Lesson 4
Fill in the Blank
1. Active Directory will tolerate a maximum of a 5- minute clock skew between a client and the domain controller that authenticates it. 2. The PDC Emulator is responsible for managing time synchronization within a domain.
3. You can improve login times in a site that does not contain a global catalog server by implementing universal group membership caching 4. To add or remove an application directory partition from Active Directory, the Domain Naming Master needs to be accessible.
5. If a domain controller that holds a FSMO role fails and will not be returned to the network, you can Role Seizure the FSMO role to another domain controller.
6. You can add additional attributes to the partial attribute set (PAS) by modifying the Active Directory schema. 7. The security identifier uniquely identifies an object within an Active Directory domain, but will change if an object is moved from one domain to another. 8. The infrastructure master FSMO role should not be housed on a domain controller that has been configured as a global catalog.
9. You can transfer the role transfer FSMO from one domain controller to another using the Active Directory Domains and Trusts MMC snap- in.
10. Membership information for a (n) universal group is stored on the global catalog
Multiple Choice
1. What is the Active Directory component that contains a reference to all objects within Active Directory called? a. Main database b. Central catalog c. Global database d. Global catalog
2. Which of the following roles is a forest- wide FSMO role?
a.PDC Emulator b. Infrastructure Master c. Schema Master d. Global catalog
3. To which port does the _ gc SRV record listen? a. TCP 445 b. UDP 137 c. TCP 3268 d. UDP 445
4. You are the administrator of an Active Directory forest that contains a forest root domain with three child domains. How many of each FSMO does this forest contain? a. 1 Domain
1. Active Directory will tolerate a maximum of a 5- minute clock skew between a client and the domain controller that authenticates it. 2. The PDC Emulator is responsible for managing time synchronization within a domain.
3. You can improve login times in a site that does not contain a global catalog server by implementing universal group membership caching 4. To add or remove an application directory partition from Active Directory, the Domain Naming Master needs to be accessible.
5. If a domain controller that holds a FSMO role fails and will not be returned to the network, you can Role Seizure the FSMO role to another domain controller.
6. You can add additional attributes to the partial attribute set (PAS) by modifying the Active Directory schema. 7. The security identifier uniquely identifies an object within an Active Directory domain, but will change if an object is moved from one domain to another. 8. The infrastructure master FSMO role should not be housed on a domain controller that has been configured as a global catalog.
9. You can transfer the role transfer FSMO from one domain controller to another using the Active Directory Domains and Trusts MMC snap- in.
10. Membership information for a (n) universal group is stored on the global catalog
Multiple Choice
1. What is the Active Directory component that contains a reference to all objects within Active Directory called? a. Main database b. Central catalog c. Global database d. Global catalog
2. Which of the following roles is a forest- wide FSMO role?
a.PDC Emulator b. Infrastructure Master c. Schema Master d. Global catalog
3. To which port does the _ gc SRV record listen? a. TCP 445 b. UDP 137 c. TCP 3268 d. UDP 445
4. You are the administrator of an Active Directory forest that contains a forest root domain with three child domains. How many of each FSMO does this forest contain? a. 1 Domain