Sa questions Flashcards
- If you are setting up a new Microsoft 2008 domain what servers and server roles would you need?
Active Directory, File Server, Print Server, DHCP,DNS, Extra if they say IIS, SharePoint, SQL, Microsoft Exchange, and so on.
- What are the three types of log files in the event viewer?
Application logs, security logs, system logs.
They contain error logs, warnings, and information logs.
- You come into work one morning and your server has crashed and is on the blue screen of death. What’s the first few things you would do
Write down the 0xXXX error code on the blue screen and Google it and check the Microsoft website.
Check the event logs for the error log at the time of the crash and investigate the logs to see what the server was doing prior to the crash.
If kernel crash dump is turned on. Locate the temp folder that has the crash dump and analyze it to see what caused the crash.
What Microsoft tool can you use to look for open ports on a server?
Using the net stat command.
Bonus if they know "Net stat -an | find / I listening" You can also Telnet to a port.
How would you create and delete a hidden administrative share on a file server and not use command prompt or Explorer?
Admin tools > computer management > sharedfolders > right click shares and create new file share > type the path of the folder to share, type the name with a $ sign in the end.
NAME < Caution-http://5.NAME > $
Make the share accessible to administrators only, other users have no access and click finish
What would become instances where it would be a good idea to utilize SAN technology?
Storage area network, SAN’s are storage devices that would attach to a server and appear as it was attached locally to the operating system.
SAN’s are best utilized in instances of clusters and high availability technology that need to utilize a single shared logical drive, or servers that are running databases or exchange with heavy disk and page file utilization
What are some Active Directory MMC snap in tools? What do they do?
Active directory users and computers, Active directory sites and services, Terminal Services manager, DNS, DHCP, and so on. MCC snap ins are the primary admin consoles built into active directory for management
What is an OU in active directory? What types of objects can be found in an OU?
Organizational unit is primary a container in AD.. Security objects such as user accounts, computers, security groups, and distribution groups
- If you have 2 DC’s and one crashes and the only back up you have is from 3 months ago. Why it is a bad idea to restore from the back up and what would you do?
It can cause USN Rollback and massive data loss in AD.
A new DC should replace the old DC.
Bonus points if they mention running a met a data cleanup, DC Promo to demote the old dc, and DCPROMO the new replacement DC.
What are Tombstone records?
- A team of JR system admins need full control of an OU to modify and create objects, and only in that OU. How would you give them admin rights in that OU only
Open Active directory users and computers, right click on the specific OU, and use the delegate control wizard and grant admin rights to the group of JR admins.
How do you insure that a particular computer gets the same IP every time it connects to the network
Add a mac address reservation to the vlan scope that the workstation is in.
What is a DHCP scope? What are some of the options you can set in DHCP?
Setting=WINS ,DNS, NTP, Netbios, Bootp, Gateway, Subnet Mask, TFTP
Name four common DNS record types and what they do.
A = Ip address of the host. CNAME = Alias for sub domains to an A record. MX = Mail Exchange. PTR = Point to record to a canonical name in the in-addr.arpa zone NS = Name Server SRV= Service locator SOA=start of authority AAAA=IPV6 address record
If all users are unable to access a particular website from your domain, but the website is accessible from everywhere else, and you have tracked the issue down to DNS. What are some troubleshooting steps you should take
14-16.Check to see if you can get to the site or resolve the site from the DNS server.
14-16.Check cached information on the dns server to see what records are available for the website. 14-16Clear out the dns cache if needed 14-16.Do an Nslookup on the website and see if you get results. Do an NSlookup from another public dns server and compare the results. You need to set up a forwarder to the website if you can’t route to it for some reason.
Your domain has a member print server that has 50 printers configured on it. Suddenly users are reporting that no one is able to print. The server is running okay. What troubleshooting steps would you take
14-16.Check to see if you can get to the site or resolve the site from the DNS server.
14-16.Check cached information on the dns server to see what records are available for the website. 14-16Clear out the dns cache if needed 14-16.Do an Nslookup on the website and see if you get results. Do an NSlookup from another public dns server and compare the results. You need to set up a forwarder to the website if you can’t route to it for some reason.
What are some windows services that can be clustered? What are the advantages of clustering services
14-16.Check to see if you can get to the site or resolve the site from the DNS server.
14-16.Check cached information on the dns server to see what records are available for the website. 14-16Clear out the dns cache if needed 14-16.Do an Nslookup on the website and see if you get results. Do an NSlookup from another public dns server and compare the results. You need to set up a forwarder to the website if you can’t route to it for some reason.
What MMC would you install to manage group policy configuration
Group Policy management console.
In what order are group policies applied
Local, Site, Domain, Ou
What command scan you use to check what group policy is being applied to a user and computer on a server or desktop? What command do you use to update group policy?
Gpresult.exe and Rsop.msc
Gpupdate to update group policy.
Bonus if they know what “Gpupdate /force/sync” does.
clears out all group policy with force switch, and sync will delete all GPO’s on work station, reboot the work station, and apply a fresh copy of all policies
How would you prevent an OU from receiving any group policies that are applied at the domain level?
Block inheritance on the OU
What is SCCM and what is it used for
SCCM is the System Center Configuration Manager server, and it is used in conjunction with SCCM clients installed on workstations to install windows updates, software patches, and workstation images over the network
What is the enterprise root certificate authority?
An enterprise root CA is the certificate server at the root of the hierarchy for a Windows domain. It is the most trusted CA in the enterprise and must have access to Active Directory service
What is a CRLin relation to an enterprise certificate authority
The CRL is the certificate revocation list. It is the container that holds all revoked certificates.
Applications that use certificates can check against the CRL to see what certificate are currently active or revoked
What is the send as permission and how would you grant a user send as rights
The Send as permission will grand a user send as right to another users exchange mailbox so the email looks like it’s coming from the other user.
You can grant rights to the users email account from the ADUC console
What is the Exchange Management Console and what are some of its features
The Exchange Management Console is the front-end administrative tool for Exchange, where you can manage exchange servers, mail queues, hub transport, mailboxes and distribution lists
How do you set the mailbox storage limit on an individual mailbox? What are the different configurable limits you can set?
Issue warning (KB)
Prohibit send at (KB) Prohibit
Send and receive at (KB)