Test your basic knowledge |

MCTS: Configuring A DNS Zone Infrastructure

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. ______ resource records are used to specify the location of specific services in a domain.






2. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.






3. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.






4. What is the name of the record that contains a hash of the public key in a delegated subdomain?






5. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.






6. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.






7. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.






8. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.






9. There are three basic steps in _______________: 1. Enable GlobalNames zone support. 2. Create the GlobalNames zone. 3. Populate the GlobalNames zone.






10. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.






11. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.






12. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.






13. When you create a new zone - two types of records required for the zone are automatically created: ______






14. You must be a member of the ______ group to create an application directory partition.






15. To add an NS record - double-click any existing NS record in DNS Manager and add the server data to the ______ tab.






16. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.






17. Any of three events can ________________: When the refresh interval of the primary zone's SOA resource record expires - When a server hosting a secondary zone boots up - When a change occurs in the configuration of the primary zone and this primary






18. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.






19. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.






20. To enable aging for a particular zone - you have to enable this feature both at the ______ level.






21. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.






22. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.






23. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.






24. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.






25. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha






26. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.






27. When you create a new zone - two types of records required for the zone are automatically created. List them.






28. This operation performs a zone transfer from the secondary zone's master server regardless of the serial number in the secondary zone's SOA resource record.






29. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.






30. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco






31. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.






32. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.






33. The ______ option stores the new zone in the ForestDnsZones partition. Every DC in the entire forest and on which the DNS Server role is installed will receive a copy of the zone.






34. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.






35. You can perform a delegation only from a ________________.






36. DNSSEC enables a DNS server to ______ the resource records in its zones.






37. ______ refers to the process of deleting outdated resource records on which time stamps have been placed.






38. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.






39. This operation reloads the secondary zone from the local storage.






40. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.






41. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.






42. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.






43. When the zone is stored in a file instead of AD - by default the primary zone file is named zone_name.dns - and this file is located in the ______ folder on the server.






44. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.






45. You use Group Policy to configure DNS clients to _________________.






46. The most common resource records you need to create manually include the following:






47. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.






48. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval






49. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl






50. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.