Technical Interview Questions Active Directory and Networking- Part I

Search Books, Presentations, Business, Academics...

Ads by Scribd
Google Upload a Document

Explore 87
● Sign Up
● |

● Log In

/ 90

Search coming soon

Download this Document for Free

Network Cabling Service

Get Data & Voice Network, LAN &
Structure Cabling Service in India!
ExaltEnterprises.com/NetworkCabling

APW President (Official)

Get Details, Specs, Quote & more
on Network Rack Accessories.
www.APWPresident.com

Network Troubleshooting
Collect data and solve problems
Track trace routes over time
www.pingplotter.com/networktroubles

PROFINET competences
Experts who wrote specification &
PROFINET controller/device Stacks
www.molex.com

Ads by Google

http://www.scribd.com/doc/12807395/Technical-Interview-Questions-Active-Directory-and-Networking-Part-I (1 of 3)10/11/2010 12:11:48 PM

Technical Interview Questions Active Directory and Networking- Part I

http://www.scribd.com/doc/12807395/Technical-Interview-Questions-Active-Directory-and-Networking-Part-I (2 of 3)10/11/2010 12:11:48 PM

 Technical Interview Questions Active Directory and Networking- Part I

Ads by
Google

Policy
settings
GPMC. are For
There
stored in
domainActive
information
areLocal
Group
controllers
the
Directory- least influential GPOs in an Active Directory environment, and local GPOs have only a subset of the settings found in Active Directory-based GPOs. For information about local GPOs, see Local Group Policy objects overview
about
two
Policy
forGPOs
for
What basedthe .
GPMC.
GPMC,
objects see
isdomain.
kinds •
.is
IThere
GPO the
GPOs
Group
(GPOs).
an They
of
order have
example
Ldp .are using Ldp.exe simply because I can display all the relevant information in a single frame for the purposes of this discussion. Before going on, I would like to say a word of caution here. Making changes using low-level Active Directory editing tools could cause problems with the functionality of your domain. If you want to look at Active Directory objects for learning purposes, try this out on a test domain (that cannot harm VPs in
Settings
version
used
any These
just
available
Policy
way). one
one for the GUID. As you can see from the picture above, the GPC also defines an attribute, gPCFileSysPath, which contains the sysvol path to the GPO's GPT. In my
I
folder
Both
GPOs:
in
policiesopen
tree • are using
.my container, where the GPC portion of my GPOs is stored. In the below picture, I have highlighted a sample GPO I called test1 which is identified by a unique GUID and has a version number of 262146. Using the procedure described earlier, I figured out this version number is equal to a computer version of 2 and a user version
each
only
full
Management
number
example,
The of are
path
two
GPTGPO
local
to
\\corp. in
B887-8727C2823857}. an
test1
GPO
the
is is
stored in theAnd I can
sysvol then type
portion the
of the contents
domain of the GPT.INI
controllers' file stored
file system; directly under
for example, for mythat
test folder
domain tocalled
see thecorp.fourthcoffee.com
version number, as shown in the
the GPT picture
is stored atbelow. Notice this version number (262146) matches the number Each
\\corp.fourthcoffee.com\sysvol\corp.fourthcoffee.com\Policies. we saw foristhe
GPO GPC in the Active Directory. That is what we
stored
the
which
of
are 4.
GUI
From
Active Ldp
edited
stored
would
under
GPOs GPO
Console
fourthcoffee.
intools the – instores all the AD-related configuration. Any GPO that is created is not effective until it is linked to an OU, Domain or a Site. The GPOs are replicated among the Domain Controllers of the Domain through replication of the
expect.
this
to
the tool,
GPC
using toolsGPO
Directory
the
arestored
Overview.
GPC
com\sysvol
Active
look athe
root on
Directory.
at
Group
connect,
Toenvironment.
Group
What
of that
apply
the the settings of a GPO to the users and computers of a domain, site, or OU, you need to add a link to that GPO. You can add one or more GPO links to each domain, site, or OU by using GPMC. Keep in mind that creating and linking GPOs is a sensitive privilege that should be delegated only to administrators who are trusted and understand
domain
applied?
Policy
They
the each
\corp.
raw apply
Group and
Policy
are
allow
domain,
What
Name Policy
can
In computer.
Object
to anda and
general,
Policy Group Policy is passed down from parent to child containers within a domain, which you can view by using Active Directory Users and Computers. Group Policy is not inherited from parent to child domains, for example, from wingtiptoys.com to sales.wingtiptoys.com. Active Directory Domains and Trusts, which you can use to manage relationships of this type, is not related to
bind
GPO
Container
fewyou
Group Iusers
fourthcoffee.
GPO I to
do itPolicy.
to
Editor.
If
If replicate
computers
youLocal
inheritance
com\Policies
version
a policy assignina specific Group Policy setting to a high-level parent container, that Group Policy setting applies to all containers beneath the parent container, including the user and computer objects in each container. However, if you explicitly specify a Group Policy setting for a child container, the child container's Group Policy setting overrides the parent
benefits
to
links?
look - The
my
prevent
navigate
After at
If ato
GPOs
setting site,
container's
aGPC
\{06C1CDF4-
of all the
policy
parent that setting.
aresetting that is configured
organizational
is for a parent
unit has policy settingsorganizational unit is incompatible
that are not configured, with the same unit
the child organizational policy setting
does that is configured
not inherit them. Policyfor a childthat
settings organizational
are disabled unit
are(because
inheritedthe
as setting is enabled
disabled. in one
In addition, if acase andsetting
policy disabled in the other),
is configured the child
(enabled does not inherit
or disabled) the policy
for a parent setting from
organizational unitthe parent.
and The policy
the same policy setting
setting is
innot
theconfigured
child for a child organizational unit, the child inherits the parent's enabled or disabled
number
What test
Active
installation
domain,
inheritance
through is or
is
policy
applied
using applied.
7288-4A6D-
in
Blocking the setting.
to a
You
of the
domain. the can
store
organizational
special
properties
Directory from
the block
parent
GPMC.
inheritance
Group
Enforcing
unit
You
From
things
object
dialog GPC;
inheritance
of
objects.
above?
organizational to
can
policy
the box which for
system
What
When check
Policy
the the
inheritance Groupyoubox.
the enforce
inheritance
GPOs;
Inheritance
can
link.
Adsiedit
unit
are
You the
containerI'm I an
and
thedomain
can
view a at
select For
Management
Policy
parent's more
theobject
the
GPC has
policy
The
How
do
menu,
going
set policy
Name to
toNod
domainbeen
GPCsetting
I a I or
can
orto
Console
is
policy,
that
and linked.
information,
The
Improved No
Added
is
the Group
inheritance
set
them?
This for
organizational-
allis where
take
override
select
organizational
Vista™
(GPMC),
Prior give to
is the
place
Windows
the Vista, Group Policy processing occurred within a process called winlogon. Winlogon had a lot of responsibility, which included getting people logged on to their desktops, as well as servicing the various Group Policy chores. Group Policy is now its own Windows® service. What's more, it's hardened, which means that it cannot be stopped nor can an administrator take ownership of the permissions upon Group Policy in order to then turn it off. These changes enhance the overall reliability of the Group
expandsee
Override
network
applied
few Block
Policy tothe
even
GPT?
by
Override
unit
blocking
Group
Policy
primary
This
Group
setting
child.
under ifengine.
level ofaby
Group
been onunit
the
differences
Where ais
policy
infrastructure
child check
awareness
that
and
Policy
hood. Policy
mechanism
the
opening
inheritance? No What the
just
selecting
Policy
Group
in WhatIfor
organizational
made
can Vista
inheritance.
Administrative
box,
Administrative youis the
are templates, (or .adm files), enable administrators to control registry settings using Group Policy. These settings appear under the Administrative Templates folder for both user configuration and computer configuration in the console tree of the Group Policy Object Editor, and in HTML reports produced
policy
Object
capabilities
through
administrators
unit
find
to
by
It
Override
starters.
much
Policy
force the
isGPOs
GPMC.
Block are
administrative
important
all Policy to understand that .adm files are not the actual settings that are deployed to client operating systems. The .adm file is simply a template file (implemented as text file with an .adm extension) that provides the friendly name for the setting and an explanation. This template file is used to populate the user interface. The settings that are deployed to clients are contained in the registry.pol file inside the GPO. On Windows XP and Windows Server 2003, each registry setting contains a "Supported on" tag that indicates which operating system versions support that policy setting. If a setting is specified and deployed to a client operating system that does not support that setting, the settings are ignored. These .adm files are stored in two locations by default: inside GPOs, and in the %windir%\inf folder on the
Editor
whichTemplates
conflicts
compatible,
them? isGroup
option
Let's
more
object
local
new
usually will on
find,
computer.
templates?
thePolicy
withchild
child is used
a
take
powerful
opened Group
however,
inpolicy
link
Group an
• by
• aActive is
Windows
organizational
the
Policy includes a predefined set of Administrative template files that define the registry settings that can be configured in a Group Policy object (GPO). The .adm files can be added or removed from the Group Policy Object Editor by right-clickingAdminist
that
from
Directory
more
than
opening
Policy
affect
•
Windows
it
ewhich policies are processed by the Group Policy engine. It only affects whether a specific Administrative Template policy setting is displayed in the Group Policy Object Editor. For example, if you removed all the .adm files from the GPO via
unit
containers
Templates
Administrative
rativ
child's
Template
System. inherits
Description
System
GPMC.
theenvironment.
Inetres.
was Internet
in-
Windows
the
Templatesin
the For
Wmplayer.
Registry.
to
policy and
Add/Remove
inherit
information
Conf.adm
adm
parent NetMeeting
settings
Media
Explorer
depth
dialog
previous
Wuau.
pol
about
adm file.policy
Administrative
adm
clicking
andWindows
settings.
box, no
setting,
look Player
Administrative
versions.
Templates at and
settings
Group
adm
Because
the even Update
This
What's
Add/
settings.
child's tool
you is can publish software for users, assign software to users, or assign software to computers, you can establish a workable combination of those three options to meet your software management goals. The following is a comparison of
some
Policy
Typically,
these
Publishingnot
node. of This
Template
methods.
settings.
the after you publish a software package to users in a site, domain, or OU, the users can use Add or Remove Programs to install the software. An exception is when you publish an application in a new GPO, and you must simultaneously link the GPO to the users in a site, domain, or OU. If you link a GPO and deploy the software at the same time, you must refresh the Group Policy before the application appears in Add or Remove Programs. Additionally, the application can be installed by opening an associated document if the application is deployed to do that (ifAuto -Install
ifRemove
setting
Object
is
This
Block
selected).
istool
also
policy
will
software
applied.
Templates available
the not
is not .
difference settings
affect on
The
Editor,
major
Remove
the
for user
Windows
would
available seebe XP
policies
users
Adding
between
Issues
There
Assigning
Group
assign Professional,
theto or
might
changes
already
Programs
Importantcan
on
displayed
software ..
stored
removing
Policy
update
Note
are
software Check
occur,
64-Bit
three
assigning
computers. : for
remove
Regards
that
Ajit Windows
application
inunderthe
Kentz
object
publishing
admsoon. Edition
software
regardless
to
methods
if part
itusers
software
XP
the
IICoout
files
64-
falls Ltd.
and
of
have
editor
Kingdom
Khot
does the
andnot
license 64-bit of
whether
Exchange
can
software,
of Bit
for
the result
scope you
overview
Saudi ITversions
assigning?
Edition for
Arabia of
agreements
assigning use
Server
and in ofanthe
Email the
and the :you
Technical
Eng
before
policy
software:
application setting
Ads by Google

Windows
then
management.
ajitskhot@gmail.
64-bit
Interview
option
assign assign
Server toRemove
Technical Interview Questions Active Directory and Networking- Part I

being
Download this Document for Free

later
Print

com versions
Mobile
Collections
Report Document

Info and Rating

Business
Spreadsheets

family.
technical interview questions active directory and networking

Questions
applications
Presentations & Spreadsheets
(more tags)

users on-Ajit.
Follow

Email:
chooseinstalled
of the
ajitskhot108

Dell™ Computer Networking

Dell™ Provides Computer Networking
w/ 2010 Intel® Core. Visit Now.
www.takeyourownpath.in/Dell_India

8352+ of Networking Jobs

to and users
Exp: 0 to 13 Yrs. Sal: 4L to 13L PA

Windows
Apply Now & get Multiple Interviews

demand,
TimesJobs.com/Computer_Networking

toon
khot@kentz.
Cisco Networking Classes
Get Cisco Certified Internetwork
Expert Certification From ACIT.
ccietrainingindia.com

Cisco Networking Classes

Join Cisco Networking Classes & Be
Professional From ACIT. Enroll Now!
ccsp-training.com

Server
MBA at Amity US/UK Campus

answer
because
Subsidized Fee for MBA.
For Jan 2011 Session Apply Now!

assign to
www.Amity.edu/Global

com multiple
Sign Up for an Ad-Free Scribd

reinstall
● Remove all ads.

Never see ads on Scribd again.

No Thanks

2003
Share & Embed

users, will
www.kentz.com
computers. byor be
Related Documents
Previous

it,family.
• Next

1.

84 p.

84 p.

using 2.
49 p.

49 p.

314 p.

Add or 3.
314 p.

314 p.

314 p.

52 p.

4.

233 p.

66 p.

66 p.

5.

629 p.

6 p.

351 p.

6.

48 p.

48 p.

53 p.

7.

48 p.

48 p.

1 p.

8.

1 p.

1 p.

14 p.

9.

1 p.

4 p.

1 p.

10.

1 p.

2 p.

5 p.

11.

16 p.

27 p.

6 p.

12.

1 p.

1 p.

1 p.

13.

1 p.

19 p.

4 p.

14.

1 p.

1 p.

3 p.

15.

1 p.

25 p.

187 p.

16.

141 p.

130 p.

2 p.

17.

3 p.

3 p.

9 p.

18.

20 p.

41 p.

1 p.

19.

5 p.

19 p.

More from this user

Previous

Next

1.

1 p.

29 p.

31 p.

2.

77 p.

15 p.

90 p.

Recent Readcasters

Add a Comment

Abdul Khan left a comment

Hi Friends this Documents help for IT system administrator Technical Interview Questions Active Directory and Networking
08 / 23 / 2010
Reply

ranjan_rakshit5233 left a comment

ranjan_rakshit@hotmail.com
04 / 24 / 2010
Reply

manojpanwar left a comment

thanks alot for these relevant matter

03 / 19 / 2010
Reply

goldi_dev left a comment

exchange server 2007 interview question

03 / 12 / 2010
Reply

jonsongray left a comment

Thank you very much Ajit its very usefull for me. Thank you once again !
11 / 09 / 2009
Reply

Ads by Google

Network Cabling Service

Get Data & Voice Network, LAN &
Structure Cabling Service in India!
ExaltEnterprises.com/NetworkCabling

APW President (Official)

Get Details, Specs, Quote & more
on Network Rack Accessories.
www.APWPresident.com

Network Troubleshooting
Collect data and solve problems
Track trace routes over time
www.pingplotter.com/networktroubles

Acit - Cisco Networking

Join Networking Courses - Ccna,Ccda
Ccnp, Ccip, Ccsp, Ccvp, Ccdp & Ccie
Acit.in/Cisco_Networking_Courses

PROFINET competences
Experts who wrote specification &
PROFINET controller/device Stacks
www.molex.com

Cisco CCNA Certification

Get Trained in Networking From NIIT
And Take Your Career Places. Apply
NIIT.com/Networking/Cisco

Dell™ Computer Networking

Dell™ Provides Computer Networking
w/ 2010 Intel® Core. Visit Now.
www.takeyourownpath.in/Dell_India

8352+ of Networking Jobs

Exp: 0 to 13 Yrs. Sal: 4L to 13L PA
Apply Now & get Multiple Interviews
TimesJobs.com/Computer_Networking

Upload a Document

● About
● Press
● Blog
● Partners
● Branded Reader
● Web Stuff
● Scribd Store

● Support
● FAQ
● Developers / API
● Jobs
● Terms - General
● Copyright
● Privacy

● Follow Us!
● scribd.com/scribd
● twitter.com/scribd
● facebook.com/scribd

http://www.scribd.com/doc/12807395/Technical-Interview-Questions-Active-Directory-and-Networking-Part-I (3 of 3)10/11/2010 12:11:48 PM