Copy and Edit

Quiz 17 & 18

Description

70-411 College Final Exam
Michael Marcus
Quiz by Michael Marcus, updated more than 1 year ago
Michael Marcus
Created by Michael Marcus over 8 years ago
760
1
0

Resource summary

Question 1

Question
Which of the following ntdsutil commands cleans up metadata?
Answer
  • metadata defrag
  • metadata restore
  • metadata cleanup
  • metadata repair

Question 2

Question
Why is backing up the Windows system state necessary?
Answer
  • It's needed to perform a full system restore
  • It's a precautionary move against failure
  • It's standard practice to do so
  • In some commercial third-party software backup programs, it's mandatory.

Question 3

Question
In interactive mode, what aspect of AD can you check with the ntdsutil integrity command?
Answer
  • low-level database corruption
  • fragmentation levels
  • accuracy of entries
  • completeness of entries

Question 4

Question
What is the range of password history settings?
Answer
  • 0 to 9
  • 0 to 15
  • 0 to 24
  • 0 to 63

Question 5

Question
What is the primary advantage of using Group Policies in a domain environment?
Answer
  • ease of enforcement
  • user of compliance
  • centralized management
  • ease of creation

Question 6

Question
How should you assign Password Settings objects (PSOs) to users?
Answer
  • Assign the PSOs directly to individual users
  • Assign the PSOs to a new group and add the users to the new group
  • Assign the PSOs to a global security group and add users to the group
  • Assign the PSOs to various Active Directory groups as needed

Question 7

Question
By default, how often does Active Directory "garbage collection" occur?
Answer
  • every 45 minutes
  • every 2 hours
  • every 8 hours
  • every 12 hours

Question 8

Question
What is the proper procedure for removing a domain controller from Active Directory?
Answer
  • Shut down the domain controller and manually remove it from AD.
  • Use dcdemo to demote the domain controller.
  • Uninstall Active Directory Domain Services.
  • Enter the DSRM and delete Active Directory.

Question 9

Question
To perform an authoritative restore, into what mode must you reboot the domain controller?
Answer
  • Repair
  • Safe
  • Command line with networking
  • DSRM

Question 10

Question
If a single domain controller's AD database becomes corrupt, which type of restore should you perform on it?
Answer
  • authoritative
  • nonauthoritative
  • explicit
  • full

Question 11

Question
Why can you not modify snapshots?
Answer
  • They are encrypted.
  • They are compressed and zipped.
  • They are read- only.
  • They are binary files.

Question 12

Question
What is the default minimum password length in characters?
Answer
  • 5
  • 7
  • 8
  • 10

Question 13

Question
Which aspect of passwords is a key component of their strength?
Answer
  • easy to remember
  • number of characters
  • dictionary basis
  • keyboard complexity

Question 14

Question
Why primarily are account lockout policies put into place?
Answer
  • privacy
  • security
  • policy
  • regulations

Question 15

Question
Why should administrator passwords change more often than user passwords?
Answer
  • because administrator passwords are usually simpler than user passwords.
  • because administrator accounts carry more security sensitivity than users do
  • because administrators are paranoid about security
  • because administrator accounts are watched by management in large companies

Question 16

Question
An Active Directory snapshot is actually what kind of backup?
Answer
  • a shadow copy
  • a simple file copy
  • a compressed (zipped) copy
  • a file copy plus metadata

Question 17

Question
What is a GUID?
Answer
  • a unique identifier for a snapshot
  • a special file permission
  • an Active Directory object ID
  • a group-user ID in Active Directory

Question 18

Question
When you do an authoritative restore process, a back-links file is created. What is a back-links file?
Answer
  • a reference to an attribute within another object
  • a reference to metadata
  • a pointer to the object's OU
  • a reference to a distinguished name location

Question 19

Question
Which utility do you use to defragment Active Directory?
Answer
  • CSVDE
  • LDIFDE
  • ntdsutil
  • defrag

Question 20

Question
To perform an authoritative restore of an object or subtree, what bit of information do you need to know about the object?
Answer
  • its formal name
  • its exact location
  • its OU and proper name
  • its distinguished name

Question 21

Question
What utility first appeared in Windows Server 2000 R2 that allows you to undelete Active Directory containers and objects?
Answer
  • the Active Directory Lost and Found folder
  • the Active Directory Recycle Bin
  • the Active Directory Undelete utility
  • Active Directory Snapshots

Question 22

Question
What is the default setting for password history?
Answer
  • 6
  • 10
  • 16
  • 24

Question 23

Question
Account policies contain various subsets. Which of the following are legitimate subsets of accounts policies? Check all that apply
Answer
  • Password Policy
  • Account Lockout Policy
  • Kerberos Policy
  • Username Policy

Question 24

Question
By default, who has read/write capability to the Default Domain Policy?
Answer
  • local administrators
  • power users
  • domain users
  • domain administrators

Question 25

Question
By default, which of the following represents the maximum amount of time by which a computer's internal clock can be inaccurate yet still be able to use Kerberos authentication?
Answer
  • 30 seconds
  • 1 minute
  • 5 minutes
  • 8 minutes

Question 26

Question
What setting can you give for account lockout duration that requires an administrator to manually unlock the account?
Answer
  • 0
  • 10
  • 99
  • 99,999

Question 27

Question
Why is a setting of 0 for maximum passwords age not a good idea? Check all that apply.
Answer
  • It means that passwords never expire, which is a major security problem.
  • It means that your passwords expire every day.
  • It means that you've disabled password aging.
  • It means that you've disabled the use of passwords.

Question 28

Question
What function does the CSVDE tool perform?
Answer
  • It decrypts and encrypts Active Directory information
  • It exports/imports Active Directory information
  • It exports/imports data from Event Viewer
  • It extracts Event Viewer information into CSV files.

Question 29

Question
Before you can use the Active Directory Recycle Bin, what two actions do you have to perform?
Answer
  • You have to remove the System Recycle Bin
  • You have to enable the AD Recycle Bin.
  • You have to set the AD forest to Windows Server 2003 or higher
  • You have to set the AD forest to Windows Server 2008 R2 or higher.

Question 30

Question
What is an easy method of creating a strong password?
Answer
  • Use your username and add numbers and special characters
  • Use your favorite football team's name with numbers and special characters.
  • Ask a friend for some ideas for good passwords and then add your own number and characters.
  • Start with a sentence then add numbers and special characters.

Question 31

Question
What are examples of password policies? Select all that apply.
Answer
  • history
  • length
  • complexity
  • age

Question 32

Question
The default maximum password age is how long?
Answer
  • 12 days
  • 36 days
  • 42 days
  • 86 days

Question 33

Question
what character length for a password generally accepted as minimum?
Answer
  • four
  • six
  • eight
  • fourteen

Question 34

Question
After you undelete a user account with the LDP utility, what action do you need to perform?
Answer
  • Remove the old identifier
  • Re-establish user to domain trust.
  • Reset the user's password
  • Restore the user-owned objects from a backup

Question 35

Question
Why is backup of the Active Directory database so important?
Answer
  • Backup of all data is a good idea.
  • Backup is a standard practice in large companies.
  • Backup is needed in case of corruption, deletion, or other failure.
  • Backup is an insurance policy for data and should be performed regularly.

Question 36

Question
What does the minimum password age setting control?
Answer
  • how many seconds a user must wait before a password reset
  • how many minutes a user must wait before a password reset
  • how many hours a user must wait before a password reset
  • how many days a user must wait before a password reset

Question 37

Question
What is the secpol.msc utility used for?
Answer
  • editing group policies
  • editing local security policies
  • editing global security policies
  • editing domain-level policies

Question 38

Question
Which of the following passwords is considered complex?
Answer
  • M!croS0ft
  • candybar01
  • bobj
  • fred@local

Question 39

Question
Windows Server 2012 introduces a new time-saving feature when performing tasks such as AD defragmentation. What is that feature?
Answer
  • the DSRM console
  • the ntdsutil command-line utility
  • Active Directory Maintenance Mode
  • Restartable Active Directory Domain Services
Show full summary Hide full summary

Want to create your own Quizzes for free with GoConqr? Learn more.

Similar

Quiz 11 & 12
Michael Marcus
Quiz 1&2
Michael Marcus
Quiz 9&10
Michael Marcus
Components of An Operating System - Jason Madappattu
Jason EM
Quiz 19-20
Michael Marcus
Quiz 21-22
Michael Marcus
Quiz 5 & 6
Michael Marcus
70-410 - MCSA: Windows Server 2012 - Installing and Configuring - Exam 2
Mike M
70-410 - MCSA: Windows Server 2012 - Installing and Configuring - Exam 3
Mike M
Quiz 13 & 14
Michael Marcus
70-410 - MCSA: Windows Server 2012 - Installing and Configuring - Exam 1
Mike M
Browse Library