Sybex Book Flashcards
1
Q
EAP-TTLS
A
Server 2012 exclusive security protocol using tunneling and mutual authentication
2
Q
NIC teaming advantages
A
helps fail over and improved load balancing
3
Q
RPC (Remote procedure Call)
A
legacy remote accsses protocol
4
Q
what is WinRM replacing
A
RPC
5
Q
command to force GPO update
A
gpupdate.exe or Invoke GPUupdate
6
Q
BranchCache
A
optimizes branch bandwidth by caching data in branch servers
7
Q
SMB (server message block)
A
file server service
8
Q
File Server Resource Manager
A
manage data stored on file server
9
Q
Dynamic Access Control File Classification Infrastructure
A
audit access to files on file server
10
Q
executable to run server manager
A
compmgmtlauncher.exe
11
Q
powershell to open network connections properties sheet
A
ncpa.cpl
12
Q
command line set ip
A
netsh interface ip set address
13
Q
command line to set dns
A
netsh interface ip set dns
14
Q
command line rename computer
A
netdom /renamecomputer
15
Q
command line join computer
A
netdom join
16
Q
command line reboot flag
A
/REBooT
17
Q
RDP port number
A
TCP3389
18
Q
The more secure Remote Desktop option
A
Allow connections with Network authentication
19
Q
what is a role
A
generic function like DNS server or web server
20
Q
what is a feature
A
specific piece of software for functionality
21
Q
load Powershell Server Manager modules
A
import-module Servermanager
22
Q
Powershell to see installed roles and features
A
Get-WindowsFeature -Name
23
Q
Powershell install a role or feature
A
Install-WindowsFeature -Name Web-Server
24
Q
Powershell what if simulator
A
Add-WindowsFeature Name - whatif
25
Poweshell check if you can run scripts on server
get-exceptionpolicy
26
Powershell allow for scripts to be run on server
set-exceptionpolicy unrestricted
27
sever configurations are saved in what format
xml script
28
PowerShell remove a role
Remove-WindowsFeature
29
Windows IIS?
Internet Information Services
30
Active Directory Recycling Bin
ability to recover specific deleted objects
31
steps for rapid AD clone deployment
1) create copy of existing virtual domain controller
| 2) authorize cloning and use PS for configuration
32
Active directory certification Services (ADCS)
security public key technology
33
PS install ADCS roles
Install-AdcsCertofocationAuthority
34
ADRMS(rights management services)
maintains AD authentication, encryption, and certificates
35
Unattented Installation via ADK ( assessment and deployment kit
Window installations without having to click through menus
36
Unattented installation answer file
xml script used for unattested installations
37
PS enable scripts
Set-ExecutionPolicy AllSigned
38
PS change password
net user administrator * or Set-ADAccountPassword
39
PS display file shares
net view \\bf1
40
PS access a shared volume
net use Z: \bf1
41
PS delete a mapped drive
net use Z: /del
42
PS get drive info
get-psdrive
43
PS map new drive
New-PSDrive
44
PS read text file with notepad
notepad documents\lol.txt
45
script by Server Core team to perform common registry tasks
SCRegedit
46
/cli
list common tasks on Server Core
47
PS run VB script through an interpreter
cscript scregedit.wsf /cli
48
PS Restart computer
Restart-Computer
49
VB script that provides product key information
slmgr.vbs
50
PS open Time and Date panel
control timedate.cpl
51
verify time and date change
w32tm /tz
52
get network configuration
PS get-ipconfiguration or CP ipconfig
53
PS change ip config
New-NetIPAddress
54
PS add computer to the domain
Add-Computer
55
PS find computer name
hostname
56
PS rename a computer
Rename-Computer
57
PS change how auto updates behave
SCONFIG
58
The 3 Server customization steps
1) Add roles and features
2) Enable Remote Desktop
3) Configure Windows Firewall
59
PS list roles and features
Get-WindowsFeature
60
PS install DHCP server role
Add-WindowsFeature DHCP
61
PS allows us to enable remote desktop
Sconfig
62
PS enable protocols associated to Remote Admin group
netsh advfirewall firewall set rule group="Remote Administration" new enable=yes
63
PS firewall config template
netsh advfirewall firewall set rule
64
PS administer fire wall from MMC Microsoft management Console
netsh advfirewall set currentprofile settings remotemanagement enable
65
PS add a port
netsh advfirewall firewall add rule name="Open SQL Server Port 1433" dir=in
action=allow protocol=TCP localport=1433
66
CP register credentials
cmdkey /add:bfsc1 /user:Administrator /pass:P@ssw0rd
67
Windows Remote Shell
allows commands to be sent to a server
68
Simple Object Access Protocol (SOAP)
XML-formatted text to send the command to the server, output reply as HTML
69
winrm
| quickconfig
test drive Windows Remote Shell
70
HTTPS
| (SSL) communication
server-based certifi cate to authenticate the server and
| encrypt the connection.
71
CP/PS view certificates
rem using certuil and
| certutil -viewstore my
72
dir
alias for get-items
73
| FL
formats the output of
| the dir command into a line-delimited list
74
listener
tells the Windows Remote Shell service which port and IP address to listen to
and respond to client requests
75
view listener config
winrm get winrm/config -format:pretty
76
and
indicate the port settings
77
PS adding rule to firewall
netsh advfirewall firewall>add rule ?
78
winrs.exe
Windows Remote Shell
79
checks the prerequisites for the domain
| controller installation
Test-ADDSDomainControllerInstallation
80
install the domain controller
Install-ADDSDomainController
81
authorizing DNS server service
netsh> dhcp
| netsh dhcp>add server bfsc1.bigfirm.com 192.168.1.11
82
list servers in directory serves
netsh dhcp>show server
83
what is scope?
consecutive range of possible IP addresses that the DHCP server can lease to clients on a subnet
84
add a dhcp server scope
netsh dhcp>server
netsh dhcp server>add scope 192.168.1.0 255.255.255.0 “Branch Office 1”
“Sample DHCP scope”
85
display dhcp scope
netsh dhcp server>show scope
86
DiskPart
manages all the functionality of
| the Disk Management Console in a command-line format
87
PS list physical disks
DISKPART> list disk
88
PS list volumes
DISKPART> list volume
89
PS create primary partition
DISKPART> help create partition primary
90
PS assign letter to partition
DISKPART> assign letter=e
91
PS format a volume
DISKPART> format fs=ntfs label=”Data volume” quick
92
PS retrieve folder permissions
Get-Acl
93
PS sharing a folder
E:\>net share SALES=e:\sales /grant:bigfirm\sales,FULL /Unlimited
94
PS add printer
PS C:\> Add-Printer -Name "Sales Printer" -DriverName "HP 5150"
PS C:\> Add-Printer -ConnectionName \\bfsc1\192.168.1.253\
95
get a printer's configuration
PS C:\> Get-PrintConfiguration –PrinterName " HP 5150"
96
SRV records (service record)
found in DNS and publishes the existence of services within a network
97
By default, Volume Activation 3.0 clients (Windows 8 and Windows Server 2012) attempt to
connect to the KMS automatically using the _____.
SRV records
98
PS install back up server role
PS c:\Users\Administrator>Install-WindowsFeature Windows-Server-Backup
99
PS create windows back up policy
PS c:\Users\Administrator> New-WBPolicy
100
ISATAPtunnelling
allows for IPv6 hosts on a IPv4 network
101
6to4 tunnelling
delivers address assignments and auto tunneling technology
102
teredo tunneling
allows for address assignments even behind a NAT. Last resort tech for IPv4/IPv6 connectivity
103
PS version of ping
Test-NetConnection
104
Static teaming
requires switch to be aware of the NIC team members. All connected to same switch
105
switch independent teaming
NIC team members dont have to connect to the same switch. Logic handled by Windows server
106
LACP(Link Aggregation Control Protocol)
removes admin overhead by auto combining NICs into logical unit any time a switch is configured
107
Address hash
Load balance mode that hashes destination metrics
108
Hyper V port
virtual Load balancing mode
109
Dynamic
newest Load balancing mode that breaks up traffic into "flowlets"
110
Virtual and Physical NIC teaming limitation
Physical- 32 NIC Limit
| Virtual- 2 NIC limit
111
can you team NICs with different speeds
NAH
112
PS NIC teaming
New-NewLbfoTeam Team1 NIC1,NIC2
113
Data Center Bridging (DCB)
provides guaranteed bandwidth to different types of network traffic on a converged network. requires hardware support
114
DSCP value (differentiated Service Code Point value)
Policy based QoS point system of prioritization using different metrics
115
Distributed Cahe Mode
no branch server, data cached by separate client computers
116
Hosted cache mode
server at branch office
117
Receive segment Coalescing
Server network stress management tools , combines small packet to big one for increased performance
118
Registered I/O
pins application memory to reduce CPU cycle cost
119
Receive side scaling
distribute and receive network traffic across multiple processors
120
perfmon.exe
network performance monitor tool
121
IPAM(IP address management)
set of tools that enable end to end management of ip address infrastructure
122
ADS( Address Space Management)
IPAM feature that allows for centralized reporting of ip address infrastructure
123
DHCP failover
new High Availability method for maintain DHCP services
124
Namespace
name of the domain/computers last name
125
FQDN
host name appended to the domain's namespace
126
HOSTS File
text file that statically maps host names to IP addresses
127
Name server
DNS server that that resolves FQDN to IPs. Also control namespaces
128
recursion
server directed process to resolve FQDN
129
standard primary zone
text file in which server maintains name space records (DNS). Can be replicated
130
standard secondary zone
read only copy of the primary zone or AD integrated zone
131
AD Integrated Zones/third zone
DNS records stored in AD rather than text file. Zones are also replicated to all other domain controllers
132
PS custom app partitions
Add-DNSServerDirectoryPartition
133
stub zone
used to integrate with other DNS servers. Only indicates what server support name resolution for the namspace
134
foreward lookup
client provides DQDN and the DNS server returns an IP
135
reverse lookup
client provides IP and DNS returns its FQDN. For security purposes
136
Dynamic DNS
allows DNS clients to auto register their host names in an assigned namespace
137
Host (A) and pointer record (PTR)
most common records in forward/reverse lookup zones
A- host name/ IP
PTR- IP/FQDN
138
CNAME
secondary name assigned to computers FQDN
139
Mail exchanger record (MX)
for SMTP server communication
140
Start of Authority(SOA) record
has info about what DNS server control the zone and has parameters on how to treat resolved records
141
Name Server Record
records list of servers that can respond to queries in the zone
142
WINS?
Windows Internet Name Service-WINS is to NetBIOS names what DNS is to domain names — a central mapping of host names to network addresses
143
Background Zone Loading
While the DNS service is starting, it will start responding to zones it has loaded. useful for large number of zones
144
DNSSEC
allow a DNS server to digitally sign the resource records for security
145
trust anchors
public certification of DNSSEC
146
nslookup
go to name resolution test
147
dcdiag
dns structure health check
148
Domain
A domain is a collection of objects that share the same database
149
Workgroup
A workgroup is basically one or more computers on a Windows network (LAN)
that are not joined to a domain
150
Site
Sites represent the physical structure or topology of your network
151
Objects
everything within Active Directory is an object
152
Schema
contains formal definitions of every object class that can be created in an Active Directory forest
153
Group Policy
needed to configure settings for
| users and computers
154
Organizational Units
a container that
| contains similar objects
155
Forest
A forest is a single instance of Active Directory
156
Global Catalog
contains information about each object in every domain in
| a multidomain Active Directory forest
157
Trees
a collection of domains within a Microsoft Active Directory network.
