The main page of your company's Intranet portal is accessible by the FQDN home.na.adatum.corp. How would you configure an entry in the GlobalNames zone for this?
answer
Add a single CNAME record pointing to the A record in another zone
question
How can you best go about delegating administrative access to those employees who need to be able to manage DNS?
answer
Add the user's Active Directory accounts to a special global security group created for this purpose (e.g., DNS Service Managers) and then add that group to the DNS Admins local group.
question
What is the purpose of DNS Cache Locking?
answer
It prevents an attacker from replacing records in the resolver cache while the Time to Live (TTL) is still in force
question
What value for DNS Cache Locking is considered to be the optimal setting?
answer
100
question
How are values for DNS Cache Locking expressed?
answer
As a percentage of the TTL
question
Which of the following commands would correctly set the DNS socket pool to a value of 7,000?
answer
dnscmd /Config /SocketPoolSize 7000
question
By default, where are the DNS debug logs written to?
answer
The %SYSTEMROOT%System32Dns folder
question
After a DNS zone has been secured with DNSSEC, what additional data will be returned to a client as a result of a query?
answer
Digital signatures for the returned records
question
What feature of Windows Server 2012 DNS is intended to eliminate the need for WINS by providing support for single label names?
answer
GlobalNames zone
question
What Windows Server 2012 DNS feature prioritizes DNS responses based on the subnet of the requesting client?
answer
Netmask ordering
question
Regarding DNSSEC, what is used to sign the DNSKEY records at the root of the zone?
answer
Key Signing Key
question
Key Signing Key
answer
Key Signing Key
Zone Signing Key
DNSSEC Resource Records
Trust Anchor
question
IncorrectQuestion 13
Regarding DNSSEC, what is used to sign the zone data?
answer
Trust Anchor
DNSSEC Resource Records
Zone Signing Key
Key Signing Key
question
IncorrectQuestion 14
What DNS security feature in Windows Server 2012 can be configured to allow source port randomization for DNS queries?
answer
Randomization factor
Socket pool
Initialization vector
Name Resolution Policy Table
question
What is the default size of the DNS socket pool?
answer
2,500
question
Regarding DNSSEC, against what will DNS clients verify digital signatures returned alongside a requested resource record?
answer
Trust Anchor
question
What is the net effect if recursion is disabled on a DNS server and the DNS server does not have any forwarding or root hints configuration present?
answer
The DNS server will be able to provide only answers to queries about internal DNS zones
question
What is the function of the NSEC record?
answer
Returned to positively deny that the requested A record exists in the zone
question
What is the function of the RRSIG record?
answer
Returned to the client in response to a successful query along with the A record
Haven't found what you need?
Search for quizzes and test answers now
Quizzes.studymoose.com uses cookies. By continuing you agree to our cookie policy
