SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.
partition
dnscmd servername /enlistdirectorypartition FQDN
Aging
Group Policy
2. To add an NS record - double-click any existing NS record in DNS Manager and add the server data to the ______ tab.
Netlogon
dnscmd servername /enlistdirectorypartition FQDN
deploying a GlobalNames zone
Name Servers
3. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.
Aging
stub
To All Domain Controllers In This Domain
To All Domain Controllers Specified In The Scope Of This Directory Partition
4. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.
NRPT
Trust anchors
the cache life of a resource record
CNAME resource records
5. The ______ option stores the new zone in the ForestDnsZones partition. Every DC in the entire forest and on which the DNS Server role is installed will receive a copy of the zone.
DNS zone
To All DNS Servers In This Forest
trust anchor
Service location (SRV)
6. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
dnscmd servername /enlistdirectorypartition FQDN
AD Zone Replication Scope page
Reload
public key
7. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
DNS zone
aging
enable zone transfers
8. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.
parent and child AD DS domains
Create Default Application Directory Partitions
asymmetric encryption
1. A SOA record 2. At least one NS record.
9. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.
NRPT
Notify
Scavenging
Aging
10. You must be a member of the ______ group to create an application directory partition.
priority of dc2.lucernepublishing.com.
Refresh Interval
Minimum (Default) TTL
Enterprise Admins
11. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
manually enlist
14
Secondary
dnscmd . /config /enableglobalnamessupport 1
12. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.
standard
A DS record
1. DomainDnsZones and - 2. ForestDnsZones
Expires After
13. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha
CNAME resource records
Service location (SRV)
parent zone to a child zone
Trust anchors
14. This operation reloads the secondary zone from the local storage.
DomainDnsZones
Reload
To All Domain Controllers In This Domain
To All Domain Controllers Specified In The Scope Of This Directory Partition
15. There are three basic steps in _______________: 1. Enable GlobalNames zone support. 2. Create the GlobalNames zone. 3. Populate the GlobalNames zone.
aging
deploying a GlobalNames zone
1. DomainDnsZones and - 2. ForestDnsZones
stub
16. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.
stub
dnscmd servername /enlistdirectorypartition FQDN
trust anchor
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
17. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.
time stamp
A DS record
masters
public key
18. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.
AD Zone Replication Scope page
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
disabled
Netlogon
19. What are the server requirements for storing a zone in AD?
To All DNS Servers In This Domain
enable zone transfers
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
The DNS server needs to be a domain controller.
20. The most common resource records you need to create manually include the following:
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
primary
parent and child AD DS domains
GlobalNames zone
21. Increasing the refresh interval ______ zone transfer traffic.
decreases
A DS record
Name Servers
use more than one name to point to
22. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
public key
trust anchor
dnscmd servername /createdirectorypartition FQDN
Enterprise Admins
23. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
dnscmd /ZoneExport <zone name> <zone file name>
DNS server
masters
%systemroot%System32Dns
24. You can perform a delegation only from a ________________.
dnscmd servername /createdirectorypartition FQDN
standard
parent zone to a child zone
Reload
25. DNS delegations are automatically used to separate ______ in a single forest.
parent and child AD DS domains
NS record and an associated A record
disabled
deploying a GlobalNames zone
26. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
1. DomainDnsZones and - 2. ForestDnsZones
Retry Interval
A DS record
delegate
27. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
Win Srvr 2008 and Win Srvr 2008 R2
the cache life of a resource record
1. A SOA record 2. At least one NS record.
trust anchor
28. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
NS record and an associated A record
14
Refresh Interval
enable zone transfers
29. By default - DCs include two application directory partitions reserved for DNS data: ______.
request DNSSEC validation for specific queries
Service location (SRV)
1. DomainDnsZones and - 2. ForestDnsZones
Standard zones
30. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
14
parent zone to a child zone
1. A SOA record 2. At least one NS record.
Transfer From Master
31. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
Trust anchors
priority of dc2.lucernepublishing.com.
AD Zone Replication Scope page
request DNSSEC validation for specific queries
32. This operation performs a zone transfer from the secondary zone's master server regardless of the serial number in the secondary zone's SOA resource record.
Create Default Application Directory Partitions
Win Srvr 2008 and Win Srvr 2008 R2
To All Domain Controllers In This Domain
Transfer New Copy Of Zone From Master
33. The ______ partition is replicated among all DCs that are also DNS servers in a particular domain
DomainDnsZones
masters
DNS zone
Remove stale
34. What is the name of the record that contains a hash of the public key in a delegated subdomain?
1. DomainDnsZones and - 2. ForestDnsZones
A DS record
The DNS server needs to be a domain controller.
trigger zone transfers on secondary zones
35. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.
ForestDnsZones
To All DNS Servers In This Domain
partition
server level and at the zone level
36. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.
Transfer From Master
Refresh Interval
notification
Aging
37. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
Secondary
partition
Netlogon
Minimum (Default) TTL
38. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
parent and child AD DS domains
Expires After
standard
Reload
39. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.
request DNSSEC validation for specific queries
enable zone transfers
DNS server
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
40. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:
To All Domain Controllers In This Domain
aging
partition
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
41. What kind of zones do not automatically perform time stamping on dynamically created resource records?
Standard zones
Transfer From Master
priority of dc2.lucernepublishing.com.
NRPT
42. When you create a new zone - two types of records required for the zone are automatically created: ______
1. A SOA record 2. At least one NS record.
The DNS server needs to be a domain controller.
use more than one name to point to
accepted
43. DNSSEC enables a DNS server to ______ the resource records in its zones.
digitally sign
trigger zone transfers on secondary zones
ForestDnsZones
The Zone Aging/Scavenging Properties
44. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.
trigger zone transfers on secondary zones
priority of dc2.lucernepublishing.com.
Secondary
AD Zone Replication Scope page
45. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.
standard
Name Servers
masters
stub
46. ______ refers to the process of deleting outdated resource records on which time stamps have been placed.
standard
Scavenging
disabled
manually enlist
47. Any of three events can ________________: When the refresh interval of the primary zone's SOA resource record expires - When a server hosting a secondary zone boots up - When a change occurs in the configuration of the primary zone and this primary
Remove stale
To All Domain Controllers Specified In The Scope Of This Directory Partition
manually enlist
trigger zone transfers on secondary zones
48. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
Group Policy
accepted
Netlogon
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
49. To enlist other DNS servers in the partition - type the following command:
Service location (SRV)
Secondary
NS record and an associated A record
dnscmd servername /enlistdirectorypartition FQDN
50. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
To All Domain Controllers Specified In The Scope Of This Directory Partition
AD Zone Replication Scope page
trigger zone transfers on secondary zones