Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

MCSE 70-410 > Install and Admin Active Directory > Flashcards

Install and Admin Active Directory Flashcards

1
Q

Why can you not use distribution groups to assign permissions explicitly or implicitly through membership in other groups for resources?

A

Unlike security groups, distribution groups are not security principals.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which command can be used to redirect newly created computer accounts from the default container named CN=Computers to a specified container?

A

The redircmp command.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Which command can be used to redirect newly created users from the default container named CN=Users to a specified container?

A

The redirusr command.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

When creating a template user account, why should you set the Account is Disabled property on the account?

A

So no one can use it to log in.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Which type of Windows servers responds to forest-wide Lightweight Directory Access Protocol (LDAP) queries over port3268?

A

The global catalog server.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What feature in a Group Policy policies allow you to control the membership of sensitive groups through Active Directory rather than through traditional group membership editing tools, such as Active Directory Users and Computers or PowerShell?

A

Restricted Groups

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which PowerShell cmdlet adds members to groups?

A

Add-ADGroupMember

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What permissions are assigned to the parent OU and child OU when you create a child OU that has theProtect object from accidental deletion setting enabled?

A
  • An explicit Deny ACEs for the Delete and Delete Subtree advanced permissions for the Everyone group is applied to the child OU.
  • An explicit Deny ACE for the Delete All Child Objects permission for the Everyone group is applied to the parent container OU.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How would you grant a group of users the authority to reset user’s passwords for the OUs located in the domain?

A

On the OU, use the Delegation of Control Wizard to delegate the Reset user passwords and force password change at next logon task to the group.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which PowerShell cmdlet modifies properties of OU?

A

Set-ADOrganizationalUnit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

How many domain controllers can have the PDC emulator role?

A

Only one domain controller per domain.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which installation method can reduce the replication traffic that is initiated during the installation of an additional domain controller in an ActiveDirectory domain?

A

The install from media (IFM) method.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

To create installation media for a full (writable) domain controller, what command must you run on a writable domain controller that is running Windows Server2012?

A

Thentdsutilifmcommand.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which user right gives a user permissions to change the time and date on the internal clock of the computer?

A

The Change the system time local policy.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

How many domain controllers can have the domain naming master role?

A

Only one domain controller per forest.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

In Active Directory Users and Computers, how do you display the Security and Object tab in the properties of an OU?

A

You need to click View and thenAdvanced Features in Active Directory Users and Computers before clicking on the properties of the OU.

17
Q

Which file on a domain controller contains all resource records for the Active Directory domain controller, including its SRV records?

A

Netlogon.dns in the %systemroot%\System32\Config folder.

18
Q

How many domain controllers can have the schema master role?

A

Only one domain controller per forest.

19
Q

Which PowerShell cmdlet deletes user accounts?

A

Remove-ADUser

20
Q

Which PowerShell cmdlet modifies the properties of groups?

A

Set-ADGroup

21
Q

What must an Enterprise Administrator do in Active Directory Users and Computers before moving a newly created child OU to a different parent OU?

A

On the properties of the child OU, under the Object tab, clear theProtect object from accidental deletion checkbox.

22
Q

What comprises the membership list of a global group?

A
  • Users and computers from the same domain as the global group.
  • Global groups from the same domain.
23
Q

What comprises the membership list of a local group?

A
  • Users and computers from any trusted domain.
  • Global groups from any trusted domain.
  • Universal groups from any trusted domain.
24
Q

Which PowerShell cmdlet modifies the properties of a computer account?

A

Set-ADComputer

25
Q

Which user right allows a user to add workstations to the domain?

A

The Add workstations to domain local policy.

26
Q

Which command can be used to join a computer to a domain without contacting a domain controller?

A

djoin.exe

27
Q

Which operations master role is responsible for assigning Security Identifiers (SIDs) to objects such as users and groups?

A

RID Master

28
Q

How can you ensure that Alice and John are members of the Backup Operators group on every computer in domain?

A

Configure Backup Operators as a restricted group in a GPO at the domain level with Alice and John as members.

29
Q

What type of group can include users from any domain within a forest, and can be assigned permissions for in any domain in the forest?

A

A universal group.

30
Q

Which user right gives a user permissions to back up files and folders on a computer, but not restore them?

A

The Back up files and directories local policy.

31
Q

Which domain controller should be the source of the media that you use to create additional domain controllers with the install from media (IFM) method?

A

A domain controller in the same domain as the new domain controller.

32
Q

Which service should you restart to re-register all SRV records for a domain controller?

A

The NetLogon service.

33
Q

Which operating system should be the source of the media that you use to create additional domain controllers with the install from media (IFM) method?

A

The operating system should be copied from a domain controller running the same operating system version in the same domain as the new controller.

34
Q

Which operations master role is responsible for updating references from local objects to objects in other domains?

A

infrastructure master

35
Q

What comprises the membership list of a domain local group?

A
  • Users and computers from any trusted domain.
  • Global groups from any trusted domain.
  • Universal groups from within the forest.
  • Domain local groups from the same domain.
36
Q

Which type of domain controller contains a partial, read-only replica of every domain in the forest other than its own domain?

A

global catalog server

37
Q

Which PowerShell cmdlet deletes groups?

A

Remove-ADGroup

MCSE 70-410 (6 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions