Quiz #2

¡Supera tus tareas y exámenes ahora con Quizwiz!

What tool allows you to utilize a simple interface to delegate permissions for domains, OUs, or containers?

Delegation of Control Wizard

__________ groups are nonsecurity-related groups created for the distribution of information to one or more persons.

Distribution

Which OU is created by default when Active Directory is installed?

Domain Controllers

Which FSMO role has the authority to manage the creation and deletion of domains, domain trees, and application data partitions in the forest?

Domain Naming Master

What special identity group contains all authenticated users and domain guests?

Everyone

How many RID Masters can a domain have?

1

Passwords for Windows Server 2008, Windows Vista, Windows Server 2003, and Microsoft Windows XP clients can be __________ characters in length

127

What port is used by Active Directory to direct search requests to a global catalog server?

3268

How many FSMO roles does Active Directory support?

5

As a rule of thumb, you should estimate __________ percent of the size of the ntds.dit file of every other domain in the forest when sizing hardware for a global catalog server.

50

The RID Master FSMO role distributes RIDs to domain controllers in what increments?

500

A password should be __________ characters in length to be considered a strong password.

8

Which of these design aspects should you consider when planning the appropriate location of FSMO role holders?

A) number of domains that are or will be part of the forest B) physical structure of the network C) number of domain controllers that will be available in each domain

To implement PKI, what must be installed on your Windows 2008 Server?

Active Directory Certificate Services

What console must be used to move the Domain Naming Master FSMO role?

Active Directory Domains and Trusts

The two built-in user accounts that are created on a Windows Server 2008 computer are the Administrator account and the __________ account.

Guest

Which FSMO role is responsible for reference updates from its domain objects to other domains?

Infrastructure Master

Where is the certificate database located on a Certification Authority?

C:\Windows\CertLog

What command-line utility is used to import or export Active Directory information from a comma-separated value (.csv) file?

CSVDE

What component issues and manages certificates for individuals, computers, and organizations?

Certification Authority

What can be used to add, delete, or modify objects in Active Directory, in addition to modifying the schema if necessary?

LDIFDE

__________ groups are a collection of user accounts that are local to one specific workstation or member server.

Local

What special identity group is used as a reduced-privilege account to allow applications to run on a server without requiring administrative access?

Network Service

What typically consists of at least four characters or digits that are entered while presenting a physical access token, such as an ATM card or smart card?

PIN

What is a system of digital certificates, certification authorities (CAs), and other registration authorities (RAs) that verify and authenticate the validity of each party involved in an electronic transaction through the use of public key cryptography?

PKI

__________ name refers to each user's login name.

SAM account

What special identity group is used by the system to allow permission to protected system files for services to function properly?

Service

__________ groups are used to consolidate groups and accounts that either span multiple domains or the entire forest.

Universal

Which of the following is a benefit of implementing a public key infrastructure (PKI)?

Users no longer need to remember passwords. B) All information is stored on the smart card, making it difficult for anyone except the intended user to use or access it. C) Smart cards can be used from remote locations, such as a home office, to provide authentication services.

What provides a robust scripting method that supports a multitude of administrative tasks including creating Active Directory objects, mapping drives, connecting to printers, modifying environment variables, and modifying registry keys?

Windows Script Host

When a user logs on, what is created that identifies the user and all of the user's group memberships?

access token

What is the process of confirming a user's identity by using a known value, such as a password, pin number on a smart card, or user's fingerprint or handprint in the case of biometric authentication?

authentication

What is the process of confirming that an authenticated user has the correct permissions to access one or more network resources?

authorization

All default groups are __________ groups.

built-In

Which of the following is not a type of user account that can be configured in Windows Server 2008?

built-in accounts

What allows a user to be able to log on using a cached copy of his or her logon credentials that have been stored on his or her local workstation?

cached credentials

Which of the following is not a characteristic of a strong password?

contains uppercase and lowercase letters, numbers, and nonalphabetic characters

Password-__________ is an attempt to discover a user's password

cracking

Password-cracking can be accomplished by intelligent guessing on the part of the hacker or through the use of an automated __________ attack

dictionary

What signifies an object's relative location within an Active Directory OU structure?

distinguished name

What types of certificates are generated by the enterprise CA and used to generate a smart card logon certificate for users in the organization?

enrollment agent

What holds a subset of forest-wide Active Directory objects and acts as a central repository by holding a complete copy of all objects from the host server's local domain with a partial copy of all objects from other domains within the same forest?

global catalog

What describes the process of configuring one or more groups as members of another group?

group nesting

When using CSVDE, what is the first line of the text file that uses proper attribute names?

header record

Which of the following is not a function performed by a global catalog server?

maintaining a backup of all data stored on a domain controller

What tool is used to seize a FSMO role?

ntdsutil

What is a partial copy of all objects from other domains within the same forest that is held on a global catalog server?

partial attribute set

A __________ is an alphanumeric sequence of characters that you enter with a username to access a server, workstation, or shared resource.

password

Each object's SID consists of two components: the domain portion and the __________.

relative identifier

What procedure is used only when you have experienced a catastrophic failure of a domain controller that holds a FSMO role and you need to recover that role?

role seizure

What process is used when you move a FSMO role gracefully from one domain controller to another?

role transfer

What command-line tool can be used with a standard user account to reduce the risks associated with the Administrator account?

runas

What is used to uniquely identify an object throughout the Active Directory domain?

security identifier

What is a credit card-sized or token-style device, such as a USB device, that is used with a PIN to enable logon to the enterprise?

smart card

What dedicated workstation allows an administrator or another authorized user to preconfigure certificates and smart cards on behalf of a user or workstation?

smart card enrollment station

You cannot manually modify the group membership of or view the membership lists of __________ groups

special identity

What can be defined as a password that follows guidelines that make it difficult for a potential hacker to determine the user's password?

strong password

What method of authentication requires a smart card and a PIN to provide more secure access to company resources?

two-factor authentication

What types of memberships are stored in the global catalog?

universal

What Windows Server 2008 feature stores universal group memberships on a local domain controller that can be used for logon to the domain, eliminating the need for frequent access to a global catalog server?

universal group membership caching


Conjuntos de estudio relacionados

CISSP Official ISC2 practice tests (All domains)

View Set

Chapter 16 Outcome Identification and Planning

View Set

الكيمياء للصف الثالث الثانوي - علل

View Set

Engineering and Technology Project Management Quiz #2

View Set

Anticoagulant, Antiplatelet & Thrombolytic Drugs

View Set

Chapter 7: The Nursing Process and Standards of Care

View Set

75 Free NCLEX Questions - c/o BrilliantNurse.com

View Set