Systems Administrator Security Questions
1. What Is Active Directory? ANSW:Active Directory provides a centralised control for network
administration and security. Server computers configured with Active Directory are known as domain
controllers. Active Directory stores all information and settings for a deployment in a central database,
and allows administrators to assign policies and deploy and update software.
2. What Is A Domain? ANSW:A domain is defined as a logical group of network objects (computers,
users, devices) that share the same Active Directory database. A tree can have multiple domains.
Networking Interview
3. What Is Domain Controller? ANSW:A domain controller (DC) or network domain controller is a
Windows-based computer system that is used for storing user account data in a central database. It is
the centrepiece of the Windows Active Directory service that authenticates users, stores user account
information and enforces security policy for a Windows domain.
A domain controller allows system administrators to grant or deny users access to system resources,
such as printers, documents, folders, network locations, etc., via a single username and password.
4. What Is Group Policy? ANSW:Group Policy allows you to implement specific configurations for users
and computers. Group Policy settings are contained in Group Policy objects (GPOs), which are linked to
the following Active Directory service containers: sites, domains, or organizational units (OUs).
Networking Tutorial
5. What Are Gpos (group Policy Objects)? ANSW:A Group Policy Object (GPO) is a collection of settings
that control the working environment of user accounts and computer accounts. GPOs define registry-
based policies, security options, software installation and maintenance options, script options, and
folder redirection options.
There are two kinds of Group Policy objects:
Local Group Policy objects are stored on individual computers.
,Nonlocal Group Policy objects, which are stored on a domain controller, are available only in an Active
Directory environment.
Network Security Interview
6. What Is Ldap? ANSW:A GLDAP (Light-Weight Directory Access Protocol) determines how an object in
an Active Directory should be named. LDAP is the industry standard directory access protocol, making
Active Directory widely accessible to management and query applications. Active Directory supports
LDAPv2 and LDAPv3.
7. Where Is The Ad Database Stored? ANSW:The AD database is stored in C:WindowsNTDSNTDS.DIT.
Network Security Tutorial Active Directory Interview
8. What Is The Sysvol Folder? ANSW:The SYSVOL folder stores the server copy of the domain's public
files that must be shared for common access and replication throughout a domain.
All AD databases are stored in a SYSVOL folder and it's only created in an NTFS partition. The Active
Directory Database is stored in the %SYSTEM ROOT%NDTS folder.
9. What Is Garbage Collection? ANSW:Garbage collection is the online defragmentation of the Active
Directory which happens every 12 hours.
Windows Administration Interview
10. When Do We Use Wds? ANSW:Windows Deployment Services is a server role used to deploy
Windows operating systems remotely. WDS is mainly used for network-based OS installations to set up
new computers.
11. What Are Main Email Servers And Which Are Their Ports? ANSW:Email servers can be of two types:
Incoming Mail Server (POP3, IMAP, HTTP): The incoming mail server is the server associated with an
email address account. There cannot be more than one incoming mail server for an email account. In
order to download your emails, you must have the correct settings configured in your email client
program.
, Outgoing Mail Server (SMTP): Most outgoing mail servers use SMTP (Simple Mail Transfer Protocol) for
sending emails. The outgoing mail server can belong to your ISP or to the server where you setup your
email account.
The main email ports are:
POP3 - port 110
IMAP - port 143
SMTP - port 25
HTTP - port 80
Secure SMTP (SSMTP) - port 465
Secure IMAP (IMAP4-SSL) - port 585
IMAP4 over SSL (IMAPS) - port 993
Secure POP3 (SSL-POP) - port 995
Red Hat Linux System Administration Interview
12. What Do Forests, Trees, And Domains Mean? ANSW:Forests, trees, and domains are the logical
divisions in an Active Directory network.
A domain is defined as a logical group of network objects (computers, users, devices) that share the
same active directory database.
A tree is a collection of one or more domains and domain trees in a contiguous namespace linked in a
transitive trust hierarchy.
At the top of the structure is the forest. A forest is a collection of trees that share a common global
catalog, directory schema, logical structure, and directory configuration. The forest represents the
security boundary within which users, computers, groups, and other objects are accessible.
1. What Is Active Directory? ANSW:Active Directory provides a centralised control for network
administration and security. Server computers configured with Active Directory are known as domain
controllers. Active Directory stores all information and settings for a deployment in a central database,
and allows administrators to assign policies and deploy and update software.
2. What Is A Domain? ANSW:A domain is defined as a logical group of network objects (computers,
users, devices) that share the same Active Directory database. A tree can have multiple domains.
Networking Interview
3. What Is Domain Controller? ANSW:A domain controller (DC) or network domain controller is a
Windows-based computer system that is used for storing user account data in a central database. It is
the centrepiece of the Windows Active Directory service that authenticates users, stores user account
information and enforces security policy for a Windows domain.
A domain controller allows system administrators to grant or deny users access to system resources,
such as printers, documents, folders, network locations, etc., via a single username and password.
4. What Is Group Policy? ANSW:Group Policy allows you to implement specific configurations for users
and computers. Group Policy settings are contained in Group Policy objects (GPOs), which are linked to
the following Active Directory service containers: sites, domains, or organizational units (OUs).
Networking Tutorial
5. What Are Gpos (group Policy Objects)? ANSW:A Group Policy Object (GPO) is a collection of settings
that control the working environment of user accounts and computer accounts. GPOs define registry-
based policies, security options, software installation and maintenance options, script options, and
folder redirection options.
There are two kinds of Group Policy objects:
Local Group Policy objects are stored on individual computers.
,Nonlocal Group Policy objects, which are stored on a domain controller, are available only in an Active
Directory environment.
Network Security Interview
6. What Is Ldap? ANSW:A GLDAP (Light-Weight Directory Access Protocol) determines how an object in
an Active Directory should be named. LDAP is the industry standard directory access protocol, making
Active Directory widely accessible to management and query applications. Active Directory supports
LDAPv2 and LDAPv3.
7. Where Is The Ad Database Stored? ANSW:The AD database is stored in C:WindowsNTDSNTDS.DIT.
Network Security Tutorial Active Directory Interview
8. What Is The Sysvol Folder? ANSW:The SYSVOL folder stores the server copy of the domain's public
files that must be shared for common access and replication throughout a domain.
All AD databases are stored in a SYSVOL folder and it's only created in an NTFS partition. The Active
Directory Database is stored in the %SYSTEM ROOT%NDTS folder.
9. What Is Garbage Collection? ANSW:Garbage collection is the online defragmentation of the Active
Directory which happens every 12 hours.
Windows Administration Interview
10. When Do We Use Wds? ANSW:Windows Deployment Services is a server role used to deploy
Windows operating systems remotely. WDS is mainly used for network-based OS installations to set up
new computers.
11. What Are Main Email Servers And Which Are Their Ports? ANSW:Email servers can be of two types:
Incoming Mail Server (POP3, IMAP, HTTP): The incoming mail server is the server associated with an
email address account. There cannot be more than one incoming mail server for an email account. In
order to download your emails, you must have the correct settings configured in your email client
program.
, Outgoing Mail Server (SMTP): Most outgoing mail servers use SMTP (Simple Mail Transfer Protocol) for
sending emails. The outgoing mail server can belong to your ISP or to the server where you setup your
email account.
The main email ports are:
POP3 - port 110
IMAP - port 143
SMTP - port 25
HTTP - port 80
Secure SMTP (SSMTP) - port 465
Secure IMAP (IMAP4-SSL) - port 585
IMAP4 over SSL (IMAPS) - port 993
Secure POP3 (SSL-POP) - port 995
Red Hat Linux System Administration Interview
12. What Do Forests, Trees, And Domains Mean? ANSW:Forests, trees, and domains are the logical
divisions in an Active Directory network.
A domain is defined as a logical group of network objects (computers, users, devices) that share the
same active directory database.
A tree is a collection of one or more domains and domain trees in a contiguous namespace linked in a
transitive trust hierarchy.
At the top of the structure is the forest. A forest is a collection of trees that share a common global
catalog, directory schema, logical structure, and directory configuration. The forest represents the
security boundary within which users, computers, groups, and other objects are accessible.
