SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
MCTS: Configuring A DNS Zone Infrastructure
Start Test
Study First
Subjects
:
certifications
,
mcts
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The most common resource records you need to create manually include the following:
Name Servers
deploying a GlobalNames zone
AD Zone Replication Scope page
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
2. You use Group Policy to configure DNS clients to _________________.
public key
Name Servers
request DNSSEC validation for specific queries
manually enlist
3. The value you configure in the ______ text box determines how long a secondary DNS server waits before querying the master server for a zone renewal. The default value for this setting is 15 minutes.
A DS record
ForestDnsZones
DNS zone
Refresh Interval
4. By default - zone transfers are ______ from any zone.
dnscmd servername /enlistdirectorypartition FQDN
disabled
asymmetric encryption
Group Policy
5. ______ refers to the process of deleting outdated resource records on which time stamps have been placed.
enable zone transfers
Scavenging
Netlogon
ForestDnsZones
6. The no-refresh interval is the period after a time stamp during which a zone or server rejects a ______ refresh. The default no-refresh interval is 7 days.
Group Policy
time stamp
The Zone Aging/Scavenging Properties
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
7. TTL values are not relevant for resource records within their authoritative zones. Instead - the TTL refers to ______ in nonauthoritative servers. A DNS server that has cached a resource record from a previous query discards the record when that reco
the cache life of a resource record
14
dnscmd servername /enlistdirectorypartition FQDN
Netlogon
8. For a DC to fall within the scope of such a directory partition - you must ______ that DC in the partition.
Expires After
manually enlist
AD Zone Replication Scope page
priority of dc2.lucernepublishing.com.
9. What does the 10 refer to in the following example: _ldap._tcp SRV 0 0 389 dc1.lucernepublishing.com.SRV 10 0 389 dc2.lucernepublishing.com.
request DNSSEC validation for specific queries
DNS server
To All Domain Controllers In This Domain
priority of dc2.lucernepublishing.com.
10. Alias resource records are sometimes called canonical names (CNAME). These records allow you to ______ a single host.
public key
use more than one name to point to
1. DomainDnsZones and - 2. ForestDnsZones
disabled
11. A ______ zone is similar to a secondary zone - but it contains only those resource records necessary to identify the authoritative DNS servers for the master zone.
stub
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
To All DNS Servers In This Forest
GlobalNames zone
12. ______ are public keys from other zones that are used to validate digitally signed records originating from those zones and from delegated subdomains that are also DNSSEC-compatible.
the cache life of a resource record
disabled
GlobalNames zone
Trust anchors
13. To add an NS record - double-click any existing NS record in DNS Manager and add the server data to the ______ tab.
server level and at the zone level
Name Servers
Refresh Interval
public key
14. ______ in DNS refers to the process of using time stamps to track the age of dynamically registered resource records.
Notify
NRPT
decreases
Aging
15. Manually created resource records for all zone types are assigned a time stamp of 0; this value indicates that they ______ be aged.
will not
aging
server level and at the zone level
Enterprise Admins
16. When you do not store a zone in AD - the zone is called a ______ zone - and zone data is stored in text files on the DNS server.
Service location (SRV)
Win Srvr 2008 and Win Srvr 2008 R2
standard
Refresh Interval
17. Any of three events can ________________: When the refresh interval of the primary zone's SOA resource record expires - When a server hosting a secondary zone boots up - When a change occurs in the configuration of the primary zone and this primary
trigger zone transfers on secondary zones
masters
server level and at the zone level
decreases
18. To enable aging for a particular zone - you have to enable this feature both at the ______ level.
Group Policy
stub
server level and at the zone level
1. A SOA record 2. At least one NS record.
19. This operation reloads the secondary zone from the local storage.
14
public key
Reload
aging
20. A ______ is a public key for a remote DNS server that is trusted and able to provide DNSSEC responses.
time stamp
DomainDnsZones
trust anchor
AD Zone Replication Scope page
21. The refresh interval is the time after the no-refresh interval during which time stamp refreshes are ______ and resource records are not scavenged. The default refresh interval is 7 days.
digitally sign
accepted
server level and at the zone level
DomainDnsZones
22. Win 7 clients can be configured to request DNSSEC through the Name Resolution Policy Table (NRPT) in ______.
parent and child AD DS domains
trigger zone transfers on secondary zones
Group Policy
dnscmd . /config /enableglobalnamessupport 1
23. Consequently - when aging is enabled - dynamically registered resource records can be scavenged after ___ days by default.
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
Aging
14
Trust anchors
24. Increasing the refresh interval ______ zone transfer traffic.
dnscmd servername /enlistdirectorypartition FQDN
decreases
parent zone to a child zone
Service location (SRV)
25. To enlist other DNS servers in the partition - type the following command:
dnscmd servername /enlistdirectorypartition FQDN
GlobalNames zone
dnscmd . /config /enableglobalnamessupport 1
accepted
26. During this operation - the server hosting the local secondary zone determines whether the serial number in the secondary zone's SOA resource record has expired and then pulls a zone transfer from the master server.
Notify
public key
partition
Transfer From Master
27. DNS delegations are automatically used to separate ______ in a single forest.
parent and child AD DS domains
The Zone Aging/Scavenging Properties
Scavenge Stale Resource Records
dnscmd servername /enlistdirectorypartition FQDN
28. The Zone Transfers tab also allows you to configure ______ to secondary servers whenever a change occurs at the primary zone.
use more than one name to point to
aging
deploying a GlobalNames zone
notification
29. A ______ zone provides original read-write source data that allows the local DNS server to answer DNS queries authoritatively about a portion of a DNS namespace.
primary
dnscmd servername /enlistdirectorypartition FQDN
dnscmd servername /createdirectorypartition FQDN
Win Srvr 2008 and Win Srvr 2008 R2
30. Scavenging can occur only when ______ is enabled.
parent and child AD DS domains
parent zone to a child zone
enable zone transfers
aging
31. The GlobalNames zone is compatible only with DNS servers running ______. Therefore - it cannot replicate to servers running earlier versions of Windows Server.
dnscmd /ZoneExport <zone name> <zone file name>
the cache life of a resource record
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
Win Srvr 2008 and Win Srvr 2008 R2
32. When you create a new zone - two types of records required for the zone are automatically created: ______
1. A SOA record 2. At least one NS record.
Scavenge Stale Resource Records
dnscmd servername /createdirectorypartition FQDN
The DNS server needs to be a domain controller.
33. DNSSEC in Win Server 2008 R2 allows a ______ to validate DNS data on behalf of its Win 7 clients.
DNS server
Scavenging
CNAME resource records
dnscmd . /config /enableglobalnamessupport 1
34. The four options presented on the _____________________ are the following: 1. To All DNS Servers In This Forest 2. To All DNS Servers In This Domain 3. To All DCs In This Domain 4. To All DCs Specified In The Scope Of This Directory Partition
deploying a GlobalNames zone
To All Domain Controllers Specified In The Scope Of This Directory Partition
stub
AD Zone Replication Scope page
35. The value you configure in the ______ text box determines the default Time to Live (TTL) that is applied to all resource records in the zone. The default value is one hour.
trust anchor
To All DNS Servers In This Domain
Group Policy
Minimum (Default) TTL
36. The ______ option stores the new zone in the Domain-DnsZones partition. Every DC in the local domain and on which the DNS Server role is installed will receive a copy of the zone.
To All DNS Servers In This Domain
Retry Interval
Scavenge Stale Resource Records
Host (A or AAAA) - Alias (CNAME) - Mail exchanger (MX) - Pointer (PTR) - Service location (SRV)
37. ______ zones provide a means to offload DNS query traffic in areas of the network where a zone is heavily queried and used.
use more than one name to point to
parent and child AD DS domains
The DNS server needs to be a domain controller.
Secondary
38. The ______ partition is replicated among all DCs that are also DNS servers in every domain in an AD forest.
ForestDnsZones
trigger zone transfers on secondary zones
request DNSSEC validation for specific queries
disabled
39. You must be a member of the ______ group to create an application directory partition.
ForestDnsZones
Enterprise Admins
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
primary
40. When you create a new zone - two types of records required for the zone are automatically created. List them.
ForestDnsZones
Transfer New Copy Of Zone From Master
1. Start of Authority (SOA) record that defines basic properties for the zone. 2. NS record signifying the name of the server or servers authoritative for the zone.
DomainDnsZones
41. What kind of zones do not automatically perform time stamping on dynamically created resource records?
AD Zone Replication Scope page
public key
Minimum (Default) TTL
Standard zones
42. Active Directory-integrated zones perform time stamping for dynamically registered records by default - even before aging and scavenging are enabled. However - primary standard zones place time stamps on dynamically registered records in the zone onl
standard
masters
aging
1. A SOA record 2. At least one NS record.
43. Public key cryptography provides ______ - which means that separate keys are used to encrypt and decrypt data.
asymmetric encryption
server level and at the zone level
Transfer From Master
request DNSSEC validation for specific queries
44. When the zone is stored in a file instead of AD - by default the primary zone file is named zone_name.dns - and this file is located in the ______ folder on the server.
Netlogon
standard
parent and child AD DS domains
%systemroot%System32Dns
45. What is the name of the record that contains a hash of the public key in a delegated subdomain?
notification
public key
14
A DS record
46. Together - aging and scavenging provide a mechanism to ______ resource records - which can accumulate in zone data over time. Both aging and scavenging are disabled by default.
ForestDnsZones
aging
Remove stale
enable zone transfers
47. There are three basic steps in _______________: 1. Enable GlobalNames zone support. 2. Create the GlobalNames zone. 3. Populate the GlobalNames zone.
Reload
Expires After
disabled
deploying a GlobalNames zone
48. In this way - digital signatures use ______ cryptography to prove that information is unspoofed and unchanged.
public key
DNS zone
masters
Notify
49. The ______ option stores the zone in the user-created application directory partition specified in the associated drop-down list box.
time stamp
To All Domain Controllers Specified In The Scope Of This Directory Partition
delegate
the cache life of a resource record
50. A ______ is a data structure in AD that distinguishes data for different replication purposes.
Retry Interval
Service location (SRV)
partition
accepted