ASINI Mod 4
Censu Technologies wants to enforce a strict timings policy such that users are able to log into their systems only during specific time slots on weekdays. The company also wants to restrict access on weekends. Glenna, a system administrator at Censu, is tasked with enforcing this change. What tab under a user object's properties will allow Glenna to make this change? a. Profile b. General c. Account d. Organization
c. Account
[A] are used to create unique [B] for newly created objects in the domain. All Answer Choices RID SID PID UUID
[A] RID [B] SID Page 239, Table 4-4
By default, a new domain has six organizational units: Domain Controllers, Builtin, Computers, ForeignSecurityPrincipals, Managed Service Accounts, and User. True False
False By default, a new domain only has one organization unit called Domain Controllers that contains the computer accounts for the domain controllers within the domain.
A computer account is created for your computer within the Active Directory database. True False
True
Azure Active Directory can be configured to trust an organization's Active Directory forest, or mirror it using a synchronization service. True False
True
[A] groups are designed for use with an email system. [B] are the default group type within Active Directory and can be assigned rights and permissions that apply to the members of the group. All Answer Choices Distribution Security Tertiary
[A] Distribution [B] Security
An Active Directory forest maintains a [A] functional level that defines the minimum [B] functional level required for each domain within the forest. All Answer Choices forest domain site container
[A] forest [B] domain
The Active Directory [A] stores a list of all available object types (called [B]) and their associated properties, (called [C]). All Answer Choices schema classes attributes
[A] schema [B] classes [C] attributes
Kettle Inc. from Florida merges with Blue Clu Networks from Minneapolis. Minisha, a system administrator, is granted the responsibility of configuring Active Directory across both locations to enable users from both locations to access common resources. If Minisha is able to accomplish this task successfully, which of the following must be true? a. Minisha is a member of the Enterprise Admins group in both organizations. b. Minisha is a member of the Domain Admins group in both organizations. c. Minisha has run the following command: Get-ADForest | select SchemaMaster,DomainNamingMaster. d. Minisha has run the following command: Set-ADDomainMode -Identity domainX.com -DomainMode Windows2012R2Domain.
a. Minisha is a member of the Enterprise Admins group in both organizations.
Kiora is setting up an RODC for the first time at one of her organization's branch offices. She creates a prestaged RODC computer account. Next, she installs a Windows Server 2019 system that will function as the RODC. What is the most appropriate step that Kiora should take next? a. Run the Active Directory Domain Services Installation Wizard b. Add branch office user accounts to the Allowed RODC Password Replication Group c. Create new user accounts for the branch office users d. Use the Active Directory Domain Services Configuration Wizard to configure the RODC
b. Add branch office user accounts to the Allowed RODC Password Replication Group
What is the term for domain and forest functions that must be coordinated from a single domain controller? a. Universal Group Membership Caching b. Flexible Single Master Operations c. Role seizure d. User Principle Name
b. Flexible Single Master Operations
Sanya, an IT administrator for an organization, installs a new application on 150 computers used by programmers in the organization. She does this with a few clicks only for this specific set of users without impacting the rest of the organization. Which of the following features of Active Directory is exemplified by Sanya's actions in this scenario? a. A member server b. Group Policy c. A standalone server d. Access Control List
b. Group Policy
Which of the following statements regarding a domain functional level is accurate? a. Unlike forest functional levels, you can revert to a previous domain functional level after it has been raised. b. It represents the oldest Windows Server version that can be used on a domain controller. c. A server containing Windows Server 2016 cannot run on a domain at the Windows Server 2019 functional level. d. It applies to domain controllers, clients, and other servers that are present in the domain.
b. It represents the oldest Windows Server version that can be used on a domain controller.
A recently promoted employee at your company has called you because they attempted to log in to their computer several times with a password created after a password expiry notice, but the attempts made were unsuccessful. You have reset the user's account password, but the user is still unable to log in. What is most likely the cause of the failure? a. The user is in a new OU and lacks permission to log into the computer used. b. The user's account has been locked because of frequent failed password attempts. c. The computer is having issues communicating with the domain and is attempting to use cached credentials. d. The global catalog server has not replicated the user's account information to the rest of the domain.
b. The user's account has been locked because of frequent failed password attempts.
Ahmad, a system administrator in an organization, is setting up new Active Directory domains for the Marketing and Sales teams in the organization. Previously, all the marketing and sales employees worked as a single team. Recently, the employees in these teams were reorganized into two separate teams. He is setting up Active Directory domains on Windows 2019 Server to reflect the organizational structure. What is the minimum number of domain controllers that Ahmad should add to the Marketing domain? a. Zero b. One c. Two d. Three
c. Two The minimum number of domain controllers for a domain is two. Ahmad should add two domain controllers each to the two new domains. If one domain controller fails, the other domain controller can continue to ensure domain authentication.
Keplez Informatics is headquartered in Sydney, Australia, and has smaller branch offices spread across the world. The RODC in one of the branch offices gets stolen. Shannon is the system administrator at Keplez Informatics. What is the appropriate security measure that Shannon should take? a. Shut down all RODCs b. Create a new RODC c. Disable user accounts in the branch office d. Delete the RODC computer account
d. Delete the RODC computer account
Alfons recently received a promotion to lead a team of 35 software engineers, testers, and business analysts. When he needs to send an email or meeting invite to his team, he realizes that he must type out the email IDs for all his team members. He approaches Priyanka from the IT team to help him make this process easier and more efficient. Which of the following features of Active Directory can Priyanka use to provide a solution? a. Universal Group Membership Caching b. User Principle Name c. Selective authentication d. Distribution groups
d. Distribution groups
A user, Petra.T, is trying to access their system while the global catalog server for the domain is offline. What is the most likely outcome? a. Petra.T will not be allowed to log in to the system because the global catalog server is not available. b. Petra.T will be allowed to log in and access resources across the domain. c. Petra.T will be locked out of their account until the domain controller can access the global catalog. d. Petra.T will be allowed to log in to the system with cached credentials.
d. Petra.T will be allowed to log in to the system with cached credentials.
By default, the only site created within a new forest does not contain any domain controller. True False
False
By default, the main local group accounts that are used for assigning rights and permissions to users include: (choose all that apply) a. Administrators b. Users c. Computers d. Guests
a. Administrators b. Users d. Guests
Which of the following organizations should consider using Azure Active Directory? a. An organization that subscribes to Office 365 services b. An organization that has a substantially onsite workforce c. An organization that uses IIS as a web server d. An organization that deploys Internet accessible services, such as FTP or DNS
a. An organization that subscribes to Office 365 services
If a site cannot hold a copy of the global catalog, which of the following features can be enabled on the site to provide fast authentication? a. Universal Group Membership Caching b. Flexible Single Master Operations c. Role seizure d. User Principle Name
a. Universal Group Membership Caching
The first domain in a forest is called the forest _______ domain. (fill in the blank)
root