
12. What is the name of the record that contains a hash of the public key in a delegated subdomain?
NRPT
ForestDnsZones
A DS record
request DNSSEC validation for specific queries
13. When you create a new zone - two types of records required for the zone are automatically created: ______
use more than one name to point to
Create Default Application Directory Partitions
ForestDnsZones
1. A SOA record 2. At least one NS record.
14. To enable aging for a particular zone - you have to enable this feature both at the ______ level.
To All DNS Servers In This Forest
Scavenging
server level and at the zone level
deploying a GlobalNames zone
15. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
Name Servers
masters
Aging
DomainDnsZones
16. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
The Zone Aging/Scavenging Properties
parent and child AD DS domains
Netlogon
Win Srvr 2008 and Win Srvr 2008 R2
17. ______ resource records are used to specify the location of specific services in a domain.
Expires After
Service location (SRV)
NS record and an associated A record
stub
18. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
parent and child AD DS domains
aging
DomainDnsZones
Retry Interval
19. By default - zone transfers are ______ from any zone.
disabled
Win Srvr 2008 and Win Srvr 2008 R2
To All Domain Controllers In This Domain
14
20. For a delegation to be implemented - the parent zone must contain a _____ and an _____ (called a glue record) pointing to each authoritative server of the delegated domain.
NS record and an associated A record
To All DNS Servers In This Domain
Refresh Interval
DNS zone
21. DNSSEC enables a DNS server to ______ the resource records in its zones.
primary
digitally sign
trigger zone transfers on secondary zones
parent and child AD DS domains
22. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl
Refresh Interval
Name Servers
aging
AD Zone Replication Scope page
23. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.
Secondary
priority of dc2.lucernepublishing.com.
Win Srvr 2008 and Win Srvr 2008 R2
Create Default Application Directory Partitions
24. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.
Group Policy
enable zone transfers
Notify
CNAME resource records
25. Increasing the refresh interval ______ zone transfer traffic.
aging
use more than one name to point to
decreases
ForestDnsZones
26. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
Standard zones
Minimum (Default) TTL
Refresh Interval
Group Policy
27. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.
Minimum (Default) TTL
DNS zone
14
accepted
28. To enlist other DNS servers in the partition - type the following command:
will not
aging
dnscmd servername /enlistdirectorypartition FQDN
parent and child AD DS domains
29. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.
To All DNS Servers In This Forest
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
dnscmd servername /createdirectorypartition FQDN
Netlogon
30. The most common resource records you need to create manually include the following:
Service location (SRV)
accepted
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
parent zone to a child zone
31. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
The Zone Aging/Scavenging Properties
1. DomainDnsZones and - 2. ForestDnsZones
Enterprise Admins
deploying a GlobalNames zone
32. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.
NRPT
AD Zone Replication Scope page
GlobalNames zone
standard
33. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.
To All Domain Controllers In This Domain
ForestDnsZones
NS record and an associated A record
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
34. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.
Standard zones
%systemroot%System32Dns
stub
request DNSSEC validation for specific queries
35. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
masters
delegate
Aging
14
36. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
accepted
trust anchor
request DNSSEC validation for specific queries
Enterprise Admins
37. You can perform a delegation only from a ________________.
parent zone to a child zone
To All DNS Servers In This Forest
deploying a GlobalNames zone
1. DomainDnsZones and - 2. ForestDnsZones
38. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
1. DomainDnsZones and - 2. ForestDnsZones
manually enlist
Transfer New Copy Of Zone From Master
parent zone to a child zone
39. Any of three events can ________________: When the refresh interval of the primary zone's SOA resource record expires - When a server hosting a secondary zone boots up - When a change occurs in the configuration of the primary zone and this primary
Retry Interval
priority of dc2.lucernepublishing.com.
trigger zone transfers on secondary zones
The Zone Aging/Scavenging Properties
40. DNS delegations are automatically used to separate ______ in a single forest.
Win Srvr 2008 and Win Srvr 2008 R2
parent and child AD DS domains
DNS server
trigger zone transfers on secondary zones
41. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
use more than one name to point to
public key
Group Policy
dnscmd . /config /enableglobalnamessupport 1
42. When you create a new zone - two types of records required for the zone are automatically created. List them.
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
delegate
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Notify
43. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
CNAME resource records
AD Zone Replication Scope page
time stamp
parent zone to a child zone
44. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.
Refresh Interval
AD Zone Replication Scope page
Secondary
To All Domain Controllers In This Domain
45. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.
Netlogon
asymmetric encryption
trigger zone transfers on secondary zones
notification
46. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:
Scavenging
Enterprise Admins
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
aging
47. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.
masters
enable zone transfers
trust anchor
14
48. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.
enable zone transfers
dnscmd . /config /enableglobalnamessupport 1
Group Policy
Secondary
49. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.
disabled
ForestDnsZones
Transfer From Master
primary
50. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
Retry Interval
Group Policy
Trust anchors
dnscmd servername /enlistdirectorypartition FQDN