Please enter something
Home Page Arts And Humanities Philosophy Ethics Active And Passive AD Chapter 13-16 test questions - Flashcards

AD Chapter 13-16 test questions – Flashcards

Sarah Adrian
8 July 2022
87 test answers

Unlock all answers in this set

Unlock answers 87
question
Active Directory keeps a naming convention for the domain that mirrors ______.
answer
DNS
question
An Active Directory _____ consists of one or more separate domain trees.
answer
forest
question
An administrator needs to grant an e-mail distribution group of 100 members access to a database, how would the administrator proceed? The e-mail group is obsolete and can be dissolved.
answer
Convert the distribution group to a security group and then assign the group access permissions.
question
Can a domain user, who does not possess explicit object creation permissions, create computer objects?
answer
Yes, authenticated users can create workstation, but not server objects
question
Can an administrator launch the Group Policy Management console from a workstation?
answer
Yes, if the workstation is running the Remote Server Administration Tools package
Unlock the answer
question
Configuring a Central Store of ADMX files help solve the problem of ________.
answer
"SYSVOL bloat"
Unlock the answer
question
For Server Core installations, how does Windows Server 2012 differ from Windows Server 2008 when installing the AD DS role and promoting the system to a domain controller?
answer
Windows Server 2012 now allows administrators to use PowerShell.
Unlock the answer
question
Group Policies applied to parent containers are inherited by all child containers and objects. What are the ways you can alter inheritance?
answer
Using the Enforce, Block Policy Inheritance, or Loopback settings
Unlock the answer
question
Group Policy settings are divided into two subcategories: User Configuration and Computer Configuration. Each of those two are further organized into three subnodes. What are the three?
answer
Software settings, Windows settings, and Administrative Templates
Unlock the answer
question
How do groups differ from OUs?
answer
Groups are security principals, meaning you assign access permissions to a resource based on membership in a group. OUs are for organization and for assigning Group Policy settings.
Unlock the answer
question
How does CSVDE.exe differ from LDIFDE.exe?
answer
Both utilities can import users, but only LDIFDE can modify or delete objects later
Unlock the answer
question
If an administrator creates a domain tree in an Active Directory forest, and then creates a separate and different domain tree, what is the relationship between the two domain trees?
answer
Same security entity as one Active Directory forest, bidirectional trust between domain trees
Unlock the answer
question
If creating a Local Group Policy Object, then a secondary GPO, then a tertiary GPO, what policy settings are included in each GPO?
answer
The first GPO contains both Computer Configuration and User Configuration settings, while the secondary and tertiary GPOs contain only User Configuration settings.
Unlock the answer
question
In Windows Server 2012, after a user logs on to Active Directory, a(an) ________ is created that identifies the user and all the user's group memberships.
answer
access token
Unlock the answer
question
Installing Windows Server 2012 Active Directory Domain Services installs two default policies: Default Domain Policy and Default Domain Controller Policy. The administrator needs different policy settings. How best to proceed?
answer
Create new Group Policy Objects to augment or override the existing default settings.
Unlock the answer
question
Local GPOs contain fewer options than domain GPOs. Local GPOs do not support ______.
answer
Folder redirection or Group Policy software installation
Unlock the answer
question
Members of a universal group can come ______.
answer
from trusted forests
Unlock the answer
question
Of the default groups created when Active Directory is installed, what are the types of those groups?
answer
Security groups
Unlock the answer
question
Of the key reasons for creating organizational units, which of the following is NOT one of them?
answer
Assigning permissions to network resources
Unlock the answer
question
Regarding Group Policy in Windows Server 2008 and Windows Vista, Microsoft used the token-based administrative template (ADM) files. What did Microsoft replace ADM files with in Windows Server 2012?
answer
ADMX files (XML-based file format)
Unlock the answer
question
Resource access for individuals takes place through their ______.
answer
user accounts
Unlock the answer
question
Some of the following groups might grant or deny permissions to any resource located in any domain in the forest. Of them, which one's membership is replicated only in the domain controllers of the same domain?
answer
Global groups
Unlock the answer
question
The Delegation of Control Wizard is capable of ________ permissions.
answer
granting
Unlock the answer
question
The LDIFDE.exe utility is most similar to what other utility?
answer
CSVDE.exe
Unlock the answer
question
The command-line utility can create new user accounts by importing information from a comma-separated value file?
answer
CSVDE.exe
Unlock the answer
question
The three types of Group Policy Objects (GPOs) include local, domain and _____.
answer
starter
Unlock the answer
question
To perform an offline domain join, how many times would an administrator run the Djoin.exe command?
answer
twice
Unlock the answer
question
What administrative division in Active Directory is defined as a collection of subnets that have good connectivity between them to facilitate the replication process?
answer
Sites
Unlock the answer
question
What allows administrators to grant users in one domain access to resources of another domain within the same domain tree?
answer
Bidirectional trust relationship between domains
Unlock the answer
question
What application or interface allows you to configure security filtering?
answer
Group Policy Management console
Unlock the answer
question
What are the different kinds of groups?
answer
There are two types: security and distribution; and there are three group scopes: domain local, global, and universal.
Unlock the answer
question
What are the two basic classes of Active Directory objects?
answer
Container and leaf objects
Unlock the answer
question
What are the two built-in user accounts are created on a computer running Windows Server 2012?
answer
administrator and guest
Unlock the answer
question
What are the two types of user accounts in Windows Server 2012?
answer
local and domain
Unlock the answer
question
What capability allows you to create specific GPO settings for one or more local users configured on a workstation?
answer
multiple local GPOs
Unlock the answer
question
What command-line utility allows administrators to modify a group's type and scope as well as add or remove members?
answer
Dsmod.exe
Unlock the answer
question
What command-line utility requires you know the SAM account name as well as the user login ID before creating user accounts?
answer
Dsadd.exe
Unlock the answer
question
What defines what objects exist as well as what attributes are associated with any object in the Active Directory?
answer
Active Directory schema
Unlock the answer
question
What determines the functional level of an Active Directory forest?
answer
The lowest version of Windows Server on a domain controller
Unlock the answer
question
What do you call the process that after you link a GPO to a site with multiple domains, the Group Policy settings are applied to all the domains and the child objects beneath them?
answer
inheritance
Unlock the answer
question
What graphical tool can create user and computer accounts and was redesigned for Windows Server 2012?
answer
Active Directory Administrative Center
Unlock the answer
question
What is a container object that functions in a subordinate capacity to a domain, and still inherits policies and permissions from its parent objects?
answer
Organizational unit
Unlock the answer
question
What is a key difference between a domain tree hierarchy and the organizational unit (OU) hierarchy within a domain?
answer
Inheritance
Unlock the answer
question
What is an important difference between groups and OUs?
answer
Group memberships are independent of the domain's tree structure.
Unlock the answer
question
What is not a container, nor full-fledged security division and cannot have Group Policy settings applied directly to them?
answer
Group
Unlock the answer
question
What is the Microsoft Management Console (MMC) snap-in that you use to create GPOs and manage their deployment to AD DS objects?
answer
Group Policy Management console
Unlock the answer
question
What is the PowerShell cmdlet for installing a domain controller to the domain "adatum.com"?
answer
Install-AddsForest -DomainName "adatum.com"
Unlock the answer
question
What is the PowerShell cmdlet used to create user objects?
answer
New-ADUser
Unlock the answer
question
What is the fundamental component of the Active Directory architecture, functioning as the boundary for virtually all directory functions, including administration, access control, database management, and replication?
answer
Domain
Unlock the answer
question
What is the global catalog?
answer
An index of all AD DS objects in a forest
Unlock the answer
question
What is the group scope for Domain Admins, Domain Controllers, and Domain Users default groups?
answer
Global
Unlock the answer
question
What is the method for removing a domain controller in Windows Server 2012?
answer
Using the Remove Roles and Features Wizard
Unlock the answer
question
What is the next level of Active Directory container object within a domain?
answer
Organizational unit
Unlock the answer
question
What is the only OU created by default after installing Active Directory?
answer
Domain Controllers OU
Unlock the answer
question
What is the order in which Windows systems receiving and process multiple GPOs.
answer
LSDOU (local, site, domain, then OU)
Unlock the answer
question
What is the primary difference between universal groups and global groups in Windows Server 2012?
answer
Global groups use less data in the global catalog. So, in considering replication traffic, universal groups should be within a site.
Unlock the answer
question
What is the primary means by which people access resources on an AD DS network?
answer
By having a user account
Unlock the answer
question
What is the primary reason for creating different sites on an Active Directory network?
answer
To control the traffic passing over relatively slow and expensive WAN links between locations
Unlock the answer
question
What is the process of granting the user access only to the resources he or she is permitted to use?
answer
Authorization
Unlock the answer
question
What is the proper term for associating a Group Policy to a set of AD DS objects?
answer
Linking
Unlock the answer
question
What is the simplest way for administrators to upgrade their AD DS infrastructure to Windows Server 2012?
answer
Add a new Windows Server 2012 DC to your existing Directory Services installation.
Unlock the answer
question
What is the technique called that you can modify the default permission assignments so that only certain users and computers receive the permissions and, consequently, the settings in the GPO?
answer
security filtering
Unlock the answer
question
What kind of GPO serves as a template for the creation of domain GPOs based on a standard collection of settings?
answer
starter GPO
Unlock the answer
question
What kind of GPO stores its settings on the local computer in the %systemroot%/System32/GroupPolicy folder?
answer
local GPO
Unlock the answer
question
What nonlocal GPO has its properties stored in the Active Directory object Group Policy container (GPC), as well as a Group Policy template located in the SYSVOL share?
answer
domain GPO
Unlock the answer
question
What special DNS resource record enables clients to locate domain controllers and other vital AD DS services?
answer
SRV
Unlock the answer
question
What two common tools help create both User and Computer objects?
answer
Active Directory Administrative Center and Active Directory Users and Computer
Unlock the answer
question
What user creation tool was redesigned in Windows Server 2012 to incorporate new features such as the Active Directory Recycle Bin and fine-grained password policies?
answer
Active Directory Administrative Center (ADAC)
Unlock the answer
question
What versions of Windows began support of multiple local GPOs?
answer
Windows Server 2008 R2 and Windows Vista
Unlock the answer
question
What would be a sufficient user account to provide temporary access to the network for a user such as a vendor representative or a temporary employee?
answer
Guest
Unlock the answer
question
What would be the distinguished name (DN) for a user named Ella Parker, whose user account resides in the Marketing OU of the adatum.com domain?
answer
cn=Ella Parker,ou=Marketing,dc=adatum,dc=com
Unlock the answer
question
What you call the process of confirming a user's identity by using a known value such as a password, a smart card, or a fingerprint?
answer
authentication
Unlock the answer
question
What you call the process of confirming that a user has the correct permissions to access one or more network resources?
answer
Authorization
Unlock the answer
question
When is an Active Directory site topology created?
answer
Site topology is manually configured dependent on WAN bandwidth and transmission speed.
Unlock the answer
question
When multiple GPOs are linked to a container, which GPO in the list has the highest priority?
answer
the first
Unlock the answer
question
When would administrators choose to use a User Template?
answer
When an administrator wants to save time while creating single users with many attributes
Unlock the answer
question
Where is the path to the default GPT structure for a domain?
answer
%systemroot%SYSVOLsysvolPolicies
Unlock the answer
question
Which of the following default groups is a universal group?
answer
Enterprise Admins
Unlock the answer
question
Which of the following guidelines are NOT best practice for securing the Administrator account?
answer
Renaming the Administrator account name so as not to distinguish it from non-administrative accounts
Unlock the answer
question
Which of the following is NOT a group scope?
answer
Security groups
Unlock the answer
question
Which of the following is NOT an example of a special identity?
answer
Dialup Service
Unlock the answer
question
Which of the following is a PowerShell cmdlet for creating user objects?
answer
New-ADUser
Unlock the answer
question
Which of these groups is not related to security and cannot have permissions assigned to it?
answer
Distribution groups
Unlock the answer
question
Which of these groups would an administrator use to assign permissions to resources in the same domain?
answer
Domain local groups
Unlock the answer
question
Which of these groups' membership is stored in the global catalog?
answer
Universal groups
Unlock the answer
question
Within a domain, the primary hierarchical building block is the _________.
answer
organizational unit
Unlock the answer
question
What is the SAM account name and the User Principal Name for the account ella@contoso.com?
answer
SAM account name is ella, and the User Principal Name is ella@contoso.com
Unlock the answer
Get an explanation on any task
Get unstuck with the help of our AI assistant in seconds
New
Get unstuck with AI assistant right now
  • Enter your topic/question
  • Receive an explanation
Pro tips to get quality response
  • Ask one question at a time
  • Enter a specific assignment topic
  • Aim at least 500 characters
Question
What is the right structure for an essay
Answer
A paragraph is a related group of sentences that develops one main idea. Each paragraph in the body of the essay should contain:
  • a topic sentence that states the main or controlling idea
  • supporting sentences to explain and develop the point you’re making
  • evidence from your reading or an example from the subject area that supports your point
  • analysis of the implication/significance/impact of the evidence finished off with a critical conclusion you have drawn from the evidence.