Server Operating Systems and Server Roles Flashcards

Question

stratum 1 (NTP)

Answer 1

NTP server connected to stratum 0 device

Answer 2

NTP server gets time over network from stratum 1 host

Answer 3

- centralized network database containing objects (users/groups/computers/network service locators/shared folders/shared printers/software licenses) - Microsoft AD DS - OpenLDAP - Oracle Directory Services - IBM Tivoli Directory Server - based on the same LDAP standards

Answer 4

- listens on TCP 389 (plaintext) | - listens on TCP 636 (encrypted)

Answer 5

- Microsoft active directory - LDAP compliant - replicated network database - synchronized between DCs - group policy - Windows server role - installed via Server Manager or PowerShell cmdlets

Answer 6

- domain controller - server configured to hold a replica of the AD database - C:\Windows\Ntds\Ntds.dit - discovered by clients via DNS queries - creation of DC creates DNS service location records

Answer 7

- use HTTP/HTTPS to present content to web browser - Microsoft Internet Information Services (IIS) - Apache - NGINX

Answer 8

- TCP 80 (HTTP) | - TCP 443 (HTTPS)

Answer 9

- serves data with a specific business purpose - often combination of web/database servers - Microsoft SQL Server - MySQL - Oracle Database

Answer 10

- data stored on equipment owned/managed by the organization (legal reasons) - Windows servers use SMB to make shared folders available over the network - UNIX/Linux systems use their own network file system (NFS) but can use SMB via Samba

Answer 11

- manages printers on a network | - spool print jobs from clients using server disk space

Answer 12

- remove any printing dependencies i.e. OS versions/print drivers/printing devices/etc - can be used with mobile devices

Answer 13

- run as services (daemons) - enable connections on specific ports - need to support mobile device connections

Answer 14

- mobile device management - mobile device partitioning solutions for personal/work data - restrict file attachments from corporate messages from being stored on personal cloud storage locations - can run on-premise or in cloud

Answer 15

- simple mail transfer protocol - port 25 - used to transfer email between SMTP hosts

Answer 16

- post-office protocol - port 110 - enables clients to download email messages from POP server

Answer 17

- internet message access protocol - port 143 - enables clients to use different email clients running on different devices to access email - email synchronized between devices

Answer 18

servers with more than 1 interface

Answer 19

- routing and remote access service - Windows server - configure IPv4/IPv6 routing - NAT - VPN

Answer 20

- IP routing via ip command - NAT configuration via iptables command - OpenVPN

Answer 21

- VMWare vSphere Hypervisor - Microsoft Hyper-V - Citrix Hypervisor - Oracle VM VirtualBox

Answer 22

hypervisor

Answer 23

- hypervisor has direct access to physical hardware - controls hardware resource access between VMs - bare-metal hypervisor - don't rely on another OS (increased security) - Microsoft Hyper-V - VMware ESXi

Answer 24

- application that runs on top of existing OS - doesn't have direct access to hardware - VMware Workstation Pro - Oracle VM VirtualBox

Answer 25

type of IT workloads running in each VM is most important consideration

Answer 26

- similar to planning physical hardware for new server - amount of startup/minimum/maximum/dynamic memory - number of vCPUs and compatibility settings - storage - vNICs/connected virtual switches - virtual MAC address - network bandwidth throttling - VLAN tag settings - display settings for number of monitors/accelerated graphics - integration tools with host hypervisor for time synchronization/backup services/etc - snapshot/checkpoint settings

Answer 27

connects to physical network

Answer 28

uses hypervisor host IP address to access the network

Answer 29

enable communication only between VMs

Answer 30

enables communications between VMs and hypervisor host

Answer 31

- hardware compatibility lists (HCLs) - provide details about which specific hardware is supported by a given server OS - also have to consider specific drivers/applications - server OS minimum requirements

Answer 32

- open source (Ubuntu Linux) - per server models - per instance models - per core models - volume licensing (Microsoft Key Management Service) - subscription based licensing (AWS/O365/cloud) - per user concurrent licensing - node-locked (tied to specific device) - digital rights management (signature-based used for gaming/use of media files)

Answer 33

- most modern type 1 hypervisors require 64-bit architecture/virtualization support - not an issue with server class hardware - firmware updates (BIOS/UEFI) may be required before installation - may have to change boot order is installing from DVD/USB

Answer 34

- Microsoft Windows Server - Microsoft Windows Server Embedded (purpose specific hardware appliances) - UNIX BSD/AIX/Solaris - Linux Red Hat/Ubuntu/SUSE

Answer 35

- apply already created image to new physical server or VM - capture server OS image by booting from alternative media and using DISM - multiple images can be stored via Windows Imaging Format (WIM) - specify image with index DISM parameter

Answer 36

- Ghost Solution Suite - Microsoft System Center Configuration Manager - Microsoft Deployment Toolkit - Microsoft DISM.exe command line tool

Answer 37

- option to create linked clone (uses minimal disk space/linked to original VM) - linked clone changes made after the clone is created are independent - option to create fully independent clone (uses more disk space) - work well when multiple VMs with same standard initial OS configuration are needed - physical-to-virtual (P2V) cloning uses physical server as the source/results in a VM with same settings

Answer 38

- can be used to partially/fully automate VM deployment | - specify hardware details/OS options/network settings/etc

Answer 39

- create answer file to automate some/all of the OS installation - unattend.xml file created via Windows System Image Manager (SIM) - name answer file tounattend.xml and place on root of removable media to be automatically read

Answer 40

- boot over network from a PXE - enables OS installation from image/installation files - can apply updates to source installation files before install via slipstreaming - must be supported by physical/VM BIOS/UEFI settings and NIC - must have PXE boot server listening on the network - relies on DHCP to assign IP settings to PXE clients - uses trivial file transfer protocol (TFTP) to download a small boot image OS used for installation/imaging - Microsoft Remote Installation Services (RIS) - Windows Deployment Services (WDS) - don't have to carry around storage devices containing installation media - demanding on network bandwidth

Answer 41

- disk layout (partioning/file system formats/swap file/partition) - server name - IP configuration settings - administrative user credentials - additional drivers for nonstandard hardware - product key or subscription details to activate installation/receive updates - additional software that should be installed - all of these can be included in Windows unattend.xml/autounattend.xml files

Answer 42

- GUI (MMC) - command line - physical serial ports - remote server administration tools (RSAT)

Answer 43

- switches connect servers to a single keyboard/video/mouse | - KVM solution has to match connectors for devices

Answer 44

- provides hardware-level remote access to a host - doesn't rely on OS software running - more secure than software-based tools

Answer 45

- web-based enterprise management | - standardized way of managing/monitoring servers/devices from different vendors

Answer 46

- lights out management - remote management solution supported by most vendors - monitoring of server components i.e. CPU use/temperature/OS health/etc

Answer 47

- enables remote server access even over internet - can enable hardware level remote access if supported by server hardware - not dependent on underlying OS - TCP/IP settings must e configured at hardware level to enable remote access across WANs

Answer 48

hardware appliances with centralized management/auditing tools

Answer 49

- intelligent platform management interface - remote server management solution - commonly used with various vendor blade enclosures - remote power on/off - disk access - server monitoring/inventory functionality

Answer 50

- baseboard management controller | - interface between server management tools and physical hardware being managed

Answer 51

- integrated lights out - secure remote management capabilities - server monitoring/alert capabilities

Answer 52

- integrated Dell remote access - Dell servers - connect to servers at hardware level - web browser interface - remote power on/off - access to server storage media

Answer 53

relies on software running within OS

Answer 54

- needs server-side listener for clients to be able to connect - standard listening port = TCP 22 - typically used for command line management - can use public key authentication

Answer 55

can be enabled within SSH to redirect graphical UNIX/Linux applications to show on client computer

Answer 56

- listens on UDP/TCP 3389 - newer versions of Windows server supported network level authentication (NLA) for RDP sessions - get command prompt when RDP into server with core OS installed

Answer 57

- entering username/password uses client resources (not server) - RDP sessions are encrypted with SSL certificate

Answer 58

- depends on Windows remote management (WinRM) service to be configured - desired state configuration (DSC) enables configuring/managing Windows/Linux hosts centrally via a declarative syntax

Answer 59

TCP 5985/5986

Answer 60

- execute commands remotely on Windows host | - need to ensure WinRM has been enabled

Answer 61

- placing commands in 1 or more script files - invoking the script file - have script invoked automatically during machine bootstrap process

Answer 62

- each server needs documentation and change log - ideally automated/inventoried in a database - vendor manuals - how solutions have been implemented - keep documentation secure/encrypted

Answer 63

- complete process of establishing new server/resource all the way to decommission/upgrade

Answer 64

- modern systems for inventory are automated - physical equipment needs to be labeled or inscribed - RFID tags easier in large environments

Answer 65

- make/model/serial number - physical server owned/leased - motherboard/device serial numbers - physical/digital asset tag - RAM - storage - network interfaces - peripherals

Answer 66

- inventory audits - asset tracking - determine asset use - asset repair/warranty - asset recall - asset security

Answer 67

- specific version of OS/drivers/applications in use - software license compliance - should be automated on scheduled basis

Answer 68

- service level agreement - contract outlining expected service from a provider to consumer - uptime - response time - providers may offer credits when SLA isn't met

Answer 69

- network infrastructure diagrams - workflow/dataflow/application architecture diagrams - baseline documentation - recovery documentation

Answer 70

- automation - firmware/software updates timely deployed - reports to confirm patches deployed successfully

Answer 71

- critical security updates - functionality updates - centralized update management - Windows Server Update Services (WSUS) - Microsoft System Center Updates Publisher (SCUP) - vendor specific patch management solutions - test updates in controlled environment before deploying them into production

Answer 72

- keep servers clear of dust - keep obstructions away from intake fans - keep servers cool - plug servers in UPS to ensure graceful shutdown

Answer 73

- LED indicators on equipment indicate potential issues | - Error/beep codes

Answer 74

allow for internet name resolution

Answer 75

- issue PKI certificate for web server - install certificate on web server - clients don't need PKI certificate for secured web server traffic