Scribd Logo
Carica

Benvenuto in Scribd!

  • Windows Active Directory (AD) Interview Questions and Answers

    Caricato da

    Mohammad Latif Khawaja
    4K visualizzazioni3 pagine
    Active Directory (AD) is a database that stores information about users, computers, and other network objects on a network. It allows for centralized management of these objects. Some key points about AD include: - Domain controllers authenticate users and computers on the network and replicate AD data between each other. - Domains group related network resources for users to access with a single login. - The SYSVOL folder stores files that are shared domain-wide, like group policies. - Enterprise admins have control over the entire AD forest while domain admins control a single domain. - Replication ensures changes to AD objects are synchronized across domain controllers.

    Descrizione originale:

    nice.

    Titolo originale

    Windows Active Directory (AD) Interview Questions, AD L3 Interview Questions

    Copyright

    © © All Rights Reserved

    Formati disponibili

    PDF, TXT o leggi online da Scribd

    Hai trovato utile questo documento?

    Questo contenuto è inappropriato?

    Segnala questo documento
    Active Directory (AD) is a database that stores information about users, computers, and other network objects on a network. It allows for centralized management of these objects. Some key points about AD include: - Domain controllers authenticate users and computers on the network and replicate AD data between each other. - Domains group related network resources for users to access with a single login. - The SYSVOL folder stores files that are shared domain-wide, like group policies. - Enterprise admins have control over the entire AD forest while domain admins control a single domain. - Replication ensures changes to AD objects are synchronized across domain controllers.

    Copyright:

    © All Rights Reserved
    Scarica in formato PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    4K visualizzazioni3 pagine

    Windows Active Directory (AD) Interview Questions and Answers

    Caricato da

    Mohammad Latif Khawaja
    Active Directory (AD) is a database that stores information about users, computers, and other network objects on a network. It allows for centralized management of these objects. Some key points about AD include: - Domain controllers authenticate users and computers on the network and replicate AD data between each other. - Domains group related network resources for users to access with a single login. - The SYSVOL folder stores files that are shared domain-wide, like group policies. - Enterprise admins have control over the entire AD forest while domain admins control a single domain. - Replication ensures changes to AD objects are synchronized across domain controllers.

    Copyright:

    © All Rights Reserved
    Scarica in formato PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    di 3

    2/13/2016

    WindowsActiveDirectory(AD)InterviewQuestions,ADL3interviewquestions

    TechieBird
    Home|Windows|Network|InterviewQuestions|Database|Virtualization|KnowledgeBase|ContactUs

    WindowsServer2008ActiveDirectoryInterviewQuestions!
    QuickLinks
    Windows2003KB
    Windows2008KB
    Windows2012
    MSClusterFAQ's
    Virtualization

    Commandreference
    ExchangeQ&A
    LinuxInterviewQ&A
    VMInterviewQ&A
    DNSFAQ's
    DHCPFAQ's

    >WhatisActiveDirectory?
    ActiveDirectoryisaMetaData.ActiveDirectoryisadatabasewhichstoreadatabaselikeyouruser
    information,computerinformationandalsoothernetworkobjectinfo.Ithascapabilitiestomanageand
    administorthecompliteNetworkwhichconnectwithAD.
    >WhatisActiveDirectoryDomainServices?
    In Windows 2000 Server and Windows Server 2003, the directory service is named Active Directory. In
    Windows Server 2008 and Windows Server 2008 R2, the directory service is named Active Directory
    DomainServices(ADDS).TherestofthistopicreferstoADDS,buttheinformationisalsoapplicableto
    ActiveDirectory.
    >Whatisdomain?
    Adomainisasetofnetworkresources(applications,printers,andsoforth)foragroupofusers.Theuser
    needonlytologintothedomaintogainaccesstotheresources,whichmaybelocatedonanumberof
    different servers in the network. The 'domain' is simply your computer address not to confused with an
    URL.Adomainaddressmightlooksomethinglike211.170.469.
    >Whatisdomaincontroller?
    A Domain controller (DC) is a server that responds to security authentication requests (logging in,
    checking permissions, etc.) within the Windows Server domain. A domain is a concept introduced in
    WindowsNTwherebyausermaybegrantedaccesstoanumberofcomputerresourceswiththeuseofa
    singleusernameandpasswordcombination.
    >WhatisLDAP?
    Lightweight Directory Access Protocol LDAP is the industry standard directory access protocol, making
    Active Directory widely accessible to management and query applications. Active Directory supports
    LDAPv3andLDAPv2.
    >WhatisKCC?

    ActiveDirectoryFAQ's KCC(knowledgeconsistencychecker)Itgeneratesthereplicationtopologybyspecifyingwhatdomain
    ADHistory
    ConfiguringNew
    Domain
    DeletedObject
    RecoveryinAD

    controllers will replicate to which other domain controllers in the site. The KCC maintains a list of
    connections, called a replication topology, to other domain controllers in the site. The KCC ensures that
    changestoanyobjectarereplicatedtoallsitedomaincontrollersandupdatesgothroughnomorethan
    threeconnections.Alsoanadministratorcanconfigureconnectionobjects..
    >WhereistheADdatabaseheld?WhatotherfoldersarerelatedtoAD?
    BydefaultADdatabaseisstoredinc:\windows\ntds\NTDS.DIT.SYSVOL&NETLOGONareotherfolders
    relatedtoADDS.

    GlobalCatalogServer >WhatistheSYSVOLfolder?

    NetDomCommand
    ReplmonCommand
    NTDSUtilityGuide
    FSMOGuide
    FSMOFailure

    NetworkInterview
    Questions
    SQLInterview
    Questions

    SystemVolume(Sysvol)isashareddirectorythatstorestheservercopyofthedomain'spublicfilesthat
    mustbesharedforcommonaccessandreplicationthroughoutadomain.ThetermSYSVOLreferstoaset
    offilesandfoldersthatresideonthelocalharddiskofeachdomaincontrollerinadomainandthatare
    replicatedbytheFileReplicationservice(FRS).NetworkclientsaccessthecontentsoftheSYSVOLtreeby
    usingtheNETLOGONandSYSVOLsharedfolders.Sysvolusesjunctionpointsaphysicallocationonahard
    diskthatpointstodatathatislocatedelsewhereonyourdiskorotherstoragedevicetomanageasingle
    instancestore.
    >WhatistheNetlogonfolderinADDSandWhatisitusedfor?
    The NETLOGON share is pointing to %SystemRoot%\sysvol\sysvol\{DOMAIN}\scripts folder on DC, and
    it'smainpurposeisforstoringlogonscripts.
    Bydefault%SystemRoot%\sysvol\sysvol\{DOMAIN}\scriptsisempty.Whenwearedeployedanyscript
    viaGPOthatisthedefaultlocationforstoringthescript.
    Bydefaultsysvolincludes2folders,thescriptsfolderissharedwiththenameNETLOGON
    1.Policies(Defaultlocation%SystemRoot%\Sysvol\Sysvol\domain_name\Policies)
    2.Scripts(Defaultlcation%SystemRoot%\Sysvol\Sysvol\domain_name\Scripts)

    >WhatarethedifferencebetweenEnterpriseAdminsandDomainAdminsgroupsinAD?
    EnterpriseAdmins:Membersofthisgrouphavefullcontrolofalldomainsintheforest.Bydefault,this
    ActiveDirectoryTrust group is a member of the Administrators group on all domain controllers in the forest. By default, the
    Administrator account is a member of this group. Because this group has full control of the forest, add
    GroupPolicyGuide
    userswithcaution.

    IIS6.0
    http://techiebird.com/ad1.html

    Domain Admins : Members of this group have full control of the domain. By default, this group is a
    1/3

    2/13/2016

    RAIDLevels
    RPCGuide
    Domain&Forest
    FunctionalLevels
    SQLFailoverCluster

    WindowsActiveDirectory(AD)InterviewQuestions,ADL3interviewquestions

    member of the Administrators group on all domain controllers, all domain workstations, and all domain
    member servers at the time they are joined to the domain. By default, the Administrator account is a
    memberofthisgroup.Becausethegrouphasfullcontrolinthedomain,adduserswithcaution.
    >Where are the Windows NT Primary Domain Controller (PDC) and its Backup Domain
    Controller(BDC)inServer2003?
    TheActiveDirectoryreplacesthem.Nowalldomaincontrollersshareamultimasterpeertopeerreadand
    writerelationshipthathostscopiesoftheActiveDirectory.
    >Iamtryingtocreateanewuniversalusergroup.WhycantI?
    Universal groups are allowed only in nativemode Windows Server 2003 environments. Native mode
    requiresthatalldomaincontrollersbepromotedtoWindowsServer2003ActiveDirectory.
    >WhatisLSDOU?
    Its group policy inheritance model, where the policies are applied toLocal machines, Sites, Domains
    andOrganizationalUnits.
    >WhydoesntLSDOUworkunderWindowsNT?
    IftheNTConfig.polfileexist,ithasthehighestpriorityamongthenumerouspolicies.
    >Whats the number of permitted unsuccessful logons on Administrator account? Unlimited.
    Remember,though,thatitstheAdministratoraccount,notanyaccountthatspartoftheAdministrators
    group.
    >WhatsthedifferencebetweenguestaccountsinServer2003andothereditions?
    MorerestrictiveinWindowsServer2003.
    > How many passwords by default are remembered when you check "Enforce Password
    HistoryRemembered"?
    Userslast6passwords.
    >CanGCServerandInfrastructureplaceinsingleserverIfnotexplainwhy?
    Asageneralrule,theinfrastructuremastershouldbelocatedonanonglobalcatalogdomaincontrollerthat
    hasadirectconnectionobjecttosomeglobalcatalogintheforest,preferablyinthesameActiveDirectory
    site. Because the global catalog server holds a partial replica of every object in the forest, the
    infrastructuremaster,ifplacedonaglobalcatalogserver,willneverupdateanything,becauseitdoesnot
    containanyreferencestoobjectsthatitdoesnothold.
    But there are exceptions to this general rule. Two exceptions to the "do not place the infrastructure
    masteronaglobalcatalogserver"ruleare:
    Singledomainforest:
    InaforestthatcontainsasingleActiveDirectorydomain,therearenophantoms,andsotheinfrastructure
    master has no work to do. The infrastructure master may be placed on any domain controller in the
    domain,regardlessofwhetherthatdomaincontrollerhoststheglobalcatalogornot.
    Multidomainforestwhereeverydomaincontrollerinadomainholdstheglobalcatalog:
    Ifeverydomaincontrollerinadomainthatispartofamultidomainforestalsohoststheglobalcatalog,
    therearenophantomsorworkfortheinfrastructuremastertodo.Theinfrastructuremastermaybeput
    onanydomaincontrollerinthatdomain.
    >WhatIntrasiteandIntersiteReplication?
    Intrasiteisthereplicationwithinthesamesite&intersitethereplicationbetweensites.
    >Whatislost&foundfolderinADS?
    Itsthefolderwhereyoucanfindtheobjectsmissedduetoconflict.
    Ex:youcreatedauserinOUwhichisdeletedinotherDC&whenreplicationhappedADSdidntfindthe
    OUthenitwillputthatinLost&FoundFolder.
    >WhatisGarbagecollection?
    Garbage collection is a housekeeping process that is designed to free space within the Active Directory
    database.InWindows2000andintheoriginalreleaseversionofWindowsServer2003,thisprocessruns
    oneverydomaincontrollerintheenterprisewithadefaultlifetimeintervalof12hours.Youcanchange
    this interval by modifying the garbageCollPeriod attribute in the enterprisewide DS configuration object
    (NTDS).
    >WhatSystemStatedatacontains?
    ContainsStartupfiles,
    Registry
    Com+RegistrationDatabase
    MemoryPagefile
    Systemfiles
    ADinformation
    ClusterServiceinformation
    SYSVOLFolder

    http://techiebird.com/ad1.html

    2/3

    2/13/2016

    WindowsActiveDirectory(AD)InterviewQuestions,ADL3interviewquestions

    ContinueNextQuestions

    ActiveDirectoryHome
    ADInterviewQuestionsAndAnswers
    WindowsServer2008ArticlesWindowsServer2012ArticlesVirtualization
    HTMLCommentBoxisloadingcomments...

    Home|Windows|Network|PostUrIssues|Database|KnowledgeBase|ContactUs

    DesignedbyTechieBird

    http://techiebird.com/ad1.html

    3/3

    Potrebbero piacerti anche