Active Directory Configuration and Installation

Questions and Answers

Which type of DNS record is used to map a domain name to an IP address?

MX Record

CNAME Record

PTR Record

A Record (correct)

What does the TTL (Time to Live) value in a DNS record represent?

The frequency of DNS record updates

The maximum lifespan of a domain name

The duration a DNS query is cached by a resolver (correct)

The time it takes for changes to propagate across DNS servers

Which statement is true regarding the global catalog?

It contains information about all objects in the forest (correct)

It holds a full replica of all objects in the domain

It is used exclusively for group policy application

It can only be accessed by domain administrators

Which zone file is responsible for resolving names to IP addresses?

Forward Lookup Zone

Which resource record stores zone transfer settings?

SOA Record

What defines the objects that a Group Policy Object affects?

The organizational unit structure

Which PowerShell cmdlet should be used to remove the DNS Server role from a server?

Uninstall-WindowsFeature

Under what circumstances would a multi-domain structure not be an ideal choice?

When a single organization wishes to centralize management

What is the primary container object for organizing and managing resources in a domain?

Organizational Unit

Which of the following is not one of the three user account types defined in Windows Server 2019?

Remote User Accounts

What operation master role provides backward compatibility with Windows NT servers?

PDC Emulator

Which command syntax can rename a computer from Pittsburgh to Chicago?

Rename-Computer -Name Pittsburgh -NewName Chicago

What type of Active Directory replication occurs between domain controllers in the same site?

Intra-site replication

What is the purpose of schema attributes in Active Directory?

To identify the types of information stored in objects

Which command is preferred for installing Active Directory on a Server Core installation?

dcpromo.exe

Which Windows Server edition is ideal for a Server Core installation?

The first server in a Windows domain network

What role does the Knowledge Consistency Checker (KCC) serve in Active Directory?

It determines the replication topology among domain controllers

Which of the following configurations is NOT mentioned as a benefit of using Group Policy for Server Core?

Installing Active Directory roles

What happens when the Active Directory Recycle Bin is disabled?

Deleted objects are permanently lost

What is the default TCP/IP setting for Windows Server 2019 installations?

Only TCP/IPv4 is installed

Which built-in user accounts does Windows create automatically during installation?

Administrator and User

Which of the following choices is not an example of a typical post installation task?

Installing new network cables

How long does it usually take for a change made on a domain controller to trigger intrasite replication?

5 to 15 minutes

What should be installed in remote locations to allow clients to locate authoritative DNS servers efficiently over slow connections?

Secondary DNS servers

To install a new forest, which prerequisite is necessary?

A pre-existing DNS setup is required

What is the purpose of the boot mode used for restoring Active Directory when it is corrupted?

To allow restoration from a previous backup

Which partition in Active Directory contains information about object definitions and their attributes across all domains?

Schema partition

What is the main benefit of multimaster replication in Active Directory?

It ensures all domain controllers maintain a consistent state.

Which command is used to install Active Directory on a Server Core installation?

dcpromo.exe

What type of user account has the highest level of permissions in a Windows Server environment?

Administrator account

What tool runs on every domain controller to assess the replication topology?

Knowledge Consistency Checker (KCC)

Which of the following best describes the Active Directory Recycle Bin feature?

It allows deleted objects to be restored for a limited time.

What does the term 'forest-wide FSMO roles' refer to in Active Directory?

Roles that handle unique data management tasks across the forest

What is the recommended method for managing updates in Server Core and Windows domain computers?

Using group policy settings

Which server role is installed along with Active Directory Domain Services if no other servers with this role are available?

DNS Server

Which type of Windows Server 2019 OS installation is specifically not an upgrade from any previous version?

Clean installation

Which operations master role ensures compatibility with Windows NT servers configured as backup domain controllers?

PDC Emulator

Which folder under Policies within the Computer Configuration Node of a GPO contains the Control Panel, Network, Printers, System, and Windows Component folders?

Windows Settings

Which cmdlet would an administrator use to join a computer to a domain?

Add-Computer

What boot mode can be utilized to restore deleted critical parts of Active Directory?

Directory Services Restore Mode

What type of application can be made available via Group Policy for user installation through Programs and Features in Control Panel?

Traditional desktop applications

Which Windows folder contains file-based information that is replicated to other domain controllers?

SYSVOL

What information is contained within the directory partition that affects the entire forest?

Replication details for domain controllers

Which command can be used to enable the Active Directory Recycle Bin feature?

Enable-ADRecycleBin

Which attribute is NOT defined by schema attributes in Active Directory?

Object creation date

What happens by default to the Windows Server 2019 firewall regarding ICMP Echo Request packets?

It allows incoming requests.

What role does the second domain controller in a Windows domain typically serve?

Global Catalog Server

Which installation type should be used if a server will run without the Windows GUI?

Server Core

What is the role of the Knowledge Consistency Checker (KCC) in Active Directory?

To determine the replication topology

When configuring a new domain controller, which option allows the server to join the domain without running Active Directory?

Member Server

Which server role must be installed along with Active Directory Domain Services if no other servers with this role are available?

DNS Server

What boot mode should be used to perform restoration after several critical parts of Active Directory have been deleted?

Directory Services Restore Mode

What type of application is specifically made available via Group Policy for a user to install through Programs and Features in Control Panel?

Client applications

Which Active Directory replication type occurs between domain controllers located within the same site?

Intra-site replication

Which operations master role is responsible for ensuring backward compatibility with Windows NT servers?

PDC Emulator

Which cmdlet would an administrator use to install the Active Directory Domain Services role?

Install-WindowsFeature

What type of DNS servers should be installed in remote locations connected by slow satellite links?

Caching DNS servers

Which type of record in DNS is responsible for determining where updates can be transferred from one DNS zone to another?

SOA record

What is the primary purpose of the Knowledge Consistency Checker (KCC) in Active Directory?

To assess the replication topology dynamically

Which of the following attributes is essential for the schema partition in Active Directory?

Object definitions and their attributes

In what context would using multi-domain structures be disadvantageous?

When extensive resource sharing is essential among users

What is the primary reason for installing a read-only domain controller (RODC)?

To enhance security by preventing unauthorized access

Which of the following is a characteristic of adding a child domain to an existing forest?

It shares at least the top-level and second-level domain name structure

What functionality does the Active Directory Administrative Center (ADAC) provide?

It facilitates the connection to other domain controllers

What is one of the capabilities of PowerShell commands issued through ADAC?

They allow for automated management of Active Directory tasks

When determining the functional level of a domain, what is the primary consequence of increasing it?

It allows the introduction of newer Active Directory features

What is the appropriate action to take if this server is the first domain controller in the network?

Add a new forest

Which functional level options must be selected in the Domain Controller Options window?

Forest and Domain functional levels

What is the purpose of the NetBIOS domain name specified in the Additional Options window?

It is used for backward compatibility with non-DNS systems.

What is the necessary action to create DNS records for a new domain?

Create the DNS delegation

Which option is recommended when installing additional domain controllers in a domain?

Add a domain controller to an existing domain

What is the essential prerequisite before starting the Active Directory installation?

Perform a prerequisite check

Which of the following tasks must be performed in the Paths window during Active Directory configuration?

Specify the locations of Active Directory database and SYSVOL folder

Why does Microsoft recommend having at least two domain controllers in every domain?

For fault tolerance and load balancing

What is the primary purpose of a domain controller in an Active Directory environment?

To provide authentication and authorization services for users

Which component of Active Directory represents the core structural unit that contains organizational units?

Domain

How does Active Directory enhance scalability in network management?

By using a centralized but distributed database

What role does the Lightweight Directory Access Protocol (LDAP) serve in an Active Directory environment?

It facilitates communication with clients using non-Windows operating systems

Which of the following best defines a tree in the context of Active Directory?

A hierarchy of multiple domains that share a naming structure

What requirement must be fulfilled before installing Active Directory Domain Services (ADDS) if DNS is not already in place?

Install the DNS Server Role

Which of the following statements about Organizational Units (OUs) in Active Directory is correct?

OUs serve as containers for organizing various Active Directory objects

What does the logical structure of Active Directory allow organizations to do?

Pattern the directory service’s organization according to the business structure

What is the function of a forest in Active Directory?

It is comprised of multiple Active Directory trees allowing shared resources

What is the primary function of schema classes in Active Directory?

To specify the structures of data stored in the AD database

Which statement accurately describes a leaf object in Active Directory?

It cannot contain other objects and typically represents a single security account.

How does nesting Organizational Units (OUs) benefit Active Directory structure?

It mimics the corporate structure for more effective object management.

What role do folder objects play within Active Directory?

They organize and store user accounts and default groups.

What type of Active Directory object typically represents a computer or network resource?

Leaf object

How does the Active Directory schema help maintain the integrity of data?

By defining and enforcing structure for stored object data

What is a key characteristic of the domain object in Active Directory?

It serves as the main organizational structure in a directory.

Which of the following best explains the relationship between organizational units and security boundaries in Active Directory?

OUs can act as administrative boundaries helping to define security policies.

Which of the following statements is true regarding the default folders created by Active Directory?

The 'Builtin' folder contains essential groups created by Windows.

What does the attribute value refer to in the context of Active Directory schema attributes?

The specific information stored in each attribute of an object

Which statement accurately describes the application of Group Policy Objects (GPOs) in a domain environment?

GPOs are applied in the order of Local Computer, Site, Domain, and Organizational Unit.

Which component of the User Configuration Node specifies settings for application packages?

Software Settings

What is the role of the Administrative Templates folder in the User Configuration Node?

It allows control over users’ computer and network environments.

What is indicated by a GPO that is linked to the Computer Configuration node?

It affects all computers within the container to which it is linked.

Which statement about the Active Directory Recycle Bin is true?

It allows recovery of deleted user accounts and groups.

How is data within Active Directory typically organized?

As objects with a hierarchical structure.

What role does the forest serve in Active Directory architecture?

It acts as the broadest logical component that contains multiple domains.

Which of the following does NOT correctly describe the types of Active Directory objects?

All object types can be individually modified.

In what scenario would policies configured in the Computer Configuration node not apply?

When the policies are not defined or configured.

What is the primary function of a computer account object in Active Directory?

To identify, authenticate, and manage computers in the domain

Which type of Active Directory zone contains a read-only copy of all resource records for a zone and is considered authoritative?

Secondary zone

What is true regarding trust relationships in Active Directory?

Trust relationships define how security principals access resources in another domain.

Which statement accurately describes the Global Catalog in Active Directory?

It facilitates searches across domains and holds universal group membership information.

What tool is utilized to manage Group Policy settings and configurations?

Group Policy Management Console (GPMC)

What are the main nodes contained within each Group Policy Object in GPMC?

Computer Configuration and User Configuration

Which Active Directory function defines the structure and permissible attributes for objects and their attributes?

Schema directory partition

What is the purpose of intrasite replication in Active Directory?

To synchronize data between domain controllers within the same site

Which of the following describes the function of the Knowledge Consistency Checker (KCC)?

To determine replication topology and manage replication paths

Which of the following is NOT a role associated with the Flexible Single Master Operations (FSMO)?

Resource Manager

What type of user account is limited to access resources only on the local computer?

Local user account

Which of the following statements regarding Group Policy Objects (GPOs) is true?

GPOs allow for remote configuration of operating environments for users and computers.

What defines the specific characteristics shared among all domains within a forest?

Common Schema

Study Notes

Active Directory Configuration and Installation

• Directory partition holds configuration affecting the entire forest, including domain controller replication.
• Server Core installation (Windows Server 2019) preferred when GUI is unnecessary.
• Schema attributes define object information (e.g., user names, passwords).
• Security principals determine user access levels.
• Administrator and User are built-in Windows accounts.
• Active Directory uses multimaster replication for automatic updates across domain controllers.
• Group Policy is the best method for configuring updates on a Windows domain.
• Knowledge Consistency Checker (KCC) runs on every domain controller to determine replication topology.
• Second domain controller is typically a global catalog server.
• Initial server in a Windows domain is ideal for a Server Core installation.
• Active Directory Recycle Bin can be enabled or disabled.
• dcpromo.exe is the preferred method for installing Active Directory on Server Core.
• Windows Server 2019 installs TCP/IPv4 by default.
• Incoming ICMP Echo Requests are not blocked by default.
• Changing Server Editions
• Active Directory partition containing forest-wide object information.
• Two forest-wide Flexible Single Master Operations (FSMO) roles.
• "Service Pack" is the term for bug fixes and security update collections.
• Active Directory folders during installation.
• Server joining a domain without Active Directory or directory services.
• Role of a Read-Only Domain Controller (RODC).
• Group Policy Object (GPO) object scope.
• Domain Services installation if other servers with the role are unavailable.
• Domain structure deployment considerations.
• PowerShell cmdlet for removing the DNS Server role.

Active Directory User Accounts

• Three user account types in Windows Server 2019.
• Installing a new OS installation on a new partition.
• Restoring Active Directory using boot mode.

Active Directory Configuration and Management

• Restoring Active Directory using boot mode.
• GPO folder for Control Panel, Network, Printers, System, and Windows Components.
• Domain controllers holding universal group membership information.
• Renaming a computer (specific command).
• Circumstances where a multi-domain structure isn't optimal.
• Primary container managing domain resources.
• Operations master role for Windows NT compatibility.
• Software for computer network information retrieval.
• PowerShell cmdlet for joining a computer to a domain.
• PowerShell cmdlet for installing Active Directory Role.
• Primary identifying and administrative unit in Active Directory.
• Applications deployable via Group Policy.
• Replication in Active Directory.

Windows Server 2019 Installation and Configuration

• Installing a new forest.
• Active directory restore operations.

Description

Test your knowledge on the installation and configuration of Active Directory, focusing on essential components like directory partitions, replication, and server roles. This quiz covers concepts for Windows Server 2019, including Server Core setup and Group Policy management.