MCTS - Net II - Chapter 4 Flashcards

1
Q

The protocol for accessing Active Directory objects and services is based on which of the following standards?

A

LDAP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which MMC do you use to create OUs?

A

Active Directory Users and Computers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

User, computer and group accounts can be referred to as which of the following?

A

Security principals

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Which of the following must you modify if you want to change and Active Directory object’s permissions?

A

DACL

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

An object’s owner automatically has Full control permission for the object. True or False?

A

False

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

J.Doe is a member of a group that has Full control permission for an OU, which the groups inherited from a parent OU. What is the best way to stop J. Doe from having Write permission to this OU without affecting any other permissions?

A

Add an explicit Deny ACE for J.Doe to the OU

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

You’re logged on as Admin to a domain controller and are trying to troubleshoot a problem with a user’s access to Active Directory objects. You can open Active Directory Users and Computers to access an object’s properties. However, you can’t view the object’s permissions. What is most likely the problem?

A

You need to enable Advanced Features.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

A user’s permissions to an object that are a combination of inherited and explicit permissions assigned the user’s account and groups the user belong to are referred to as which of the following?

A

Effective permissions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Inherited permissions always override explicit permissions. True or False?

A

False

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

You’re viewing the DACL for an OU and notice an inherited ACE for a user account from the OU, but you get an error message when you attempt to do so. What do you need to do?

A

Disable inheritance on the OU

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which of the following is a directory partition?

A

Configuration partition, Schema directory partition and Domain directory partition

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which is responsible for management of adding, removing and renaming domains in a forest?

A

Domain naming master

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Which is responsible for determining the replication topology?

A

KCC

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which of the following do all domains in the forest have in common?

A

The same schema and the same global catalog

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Which of the following is not a function of the global catalog?

A

Facilitates intersite replication

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

You have an Active Directory forest of two trees and eight domains. You haven’t changed any of the operation master domain controllers. On which domain controller is the schema master?

A

The first domain controller in the forest root domain

17
Q

Which of the following is a valid reason for using multiple forests?

A

Need for different schemas

18
Q

What can you do to reduce the delay caused by authentication referral?

A

Create a shortcut trust

19
Q

What can you do to integrate user authentication between Linux and Active Directory?

A

Create a realm trust

20
Q

Trust relationships between all domains in a forest are two-way transitive trusts. True or False?

A

True

21
Q

Which of the following is a reason to use multiple domains?

A

Need for differing account policies, Need for different name identities, and replication control

22
Q

Which of the following is a reason for establishing multiple sites?

A

Improving authentication efficiency and reducing traffic on the WAN