Ch. 6 Quiz

Ace your homework & exams now with Quizwiz!

Which of the following is the term for a DC in a site that handles replication of a directory partition for that site?

Bridgehead server

You have an application integrated with AD DS that maintains Active Directory objects containing credential information, and there are serious security implications if these objects are compromised. An RODC at one branch office isn't physically secure, and theft is a risk. How can you best protect this application's sensitive data?

Configure a filtered attribute set and specify the application-related objects

You need to install an RODC in a new branch office and want to use an existing workgroup server running Windows Server 2012 R2. The office is a plane flight away and is connected via a WAN. You want an employee at the branch office, Michael, to do the RODC installation because he's good at working with computers and following directions. What should you do?

Create the computer account for the RODC in the Domain Controllers OU and specify Michael's account as one that can join the computer to the domain

You have four DCs in your domain. Active Directory appears to be corrupted on one of the DCs, and you suspect a failing hard drive. You attempt to remove it from the domain, but the procedure fails. You take the DC offline permanently and to replace it with another DC of the same name. What must you do before you can replace the DC?

Perform metadata cleanup

Which of the following are reasons for establishing multiple sites? (Choose all that apply.)

Reducing traffic on the WAN Improving authentication efficiency

You have installed an RODC at a branch office that also runs the DNS Server role. All DNS zones are Active Directory integrated. What happens when a client computer attempts to register its name with the DNS service on the RODC?

The DNS service sends a referral to the client. The client registers its name with the referred DNS server.

You have an Active Directory forest of two trees and eight domains. You haven't changed any of the operations master domain controllers. On which domain controller is the schema master?

The first domain controller in the forest root domai

Which of the following is true about an RODC installation?

The forest functional level must be at least Windows Server 2003.

Which of the following is the period during which an object is deleted and is removed from the Active Directory database?

Tombstone lifetime

You're taking an older server performing the RID master role out of service and will be replacing it with a new server configured as a domain controller. What should you do to ensure the smoothest transition?

Transfer the RID master role to the new domain controller and then shut down the old server

Which of the following commands backs up the Registry, boot files, the Active Directory database, and the SYSVOL folder to the B drive?

wbadmin start systemstatebackup -backuptarget:B:

Users usually notice a failure of the domain naming master immediately.

False

What's the term for removing deleted objects in Active Directory?

Garbage collection

Which of the following configurations should you avoid?

Infrastructure master configured as a global catalog server

Where would you find files related to logon and logoff scripts in an Active Directory environment?

%systemroot%\SYSVOL

You maintain an RODC running Windows Server 2012 R2 at a branch office, and you want Juanita, who has solid computer knowledge, to perform administrative tasks, such as driver and software updates and device management. How can you do this without giving her broader domain rights?

Assign Juanita's account as a delegated administrator in the RODC's computer account settings.

You have three users who travel to four branch offices often and need to log on to the RODCs at these offices. The branch offices are connected to the main office with slow WAN links. You don't want domain controllers at the main office to authenticate these three users when they log on at the branch offices. What should you do that requires the least administrative effort yet adheres to best practices?

Create a new global group named AllBranches, add the four users to this group, and add the AllBranches group to the Allowed RODC Password Replication group

Users of a new network subnet have been complaining that logons and other services are taking much longer than they did before being moved to the new subnet. You discover that many logons and requests for DFS resources from clients in the new subnet are being handled by domain controllers in a remote site instead of local domain controllers. What should you do to solve this problem?

Create a new subnet and add the subnet to the site that maps to the physical location of the clients

Your company has had a major reorganization, and you need to transfer several hundred user accounts to another domain. Which of the following can help with this task?

Create a snapshot and export the accounts with ldifde

Your Active Directory database has been operating for several years and undergone many object creations and deletions. You want to make sure it's running at peak efficiency, so you want to defragment and compact the database. What procedure should you use that will be least disruptive to your network?

Create a temporary folder and a backup folder. Stop the Active Directory service. Run ntdsutil and compact the database in the temporary folder. Copy the original database to the backup folder, and delete the ntds log files. Copy the ntds.dit file from the temporary folder to its original location. Verify the integrity of the new database and restart the server.

You want to decrease users' logon time at SiteA but not increase replication traffic drastically. You have 50 users at this site with one domain controller. Overall, your network contains 3000 user and computer accounts. What solution can decrease logon times with the least impact on replication traffic?

Enable universal group membership caching

Which of the following is not a function of the global catalog?

Facilitating intersite replication

Which command must you use to restore deleted Active Directory objects in a domain with two or more writeable DCs if the Active Directory Recycle Bin isn't enabled?

ntdsutil with the authoritative restore command

User authentications are taking a long time. The domain controller performing which FSMO role will most likely decrease authentication times if it's upgraded?

pdc emulator


Related study sets

HESI peripheral vascular and lymphatics

View Set

Chapter 43: Liver, Pancreas, and Biliary Tract Problems

View Set

(1) Culture & Spirituality, (2) Chapter 14- Cultural & Spiritual Aspects of Patient Care, (3) ATI: Video Case Study RN: Cultural Diversity, (4) Cultural Awareness and Health Practices, (5) Chapter 21: Cultural and Spiritual Awareness, (6) Sociocultur...

View Set

Personal Financial Planning Ch 4 Financial Services: Savings Plans and Payment Accounts

View Set

Intro to Nursing Final Exam Review UTA

View Set

Nutrition Midterm Review Chapter 2

View Set

Biology 1202 Mastering Biology Questions Exam One

View Set

Tech 4 to 5 Streamline with Quiz

View Set