Test your basic knowledge |

MCTS: Configuring A DNS Zone Infrastructure

Subjects : certifications, mcts, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.
Enterprise Admins
DomainDnsZones
time stamp
Scavenge Stale Resource Records

2. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
14
CNAME resource records
digitally sign
Transfer New Copy Of Zone From Master

3. DNSSEC enables a DNS server to ______ the resource records in its zones.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Scavenge Stale Resource Records
digitally sign
Reload

4. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.
request DNSSEC validation for specific queries
primary
decreases
stub

5. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
Refresh Interval
CNAME resource records
masters
accepted

6. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
asymmetric encryption
delegate
Retry Interval
manually enlist

7. The most common resource records you need to create manually include the following:
trust anchor
AD Zone Replication Scope page
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
the cache life of a resource record

8. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
Notify
DNS zone
Transfer From Master
Reload - Transfer From Master - Transfer New Copy Of Zone From Master

9. For a delegation to be implemented - the parent zone must contain a _____ and an _____ (called a glue record) pointing to each authoritative server of the delegated domain.
To All DNS Servers In This Domain
NS record and an associated A record
digitally sign
To All DNS Servers In This Forest

10. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.
To All Domain Controllers In This Domain
The Zone Aging/Scavenging Properties
digitally sign
Aging

11. What does the 10 refer to in the following example: _ldap._tcp SRV 0 0 389 dc1.lucernepublishing.com.SRV 10 0 389 dc2.lucernepublishing.com.
priority of dc2.lucernepublishing.com.
To All Domain Controllers In This Domain
parent zone to a child zone
Name Servers

12. There are three basic steps in _______________: 1. Enable GlobalNames zone support. 2. Create the GlobalNames zone. 3. Populate the GlobalNames zone.
deploying a GlobalNames zone
DomainDnsZones
trust anchor
Group Policy

13. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.
time stamp
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
aging
Create Default Application Directory Partitions

14. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:
accepted
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
request DNSSEC validation for specific queries
stub

15. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco
1. DomainDnsZones and - 2. ForestDnsZones
Service location (SRV)
trigger zone transfers on secondary zones
the cache life of a resource record

16. To enlist other DNS servers in the partition - type the following command:
dnscmd servername /enlistdirectorypartition FQDN
Scavenging
Retry Interval
dnscmd /ZoneExport <zone name> <zone file name>

17. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.
disabled
Name Servers
Scavenging
standard

18. When you create a new zone - two types of records required for the zone are automatically created. List them.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Expires After
Refresh Interval
Netlogon

19. A ______ is a data structure in AD that distinguishes data for different replication purposes.
manually enlist
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
the cache life of a resource record
partition

20. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
notification
masters
aging

21. Used to facilitate the resolution of single-label computer names in a large network.
deploying a GlobalNames zone
GlobalNames zone
14
parent zone to a child zone

22. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.
asymmetric encryption
Refresh Interval
dnscmd servername /enlistdirectorypartition FQDN
The Zone Aging/Scavenging Properties

23. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.
To All Domain Controllers In This Domain
primary
Remove stale
priority of dc2.lucernepublishing.com.

24. When you create a new zone - two types of records required for the zone are automatically created: ______
disabled
standard
1. A SOA record 2. At least one NS record.
Scavenging

25. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.
The Zone Aging/Scavenging Properties
Expires After
will not
AD Zone Replication Scope page

26. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.
trust anchor
DNS zone
1. A SOA record 2. At least one NS record.
aging

27. Any of three events can ________________: When the refresh interval of the primary zone's SOA resource record expires - When a server hosting a secondary zone boots up - When a change occurs in the configuration of the primary zone and this primary
public key
trigger zone transfers on secondary zones
Scavenging
GlobalNames zone

28. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
primary
GlobalNames zone
Minimum (Default) TTL
1. DomainDnsZones and - 2. ForestDnsZones

29. When the zone is stored in a file instead of AD - by default the primary zone file is named zone_name.dns - and this file is located in the ______ folder on the server.
use more than one name to point to
trigger zone transfers on secondary zones
%systemroot%System32Dns
Group Policy

30. Scavenging can occur only when ______ is enabled.
aging
Scavenge Stale Resource Records
time stamp
To All Domain Controllers Specified In The Scope Of This Directory Partition

31. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
masters
Aging
AD Zone Replication Scope page
Name Servers

32. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.
DNS zone
aging
use more than one name to point to
The Zone Aging/Scavenging Properties

33. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.
Name Servers
accepted
Reload
Remove stale

34. Also recommended for use in the following scenarios: When a host specified in an A resource record in the same zone needs to be renamed - When a generic name for a well-known server such as www needs to resolve to a group of individual computers tha
AD Zone Replication Scope page
primary
CNAME resource records
manually enlist

35. The value you configure in the ______ text box determines the length of time that a secondary server - without any contact with its master server - continues to answer queries from DNS clients. After this time elapses - the data is considered unrelia
request DNSSEC validation for specific queries
dnscmd . /config /enableglobalnamessupport 1
Expires After
enable zone transfers

36. You can perform a delegation only from a ________________.
parent and child AD DS domains
To All Domain Controllers In This Domain
%systemroot%System32Dns
parent zone to a child zone

37. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.
trust anchor
parent and child AD DS domains
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Create Default Application Directory Partitions

38. ______ refers to the process of deleting outdated resource records on which time stamps have been placed.
request DNSSEC validation for specific queries
Scavenging
Name Servers
Retry Interval

39. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.
enable zone transfers
dnscmd /ZoneExport <zone name> <zone file name>
parent and child AD DS domains
%systemroot%System32Dns

40. To enable aging for a particular zone - you have to enable this feature both at the ______ level.
NS record and an associated A record
Service location (SRV)
the cache life of a resource record
server level and at the zone level

41. The value you configure in the ______ text box determines how long a secondary server waits before retrying a failed zone transfer. Normally - this time is less than the refresh interval. The default value is 10 minutes.
Transfer From Master
NRPT
Retry Interval
aging

42. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
server level and at the zone level
use more than one name to point to
public key
disabled

43. The ______ service uses SRV records to locate DCs in a domain by searching the domain for the LDAP service.
manually enlist
The Zone Aging/Scavenging Properties
Remove stale
Netlogon

44. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
Win Srvr 2008 and Win Srvr 2008 R2
dnscmd /ZoneExport <zone name> <zone file name>
trust anchor
the cache life of a resource record

45. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.
To All DNS Servers In This Forest
CNAME resource records
asymmetric encryption
DNS server

46. Increasing the refresh interval ______ zone transfer traffic.
will not
dnscmd servername /enlistdirectorypartition FQDN
public key
decreases

47. The ___________________ dialog box enables you to modify two key settings related to aging and scavenging: 1. the no-refresh interval 2. and the refresh interval
The Zone Aging/Scavenging Properties
To All Domain Controllers In This Domain
Notify
CNAME resource records

48. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.
trust anchor
server level and at the zone level
Retry Interval
NRPT

49. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
decreases
Win Srvr 2008 and Win Srvr 2008 R2
disabled
DNS zone

50. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.
The Zone Aging/Scavenging Properties
Aging
To All DNS Servers In This Forest
dnscmd servername /enlistdirectorypartition FQDN