Lesson 13: Installing Domain Controllers

Question 1

AD DS

Answer 1

Active Directory Domain Services

Enables you to create organizational divisions called domains.

Question 2

Domain

Answer 2

Logical container of network componenets, hosted by at least one server

Question 3

Domain controller

Answer 3

Hosts a container of network componenets. Replicate data among other DCs for fault tolerance and load-balancing purposes.

Question 4

Authentication

Answer 4

Process of verifying a user’s identity

Question 5

Authorization

Answer 5

Process of granting users access only to the resources they are permitted to use

Question 6

AD DS domain is ____

Answer 6

Hierarchical

Question 7

Domains consist of ____, which represent

Answer 7

Objects, which represent logical or physical resources

Question 8

Two classes of objects

Answer 8

Container

Leaf

Question 9

Container objects

Answer 9

Has objects subordinate to it

Question 10

Leaf Objects

Answer 10

No subordinate objects

Question 11

What type of object is the domain itself?

Answer 11

A container object

Question 12

Examples of a leaf object

Answer 12

Users
computers
groups
applications

Question 13

Examples of a container object

Answer 13

domain

organizational units

Question 14

Directory Schema

Answer 14

Defines an object’s place in the directory tree, the type of data that each attribute an store

Question 15

AD DS scheme elements are extensible, meaning ___

Answer 15

Applications can add their own object types to the directory or add attributes to existing object types

Question 16

Organizational Unit (OU)

Answer 16

Container unit that functions in a subordinate capacity to a domain, like subdomain without a complete separation of security policies

Question 17

OUs can contain ___

Answer 17

Other OUs as well as leaf objects

Question 18

Groups versus OUs

Answer 18

Group membership can span organizational units and, sometimes, domains

Question 19

What is above a domain in a domain tree?

Answer 19

Forests.

Also you can have multiple subdomains within a single domain. Those subdomains are treated separately in AD DS

Question 20

Inheritence differences between subdomains and OUs

Answer 20

OUs inherit permissions and policies from their parent domains.

Subdomains do not

Question 21

How do you join together two non-contiguous domains?

Answer 21

Non-contiguous domains cannot be two branches of the same tree, but they can be two trees in the same forest.

Question 22

Forest

Answer 22

One or more separate domain trees with the same two-way trust relationships as two domains in the same tree

Question 23

Global Catalog

Answer 23

Lists all objects in the forest with a subset of their attributes, so that domain controllers that may administrate a small section of the forest can still locate other objects

Question 24

Why is it important to be able to specify a functional level of a DC forest

Answer 24

Each AD DS version has features not supported by the previous version. Since you may mix old and new features, it’s important to tell newer versions not to enable newer features

Question 25

LDAP

Answer 25

Lightweight Directory Access Protocol
Defines a format of the queries that active directory clients send to domain controllers as well as provides a compound naming structure for uniquely identifying objects in the directory

Question 26

DAP

Answer 26

Directory Access Protocol.

Original communications protocol offering complex features.

Question 27

How do two or more domain controllers stay in sync?

Answer 27

Replication

Question 28

Two types of replication

Answer 28

Single-master replication

Multiple-master replication

Question 29

Single-master replication

Answer 29

Single primary system replicates the contents of th eDB to one or more secondary systems on the network.

In this case, you only modify the primary system

Question 30

Multiple-master replication

Answer 30

Make changes to domain objects on any domain controller, and those changes are replicted to other DCs

Question 31

RODC

Answer 31

Read-only domain controllers

A DC that supports only incoming replication traffic. You cannot crud AD objects via RODC

Question 32

Site

Answer 32

Collection of subnets that have good connectivity between them. (T1 speed or better)

Question 33

What AD DS objects make up a site

Answer 33

Site
Subnet
Site Links

Question 34

Subnets

Answer 34

A subnet object represents an IP network at a particular site

Question 35

Site links

Answer 35

A site link object represents a WAN connection between 2 sites