0
Active Directory
Active Directory is a set of networking services made by Microsoft. Questions about using and configuring Active Directory belong here.
849 Questions
What is dynamic DNS integrated DNS?
The dynamic DNS integrated DNS refers to the method of automatically updating a name server in the DNS in real time.
true
Can an organizational unit have multiple active directory domains?
no its is not possible . OUs of the same name in different domains are independent..
Organizational Units appear within a top-level Organization grouping or Organization certificate, called a Domain. In many systems one OU can also exist within another OU. When OUs are nested, as one OU contains another OU, this creates a relationship where the contained OU is called the child and the container is called the parent. Thus, OUs are used to create a hierarchy of containers within a domain. Only OUs within the same domain can have relationships.
Where do you find the result of the board exam in PRC?
You can find most of the recent PRC Board Exam results at the Related Link below.
How do you create an Active Directory-integrated zone?
1. Click Start, Administrative Tools, and then click DNS to open the DNS console.
2. In the console tree, select the DNS server that you want to create a new DNS zone.
3. From the Action menu, click the New Zone option.
4. On the initial page of the New Zone Wizard, click Next.
5. Select the zone type that you want to create. The options are Primary, to create a new standard primary zone; Secondary, to create a copy of the primary zone; and Stub, to create a copy of zone but for only the NS record, SOA record, and the glue A record.
6. Select the default selected option - Primary zone.
7. To integrate the new zone with Active Directory, and if the DNS server is a domain controller; then you can select the Store the zone in Active Directory (available only if DNS server is a domain controller) checkbox.
8. Click Next.
9. On the Active Directory Zone Replication Scope page, accept the default setting for DNS replication: To all domain controllers in the Active Directory domain. Click Next.
10. Select the Forward lookup zone option on the following page which is displayed by the New Zone Wizard, and then click Next. 1
11. Enter a zone name for the new zone. Click Next. 1
12. The options that you can select on the following page pertain to dynamic updates. The Allow only secure dynamic updates (recommended for Active Directory) option is only available if you are using Active Directory-integrated zones. Click Next. 1
13. Click Finish to add the new zone to your DNS server.
What command performs an automated installation of the domain controller role?
In Windows Server 2008, unlike previous server operating Systems, there is an additional step that needs to be taken before running DCPROMO to promote the server to Domain Controller and installing Active Directory on it. This step is the installation of Active Directory Domain Services (AD-DS) role on the server.(dcpromo ad-ds) The AD-DS role is what enables the server to act as a Domain Controller, but you will still need to run DCPROMO from the run.
You probably use an old hard drive, with some left-over win xp files, change boot order, so you boot from cd-rom first.
Where does you change the role in AD FSMO roles?
the server which holds the FSMO role it cna be changed by few methods
1. go to admin option->users and computers -> select domain->rt click fsmo roles gives three tabs of domain fsmo role holder-> change from there.
2 for other roles go to admin option->use site -> forest level roles you can cchange in the properties of each fsmo role holder.
3. NTDS util will help you to see the roles and transfer
How do you install and configure exchange server 2007?
kindly refer to the link
http://www.commodore.ca/windows/exchange/how_to_setup_exchange_2007_in_2hours.htm
How many ways can a group of 3 be selected from a group with 12 members?
12C3 = 12*11*10/(3*2*1) = 220
What services do BT directory enquiries offer?
BT Directory Enquiries, now rebranded as BT 118 500, will give you the telephone number of a requested business or individual, unless that individual or business chooses not to be listed in the directory. They will also connect you to the number that you were looking for, though this will cost more than ending the call to 118 500 and calling the number yourself.
What are two functions of global catalog server?
The global catalog has two main functions:
(1) it enables a user to log on to a network by providing universal group membership information to a domain controller when a logon process is initiated, and
(2) it enables finding directory information regardless of which domain in the forest actually contains the data.
To create a trust relationship with an NT 4 domain you will configure an?
external trust
Use external trusts to provide access to resources located on a Windows NT 4.0 domain or a domain located in a separate forest that is not joined by a forest trust
When a trust is established between a domain in a particular forest and a domain outside of that forest, security principals from the external domain can access resources in the internal domain. Active Directory creates a foreign security principal object in the internal domain to represent each security principal from the trusted external domain. These foreign security principals can become members of domain local groups in the internal domain. Domain local groups can have members from domains outside of the forest.
Directory objects for foreign security principals are created by Active Directory and should not be manually modified. You can view foreign security principal objects from Active Directory Users and Computers by enabling advanced features. For information about enabling advanced features, see To view advanced features.
In domains with the functional level set to Windows 2000 mixed, it is recommended that you delete external trusts from a domain controller running Windows Server 2003. External trusts to Windows NT 4.0 or 3.51 domains can be deleted by authorized administrators on the domain controllers running Windows NT 4.0 or 3.51. However, only the trusted side of the relationship can be deleted on the domain controllers running Windows NT 4.0 or 3.51. The trusting side of the relationship (created in the Windows Server 2003 domain) is not deleted, and although it will not be operational, the trust will continue to display in Active Directory Domains and Trusts. To remove the trust completely, you will need to delete the trust from a domain controller running Windows Server 2003 in the trusting domain. If an external trust is inadvertently deleted from a domain controller running Windows NT 4.0 or 3.51, you will need to recreate the trust from any domain controller running Windows Server 2003 in the trusting domain
its a structure dude, for example there is no example and you have to find that example out to know the example.
did you get it yo
What do you mean by active directory user?
Active directory users are nothing but the ones those are authenticated or able to access the directory with all the benefits of directory
A. The PTR resource record.
a. Dig
What is the Mac address of the DNS server?
login to DNS server
Click start->click run-> type cmd
type IPCONFIG /all
this will give you MAC address of server
These contain the names and IP addresses of the DNS servers authoritative for the root zone?
Root Hints (page 81 of the 70-642 Microsoft Press Book)
Aphrodite is the patron goddess of sex and procreation, love, subduction, beauty, pleasure and happiness.
Is it possible that a forest has one or more domain name in active directory?
Yes it is possible that a forest has one or more domains which have trusts between them
What is the difference betweena single-master and a multi-master domain replication model?
Multi-master replication is a method of database replication which allows data to be stored by a group of computers, and updated by any member of the group.
The multi-master replication system is responsible for propagating the data modifications made by each member to the rest of the group, and resolving any conflicts that might arise between concurrent changes made by different members.
Multi-master replication can be contrasted with master-slave replication, in which a single member of the group is designated as the "master" for a given piece of data and is the only node allowed to modify that data item. Other members wishing to modify the data item must first contact the master node. Allowing only a single master makes it easier to achieve consistency among the members of the group, but is less flexible than multi-master replication
Flexible Single Master of Operation or just single master operation or operations master, is a feature of Microsoft's Active Directory (AD).
FSMOs are specialized domain controller tasks, used where standard data transfer and update methods are inadequate. AD normally relies on multiple peer DCs, each with a copy of the AD database, being synchronized by multi-master replication. The tasks which are not suited to multi-master replication, and are viable only with a single-master database, are the FSMOs.
Once per domain they only replicate to all
The Relative ID Master allocates security RIDs to DCs to assign to new AD security principals (users, groups or computer objects). It also manages objects moving between domains.
The Infrastructure Master maintains security identifiers, GUIDs, and DN for objects referenced across domains. Most commonly it updates user and group links.This is another domain-specific role and its purpose is to ensure that cross-domain object references are correctly handled. For example, if you add a user from one domain to a security group from a different domain, the Infrastructure Master makes sure this is done properly. As you can guess however, if your Active Directory deployment has only a single domain, then the Infrastructure Master role does no work at all, and even in a multi-domain environment it is rarely used except when complex user administration tasks are performed. Because of this, the hardware requirements for machines holding this role are relatively small.
The PDC Emulator operations master role processes all password changes in the domain. Failed authentication attempts due to a bad password at other domain controllers are forwarded to the PDC Emulator before rejection. This ensures that a user can immediately login following a password change from any domain controller, without having to wait several minutes for the change to be replicated. The PDC Emulator Operations Master role must be carefully sited in a location to best handle all password reset and failed-authentication forwarding traffic for the domain. The PDC emulator role holder retains the following functions:
1.Password changes performed by other DCs in the domain are replicated preferentially to the PDC emulator.
2.Authentication failures that occur at a given DC in a domain because of an incorrect password are forwarded to the PDC emulator before a bad password failure message is reported to the user.
3.Account lockout is processed on the PDC emulator.
4.backward compatibility,The PDC emulator performs all of the functionality that a Microsoft Windows NT 4.0 Server-based PDC or earlier PDC performs for Windows NT 4.0-based or earlier clients.
Once per forest
The Schema Master maintains all modifications to the schema of the forest. The schema determines the types of objects permitted in the forest and the attributes of those objects.
The Domain Naming Master tracks the names of all domains in the forest and is required to add new domains to the forest or delete existing domains from the forest. It is also responsible for group membership.
- Multi-master replication is a replication model in which any domain controller accepts and replicates directory changes to any other domain controller. Because multiple domain controllers are employed, replication continues, even if any single domain controller stops working.
- Single-master replication is a replication model in which one domain controller accepts and replicates directory changes to any other domain controller. This master domain controller is known as "Operation Master".
