Cram Flashcards
What provides the finest granularity for delegating administration over users and groups?
Organizational Unit (OU)
Which build in accounts have the most permissions?
Local System then Network Service and Local Service
What are the supported upgrade paths from Windows Server 2012 R2 Standard to Windows Server 2016?
Windows Server 2016 Standard and Windows Server 2016 Datacenter
What uses port 443?
Secure Sockets Layer (SSL), Transport Layer Security (TLS) and Secure Socket Tunneling Protocol (SSTP)
What port does SSL use?
Port 443
What port does TLS use?
Port 443
What port dose Simple Mail Transport Protocol (SMTP) use?
Port 25
What uses port 25?
SMTP
What port(s) does FTP use?
Ports 20 and 21
What uses port 143?
Internet Message Application Protocol (IMAP)
What port does Internet Message Application Protocol (IMAP) use?
Port 143
What are two uses of Digital Certificates?
- Authenticate clients and servers on the web
- Secure email and provide proof of origin.
What tool can be install on a client which will allow one to remotely administer the server?
Remote Server Administration Tool or RSAT
What uses Port 1723
Point-to-Point Tunneling Protocol (PPTP)
Which port does Point-to-Point Tunneling Protocol (PPTP) operate over?
Port 1723
Which port does Layer 2 Tunneling Protocol (L2TP) operate over?
Port 1701, but it also requires port 500 for Internet Key Exchange (IKE) messages
What uses Port 1701?
Layer 2 Tunneling Protocol (L2TP), which also requires port 500 for Internet Key Exchange (IKE) messages
What is the DirectAccess feature?
Is a Windows 7 (and later) feature that allows remote user to access intranet resources over the internet.
NOTE: Alternative to VPN and offers better security. Also allows Administrators to remotely manage client computers.
What server role supports Remote Application (RemoteApp)
Remote Desktop Services (RDS).
Note that if needed to support remote clients , you would also need to install Remote Access role to support secure connections into the network.
What is the result of taking ownership of a file?
You can manage permissions for the file.
When are file/folder permissions evaluated?
When the user attempts to access
What does special printer permissions allow?
Allows users to change the owner of a printer
What does manage document printer permissions allow?
Allows users to manage all jobs in the print queue
What does “print” printer permissions allow?
Allows users to print, cancel, pause, or restart print jobs they own
What does “Manage Printers” printer permissions allow?
Allows user to modify or delete preferences for printers
How are permission to the folder determined when both shared folder permissions and NTFS permissions apply?
The more restrictive permission is always the overriding permission.
True of False “Explicit Allow permissions take precedence over inherited Deny permissions”.
True
True of False “Inherited Allow permissions take precedence over explicit Deny permissions.”
False
True of False “Inherited permissions always take precedence over explicit permissions”
False
True of False “Explicit permission always take precedence over inherited permissions”
True
When creating a VM, what’s the benefit of a fixed-sized hard disk over dynamically expanded hard disk?
Provides better performance
What are five VHDX specific features?
- Supports virtual disk of up to 64 TB
- Required for Gen 2 VM
- Supports online resizing for the virtual disk
- Requires at least Server 2012
- Uses a 4 KB block size internally
What are seven requirements for nested virtualization?
- Intel VT-x physical CPUs
- Host VM must run Server 2016 or Win 10
- Two or more virtual CPUs on the host VM
- Virtual network adapter
- MAC address Spoofing enable
- Host VM has at least 4 GB virtual memory
- Dynamic memory disabled
Where should you filter group policy settings for a specific set of users?
In Security Group
In AD what represents the largest logical structure?
A Forest. Which can contain multiple domains, sites, and OUs
What objects can be global group members?
- Global groups
- Computers
- Users in the same domain
Note: a global group can be a member of a global group in the same domain of domain local or universal groups in any domain
What objects can be Domain Local Groups members?
- users
- computer
- global groups
- universal groups (from any domain in the same forest or any trusted domain)
What objects can be universal group members?
users
global groups
universal groups - in any domain in same forest.
Note: universal groups can be members of domain local groups or other universal groups
Where can you create OUs?
At the domain root or as a child of an existing OU
In an AD network, where does a transitive trust relationship exists?
Between all domains in the forest
What determines which site a client computer belongs to?
A client computer’s IP address. NOTE: Sites define the physical topology of an AD network
What does the AD Domain and Trusts tool allow you to do ?
It allows you to configure domain trust and raise the domain and forest functional level
What is a Shortcut Trust?
Is a establishment between two domains in different trees that are part of the same forest.
Note: can be created as a one way or two way trust. Applies to any child domains of the domains in the trust
What should you use to configure the replication topology?
Sites. Sites are defined based on IP subnets, and subnets connected by high-speed reliable connections
Which GPO is applied first when a user logs on?
A local GPO is applied first. GPO’s are applied in the following order:
- Local GPOs
- GPOs linked to the Site
- GPOs linked to the Domain
- GPOs linked to an OU
What is the GPO Loopback Policy replace mode?
A OU link setting - contains computer object that are applied. any policy settings that are defined in the GPO that is linked to the OU containing the user account are ignored
Which order are GPO applied in?
Local Computer
SIte
Domain
OU
LSD OU
Why would you choose Fibre Channel instead of SCSI?
When the device will be physically separated from the server
What type of connection does SATA use?
Serial Advanced Technology Attachment (SATA) provides a serial connection for an internal hard disk.
What allows servers to connect to storage devices across an Ethernet network?
Internet Small Computer System Interface (iSCSI) allow servers to connect to storage devices across Ethernet -> is a example of SAN
What are some features of NAS?
- Uses file-based data storage access
- Allows for mixed storage devices
What is the minimum number of disks required for RAID 5?
RAID 5 requires at least three disk
What are two requirements of using a folder as a volume mount point?
Folder must be located on an NTFS volume
Folder must be empty
Which tool should you use to create a VHD?
Computer Management
What is Storage Spaces?
Virtual Disk from storage pool ( which are organized disk drives)
A virtualization technology introduced with Windows 8 and Server 2012.
What tool lets you create custom Date Collector Sets?
Performance Monitor
What tools can be used to clear event entries in event log?
Event Viewer and wevtutil (cmd line tool)
What steps are performed durning the boot process?
- POST
- BIOS reads MBR
- Bootmgr loads BCD
- OS Kernel is initialized
What tool would you use to modify the Boot Configuration Data (BCD) store?
Run Bcdedit.exe (cmd line tool) - available on Server 08 and later and Vista and later
What provides redundancy to maximize availability of server-based resources?
Failover cluster, which is a group of computers.
What are valid destinations for schedule Windows Server 2016 backup?
Shared folder on a drive formatted as NTFS and Local drive formatted as NTFS
What tool should you use to restore a system state backup to a server running Windows Server 2016?
wbadmin - which is a cmd line utility to restore a system state backup, OS backup, Volume backup or file backup
Which tool should you use to determine the amount of time startup is delayed from launching ?
Task Manager
What does an incremental backup contain?
Modified files since last fullback and or incremental backup
What does an differential backup contain?
Only files modified since last full backup
True or False “The last GPO that is applied will be in effect when a user logs on.
True.
GPO are applied in the following order: LSD OUs and the last GPO applied will be in effect
What feature should you install and configure on a remote clients to connect to printers, print documents, and manage printer through a web browser?
Internet Printing Client which also installs support for Internet Printing Protocol (IPP)
What is Schema master?
A forest-wide operations master role.
Operations master - is a domain controller that is configured to perform specific task that is performed by one domain controller in the domain or by one domain controller in the forest.
Why would you create an external virtual network using Hyper-V Manager?
To allow VM to access the the company intranet network.
What is a “Data Collector” set?
A feature in performance monitor that gathers information from performance counter, event tracing, and/ or system configuration data - used with a scheduled log or define an alert
For what purpose do you use Task Manager?
- See information about processes and programs running and allows you to terminate them or change priority.
- Provides information about overall status of computer (CPU, memory, and network utilization)
Where would you determine if the decreased response time is caused by excessive number of hard page faults?
Performance Monitor.
Which is used to gather performance information about computer. Can use to collect real-time usage information or to capture usage information over a period of time. Monitor various performance counter to analyze different performance issues.
What can an increased number of hard page faults indicate?
Physical memory is frequently swapped with Virtual Memory which can generate excessive I/O and reduce performance.
True of False “You can use Resource Monitor to terminate an application”
True.
Also allows you to view CPU time, memory, disk, and network resources.
What tool do you use to create a data collector set?
Performance Monitor.
Used to gather real-time performance information about a computer
True of False “DFS Replication can keep folders synchronized between servers and across network connections.
True
What does DFS stand for ?
Distributed File System
What does ReFS stand for?
Resilient File System
Can ReFS be used as boot drive in Windows Server 2016?
No. Only NTFS
True or False “RAID 0 arrays are also called striped?
True
What are the DFS Namespaces?
A group of shared folders located in different servers that appear as a single shared folder
What is iSCSI?
Internet Small Computer Systems Interface or iSCSI is an Internet Protocol-based storage networking standard for linking data storage facilities, it enables connection of host computer to a storages array via Ethernet.
Note: clients are called initiators and its storage devices targets
When was ReFS first introduced?
In Windows Server 2012
What does GPT stand for?
GUID Partition Table.
Uses Unified Extensible Firmware Interface (UEFI). One advantage of GPT disks is that you can have more than four partitions on each disk. GPT is also required for disks larger than two terabytes (TB).
What port does Microsoft SQL Server use?
Port 3306
What uses port 3306?
Microsoft SQL Server
What has a default port for 22?
Secure Shell (SSH) communication
What uses port 22?
Secure Shell OR SSH
What is main reason for frequent writes to page file?
RAM is full
What is true about L1, L2, L3 cache?
L1 is fastest
L3 is slower but larger then other two and is usually shared by all cores of a processor which is why it is placed outside of the cores
L2 located outside and separate from the microprocessor chip core
When a computer becomes a DC what three log files appear in Event Viewer?
- Windows Directory Service
- DNS Server Events
- File Replication Service Events
How many nodes are there in a cluster?
More than one, every cluster has one master node, and at least two worker nodes. The total number of nodes required for a cluster varies
How can an administrator look through the log of multiple servers at the same time?
By setting up Subscription in the event viewer
What is Folder Redirection enables users and administrator to do?
Redirect the path of a known folder to a new location. You can do this manually or by using Group Policy.
Note. the new location can be a folder on the local computer or a directory on a file share.
What kind of cluster will you create if you need multiple devices to share a workload?
load-balancing cluster or round-robin cluster
What file controls which operation system will load in a Windows server 2016 installation?
BCD or Boot Configuration Data
What is a Cluster?
A collection of computers functioning as a single computer
What are two clusters you will create if you need at least one device to be ready to replace a failing device ?
Failover cluster & Active-passive cluster
Which Windows Server 2016 edition is suitable for highly virtualized environments?
Datacenter
Which Windows Server 2016 edition is suitable for low density or non-virtualized environments with more than 25 users?
Standard
Which service property do you have to change to limit its access?
Logon Options
True or False the dependencies tab of the service properties option can show BOTH services that the current server depends on & which services depend on the current service?
True
What are Answer files?
XML files that provide answers for installation prompts, to achieve unattended installations
What type of group would be able to access any resource in any domain in the same forest?
Universal Group
What type of server is needed to access application outside the work intranet?
Web Application Proxy Server
What utility allow you to manage IIS?
inetmgr
Which server allows users to connect to virtual desktops and RemoteApp programs?
RDG Server
Where are all auditing events recorded?
Security Event log
What group should be used for a new group of print admins?
Local Group
True or false Domain Local Groups can be used in any domain in the same network.
False. Only in the domain they were created in
True or False Security policies cannot cross domains when replicated.
True
Which object can’t a group policy be applied to directly
User
Group
True of false Domain Universal Groups are replicated to all other domains within a forest
True
Where are user policies set in a workgroup network?
Local security policy
What does Delegation of Control wizard enable?
Enables you to allow certain groups to perform a certain task
What does a forest functional level determine?
The capabilities of the available AD DS domain or forest & which Windows OS can run on the DC in the domain or forest
