New Microsoft Word Document copy.docx
Document Details
Uploaded by IndebtedOwl
Full Transcript
**What is Active Directory (AD)?** - Active Directory is a Microsoft service that provides centralized authentication and authorization to network resources(ITEC1420\_Chapter 3). **What is the primary role of a network directory service?** - It stores information about a network and...
**What is Active Directory (AD)?** - Active Directory is a Microsoft service that provides centralized authentication and authorization to network resources(ITEC1420\_Chapter 3). **What is the primary role of a network directory service?** - It stores information about a network and provides features for retrieving and managing that information(ITEC1420\_Chapter 3). **List three features of Active Directory.** - Hierarchical organization, centralized database, and scalability(ITEC1420\_Chapter 3). **What are the two main structures of Active Directory?** - Physical structure (sites and servers) and logical structure (OUs, domains, trees, and forests)(ITEC1420\_Chapter 3). **What is an Active Directory site?** - A physical location where domain controllers communicate and replicate information regularly(ITEC1420\_Chapter 3). **Define an Organizational Unit (OU).** - An OU is an Active Directory container used to organize users and resources into logical administrative units(ITEC1420\_Chapter 3). **What is a domain in Active Directory?** - It represents administrative, security, and policy boundaries within a network(ITEC1420\_Chapter 3). **What is a forest in Active Directory?** - A collection of one or more Active Directory trees that provide a common environment(ITEC1420\_Chapter 3). **Name a key benefit of using a single-domain structure for small businesses.** - Simplicity and lower costs(ITEC1420\_Chapter 3). **What does the Global Catalog server do?** - Facilitates domain and forest-wide searches and logon across domains(ITEC1420\_Chapter 3). **What is replication in Active Directory?** - The process of maintaining a consistent database across different locations(ITEC1420\_Chapter 3). **Differentiate between intrasite and intersite replication.** - Intrasite occurs within the same site; intersite occurs between two or more sites(ITEC1420\_Chapter 3). **What is a fully qualified domain name (FQDN)?** - A domain name that includes all parts of the name, required during the installation of a new forest(ITEC1420\_Chapter 3). **What are Active Directory schema classes?** - They define the types of objects that can be stored in Active Directory(ITEC1420\_Chapter 3). **What is the purpose of the Active Directory Recycle Bin?** - It allows administrators to restore deleted AD objects(ITEC1420\_Chapter 3). **Name two types of Active Directory objects.** - Container objects and leaf objects(ITEC1420\_Chapter 3). **What is a container object in Active Directory?** - It is used to organize and manage users and resources and can act as administrative and security boundaries(ITEC1420\_Chapter 3). **What is the function of leaf objects?** - They do not contain other objects and represent resources like user accounts and printers(ITEC1420\_Chapter 3). **What is the default function level for a new forest?** - It is chosen during the setup process when promoting a server to a domain controller(ITEC1420\_Chapter 3). **How does Active Directory handle user authentication?** - Through centralized services, verifying identity and assigning permissions to users(ITEC1420\_Chapter 3). **Chapter 4: Managing OUs and Active Directory Accounts** 21. **What is the main purpose of Organizational Units (OUs)?** - To create hierarchical structures based on an organization's chart for resource access(ITEC1420\_Chapter 4). 22. **Why is delegation of control in OUs important?** - It allows administrators to assign specific tasks to users with lesser security privileges(ITEC1420\_Chapter 4). 23. **What is permission inheritance in OUs?** - It determines how permissions applied to a parent object are inherited by child objects(ITEC1420\_Chapter 4). 24. **What are the two primary functions of a user account in Active Directory?** - To provide a method for authentication and detailed information about the user(ITEC1420\_Chapter 4). 25. **What are domain user accounts?** - User accounts created in Active Directory that allow access to resources within the domain(ITEC1420\_Chapter 4). 26. **What is the default status of the Guest account in Active Directory?** - Disabled(ITEC1420\_Chapter 4). 27. **What should be done with the built-in Administrator account for security?** - It should be renamed and given a strong password(ITEC1420\_Chapter 4). 28. **What is a distribution group used for in Active Directory?** - To group users together mainly for email communication in Microsoft Exchange(ITEC1420\_Chapter 4). 29. **What are security groups?** - Groups used to manage network resource access and assign user rights(ITEC1420\_Chapter 4). 30. **What is the purpose of group scopes in Active Directory?** - They determine the extent of a group's access and application in a domain or forest(ITEC1420\_Chapter 4). 31. **List the three group scope options in Windows Server 2012.** - Domain local, global, and universal(ITEC1420\_Chapter 4). 32. **What is the primary use of domain local groups?** - To assign permissions to domain resources(ITEC1420\_Chapter 4). 33. **What is a global group typically used for?** - To group users from the same domain with similar access needs(ITEC1420\_Chapter 4). 34. **How does a universal group differ from a global group?** - It can contain users from any domain within the forest(ITEC1420\_Chapter 4). 35. **What is a local group in Active Directory?** - A group created in the local SAM database on a member server or stand-alone computer(ITEC1420\_Chapter 4). 36. **Why might it be necessary to reset a computer account in Active Directory?** - If the account becomes unsynchronized with the domain controller(ITEC1420\_Chapter 4). 37. **What happens to a computer account when it leaves a domain?** - It is disabled automatically(ITEC1420\_Chapter 4). 38. **What are user templates used for in Active Directory?** - To create user accounts with similar attributes, like group memberships(ITEC1420\_Chapter 4). 39. **What tab contains descriptive information about a user account?** - The General tab(ITEC1420\_Chapter 4). 40. **What information is found in the Account tab for a user account?** - User logon name, logon hours, account options, and more(ITEC1420\_Chapter 4). 41. **What is a common use for a contact object in Active Directory?** - Integration into Microsoft Exchange's address book(ITEC1420\_Chapter 4). 42. **What is a smart card used for in Active Directory?** - For interactive logon as an additional layer of security(ITEC1420\_Chapter 4). 43. **What is the purpose of automating account management in Active Directory?** - To streamline repetitive tasks using scripts and PowerShell cmdlets(ITEC1420\_Chapter 4). 44. **What command can be used to disable a user account?** - Disable-ADAccount(ITEC1420\_Chapter 4). 45. **How can permission inheritance affect administrative efficiency?** - It simplifies the management of access control across multiple objects(ITEC1420\_Chapter 4). 46. **What is a Resultant Set of Policy (RSoP)?** - A tool for planning and logging group policy application(ITEC1420\_Chapter 4). 47. **Why should the Guest account be renamed if used?** - For enhanced security against unauthorized access(ITEC1420\_Chapter 4). 48. **What is the key benefit of using security groups for resource management?** - It is more efficient than assigning permissions to each user separately(ITEC1420\_Chapter 4). 49. **What types of accounts can be members of local groups?** - Local user accounts, domain user accounts, and global or universal groups(ITEC1420\_Chapter 4). 50. **Why is it important to follow a naming convention for user accounts?** - To ensure uniqueness and ease of management within the domain(ITEC1420\_Chapter 4).
