SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The source zones from which secondary zones acquire their info are called ______ - and the data copy procedures through which this info is regularly updated are called zone transfers.
Group Policy
masters
AD Zone Replication Scope page
aging
2. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco
decreases
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
the cache life of a resource record
Secondary
3. To enable GlobalNames zone support - At an elevated command prompt - type the following: ______.
dnscmd . /config /enableglobalnamessupport 1
request DNSSEC validation for specific queries
A DS record
To All Domain Controllers Specified In The Scope Of This Directory Partition
4. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
Transfer New Copy Of Zone From Master
Notify
14
public key
5. By default - zone transfers are ______ from any zone.
Standard zones
use more than one name to point to
disabled
dnscmd servername /createdirectorypartition FQDN
6. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
aging
trigger zone transfers on secondary zones
To All DNS Servers In This Domain
AD Zone Replication Scope page
7. What are the server requirements for storing a zone in AD?
NRPT
The DNS server needs to be a domain controller.
use more than one name to point to
NS record and an associated A record
8. To add an NS record - double-click any existing NS record in DNS Manager and add the server data to the ______ tab.
request DNSSEC validation for specific queries
Secondary
Name Servers
trust anchor
9. What is the name of the record that contains a hash of the public key in a delegated subdomain?
priority of dc2.lucernepublishing.com.
dnscmd servername /enlistdirectorypartition FQDN
primary
A DS record
10. The ______ allows you to specify the DNS query suffixes - prefixes - FQDNs - or reverse lookup subnets for which a Win 7 or Win Server 2008 R2 client will request DNSSEC.
NRPT
14
Create Default Application Directory Partitions
trust anchor
11. When the zone is stored in a file instead of AD - by default the primary zone file is named zone_name.dns - and this file is located in the ______ folder on the server.
%systemroot%System32Dns
time stamp
asymmetric encryption
standard
12. When you create a new zone - two types of records required for the zone are automatically created. List them.
parent and child AD DS domains
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
ForestDnsZones
Enterprise Admins
13. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
The Zone Aging/Scavenging Properties
aging
Trust anchors
Group Policy
14. The first step in preparing a zone for DNSSEC is to back up the current zone data. To back up a zone - type the following command at an elevated command prompt: _______.
1. A SOA record 2. At least one NS record.
14
dnscmd /ZoneExport <zone name> <zone file name>
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
15. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
Create Default Application Directory Partitions
accepted
will not
14
16. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.
masters
GlobalNames zone
priority of dc2.lucernepublishing.com.
ForestDnsZones
17. For a delegation to be implemented - the parent zone must contain a _____ and an _____ (called a glue record) pointing to each authoritative server of the delegated domain.
Name Servers
Notify
NS record and an associated A record
Remove stale
18. When scavenging is not enabled - you can perform manual scavenging in zones by right-clicking the server icon in the DNS Manager console tree and then choosing ______.
Scavenge Stale Resource Records
primary
%systemroot%System32Dns
To All DNS Servers In This Forest
19. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
Reload
use more than one name to point to
parent and child AD DS domains
accepted
20. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
The Zone Aging/Scavenging Properties
Win Srvr 2008 and Win Srvr 2008 R2
time stamp
manually enlist
21. You must be a member of the ______ group to create an application directory partition.
Enterprise Admins
Refresh Interval
delegate
Transfer From Master
22. A ______ is a data structure in AD that distinguishes data for different replication purposes.
partition
notification
Name Servers
digitally sign
23. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
primary
manually enlist
Create Default Application Directory Partitions
Aging
24. By right-clicking a secondary zone in the DNS Manager console tree - you can use the shortcut menu to perform the following secondary zone update operations:
Scavenge Stale Resource Records
Reload - Transfer From Master - Transfer New Copy Of Zone From Master
disabled
enable zone transfers
25. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.
DomainDnsZones
To All DNS Servers In This Domain
aging
accepted
26. This operation reloads the secondary zone from the local storage.
masters
dnscmd /ZoneExport <zone name> <zone file name>
AD Zone Replication Scope page
Reload
27. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.
NS record and an associated A record
To All Domain Controllers Specified In The Scope Of This Directory Partition
manually enlist
disabled
28. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
Netlogon
notification
Trust anchors
public key
29. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.
CNAME resource records
use more than one name to point to
deploying a GlobalNames zone
digitally sign
30. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
DNS server
Retry Interval
Service location (SRV)
request DNSSEC validation for specific queries
31. Increasing the refresh interval ______ zone transfer traffic.
decreases
parent and child AD DS domains
server level and at the zone level
DNS zone
32. A secondary zone will not be recognized as a valid name server until it contains a valid copy of zone data. For the secondary zone to obtain this data - you must first ______ to that server.
A DS record
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Service location (SRV)
enable zone transfers
33. Used to facilitate the resolution of single-label computer names in a large network.
The Zone Aging/Scavenging Properties
GlobalNames zone
enable zone transfers
NS record and an associated A record
34. To configure notifications - click ______ on the Zone Transfers tab when zone transfers are enabled.
To All Domain Controllers Specified In The Scope Of This Directory Partition
DNS server
Notify
dnscmd servername /enlistdirectorypartition FQDN
35. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.
AD Zone Replication Scope page
Refresh Interval
Aging
stub
36. DNSSEC enables a DNS server to ______ the resource records in its zones.
The DNS server needs to be a domain controller.
DNS zone
digitally sign
To All DNS Servers In This Domain
37. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.
The DNS server needs to be a domain controller.
Aging
Refresh Interval
Standard zones
38. To enable aging for a particular zone - you have to enable this feature both at the ______ level.
server level and at the zone level
1. A SOA record 2. At least one NS record.
Group Policy
aging
39. When you create a new zone - two types of records required for the zone are automatically created: ______
Win Srvr 2008 and Win Srvr 2008 R2
parent and child AD DS domains
1. A SOA record 2. At least one NS record.
decreases
40. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.
accepted
DNS zone
To All DNS Servers In This Forest
Aging
41. The _____ option stores the zone in the domain partition. Every DC in the local domain will receive a copy of the zone - regardless of whether the DNS Server role is installed on that DC.
Notify
delegate
To All Domain Controllers In This Domain
The Zone Aging/Scavenging Properties
42. A ______ is a database containing records that associate names with addresses for a defined portion of a DNS namespace.
DNS zone
Refresh Interval
aging
enable zone transfers
43. Scavenging can occur only when ______ is enabled.
aging
NS record and an associated A record
will not
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
44. You can perform a delegation only from a ________________.
Scavenging
1. A SOA record 2. At least one NS record.
The DNS server needs to be a domain controller.
parent zone to a child zone
45. If either of the default application directory partitions is deleted or damaged - you can re-create them in DNS Manager by right-clicking the server node and choosing ______.
Create Default Application Directory Partitions
dnscmd /ZoneExport <zone name> <zone file name>
Scavenge Stale Resource Records
Remove stale
46. To enlist other DNS servers in the partition - type the following command:
dnscmd servername /enlistdirectorypartition FQDN
Standard zones
primary
accepted
47. There are three basic steps in _______________: 1. Enable GlobalNames zone support. 2. Create the GlobalNames zone. 3. Populate the GlobalNames zone.
Create Default Application Directory Partitions
will not
deploying a GlobalNames zone
Aging
48. This operation performs a zone transfer from the secondary zone's master server regardless of the serial number in the secondary zone's SOA resource record.
request DNSSEC validation for specific queries
Transfer New Copy Of Zone From Master
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Trust anchors
49. You use Group Policy to configure DNS clients to _________________.
Service location (SRV)
request DNSSEC validation for specific queries
The DNS server needs to be a domain controller.
decreases
50. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.
will not
disabled
DomainDnsZones
use more than one name to point to
