Active Directory Exam with Complete
Solutions (Verified)
A virtual domain controller has been powered on and begins to boot. When it does, the
hypervisor host detects that the value of the Vm-Generation-ID in the virtual machine's
configuration and the value of the VM-Generation-ID in the virtual domain controller's
computer object in Active Directory don't match.
What happens next? - ANSWER-The hypervisor pushes the latest RID pool and USN to
the virtual domain controller.
Click on all of the organizational units in the domain represented in the image below -
ANSWER-domain controllers
sales
Click on the container in Active Directory where group managed service accounts are
created by default. - ANSWER-Managed Service Accounts.
Click on the item in the imagine below that defines a security and replication boundary -
ANSWER-testoutdemo.com
Consider the Domain shown in the example below - ANSWER-Mary Bones
Mary Hurd
Drag the Active Directory terms on the left to their corresponding definition on the right. -
ANSWER-Logical organization of resources - Organizational Unit
Collection of network resources - Domain
Collection of related domain trees - Forest
Resource in the directory - Object
Group of related domains - Tree
Listed on the left are various operation master roles. For each tool, identify the roles that
you can transfer using that tool by dragging the role from the left to the boxes below the
tool. - ANSWER-Active Directory Users and Computers:
RID master, PDC emulator, Infrastructure master
Active Directory Domains and Trusts:
Domain naming master
Match the Active Directory term on the right with its corresponding definition on the left.
- ANSWER-Domain Controller:
A server that holds a copy of the Active Directory database that can be written to.
Site:
, Represents a group of networks that are connected with high-speed links.
Subnet:
Represents a physical network segment.
Forest Root Domain:
The first domain created in an Active Directory forest.
Tree Root Domain:
The highest level domain in a tree.
Match the Active Directory term on the right with its corresponding definition on the left.
not all of the definitions on the left have an associated term on the right. - ANSWER-
Data Table: Contains all the information in the Active Directory data store.
Link table: Contains data that represents linked attributes.
SD Table: Contains data that represents inherited security descriptors for each object.
Schema: Identifies the object classes that exist in the tree and the attributes of each
class.
To prevent Update Sequence Number (USN) rollback issues with virtual domain
controllers, each domain controller (virtual or physical) is assigned a unique identifier
called the VM-Generation-ID.
For virtual domain controllers, where is this identifier stored? (Choose two.) - ANSWER-
In a file within the virtual machine configuration.
As an attribute of each domain controller computer object in Active Director
What is the key difference between a managed service account and a group managed
service account. - ANSWER-A managed service account can be used on only one
computer in a domain.
Which built-in local user account is a member of the local Administrators group? -
ANSWER-Local System
You and Sammy are creating an organizational unit structure and user accounts for the
education.westsim.com domain. You created ACTG, PROD, and SALES organizational
units on Server 1.
Fifteen minutes later, you change the name of the ACTG organizational unit to ACCT.
Before replication finishes, Sammy uses Server 2 to add several user accounts to the
ACTG organizational unit. You check the ACCT OU to find the user accounts are not
there.
Solutions (Verified)
A virtual domain controller has been powered on and begins to boot. When it does, the
hypervisor host detects that the value of the Vm-Generation-ID in the virtual machine's
configuration and the value of the VM-Generation-ID in the virtual domain controller's
computer object in Active Directory don't match.
What happens next? - ANSWER-The hypervisor pushes the latest RID pool and USN to
the virtual domain controller.
Click on all of the organizational units in the domain represented in the image below -
ANSWER-domain controllers
sales
Click on the container in Active Directory where group managed service accounts are
created by default. - ANSWER-Managed Service Accounts.
Click on the item in the imagine below that defines a security and replication boundary -
ANSWER-testoutdemo.com
Consider the Domain shown in the example below - ANSWER-Mary Bones
Mary Hurd
Drag the Active Directory terms on the left to their corresponding definition on the right. -
ANSWER-Logical organization of resources - Organizational Unit
Collection of network resources - Domain
Collection of related domain trees - Forest
Resource in the directory - Object
Group of related domains - Tree
Listed on the left are various operation master roles. For each tool, identify the roles that
you can transfer using that tool by dragging the role from the left to the boxes below the
tool. - ANSWER-Active Directory Users and Computers:
RID master, PDC emulator, Infrastructure master
Active Directory Domains and Trusts:
Domain naming master
Match the Active Directory term on the right with its corresponding definition on the left.
- ANSWER-Domain Controller:
A server that holds a copy of the Active Directory database that can be written to.
Site:
, Represents a group of networks that are connected with high-speed links.
Subnet:
Represents a physical network segment.
Forest Root Domain:
The first domain created in an Active Directory forest.
Tree Root Domain:
The highest level domain in a tree.
Match the Active Directory term on the right with its corresponding definition on the left.
not all of the definitions on the left have an associated term on the right. - ANSWER-
Data Table: Contains all the information in the Active Directory data store.
Link table: Contains data that represents linked attributes.
SD Table: Contains data that represents inherited security descriptors for each object.
Schema: Identifies the object classes that exist in the tree and the attributes of each
class.
To prevent Update Sequence Number (USN) rollback issues with virtual domain
controllers, each domain controller (virtual or physical) is assigned a unique identifier
called the VM-Generation-ID.
For virtual domain controllers, where is this identifier stored? (Choose two.) - ANSWER-
In a file within the virtual machine configuration.
As an attribute of each domain controller computer object in Active Director
What is the key difference between a managed service account and a group managed
service account. - ANSWER-A managed service account can be used on only one
computer in a domain.
Which built-in local user account is a member of the local Administrators group? -
ANSWER-Local System
You and Sammy are creating an organizational unit structure and user accounts for the
education.westsim.com domain. You created ACTG, PROD, and SALES organizational
units on Server 1.
Fifteen minutes later, you change the name of the ACTG organizational unit to ACCT.
Before replication finishes, Sammy uses Server 2 to add several user accounts to the
ACTG organizational unit. You check the ACCT OU to find the user accounts are not
there.
