Active Directory Question and Answer
1. What is Active Directory ?
Active Directory is
a database which store a data base like your user information, computer
information and also other network object info. It has capabilities to manage
and administer the complete Network which connect with AD.
2. What is domain ?
A domain is a named
collection of hosts and subdomains, registered with a unique name by the
InterNIC.
3. What is domain controller ?
A Domain controller
(DC) is a server that responds to security authentication requests (logging in,
checking permissions, etc.) within the Windows Server domain. A domain is a
concept introduced in Windows NT whereby a user may be granted access to a
number of computer resources with the use of a single username and password
combination
4. What is LDAP ?
Lightweight
Directory Access Protocol LDAP is the industry standard directory access
protocol, making Active Directory widely accessible to management and query
applications. Active Directory supports LDAPv3 and LDAPv2.
5. What is KCC ?
KCC ( knowledge consistency
checker ) is used to generate replication topology for inter site replication
and for intra site replication with in a site replication traffic is done via
remote procedure calls over ip, while between site it is done through either
RPC or SMTP.
6. Where is the AD database held? What other folders
are related to AD?
The AD data base is
store in c:\windows\ntds\NTDS.DIT.
7. What is the use of SYSVOL folder?
The SYSVOL folder
stores the server's copy of the domain's public files. The contents such as
group policy, users etc of the SYSVOL folder are replicated to all domain
controllers in the domain.
8.What is LSDOU ?
It’s group policy
inheritance model, where the policies are applied to Local machines, Sites,
Domains and Organizational Units
9. What is lost & found folder in ADS ?
It’s the folder
where you can find the objects missed due to conflict. Ex: you created a user
in OU which is deleted in other DC & when replication happed ADS didn’t
find the OU then it will put that in Lost & Found Folder.
10.
What is Garbage collection ?
Garbage collection
is the process of the online defragmentation of active directory. It happens
every 12 Hours
11. What System State data contains ?
1.
Contains Start-up files,
2.
Registry
3.
Com + Registration Database
4.
Memory Page file
5.
System files
6.
AD information
7.
Cluster Service information
8.
SYSVOL Folder
12. What is the use of LDAP ?
LDAP is designed to
allow for the transfer of information between domain controllers and to allow
users to query information about objects within the directory.
13. What is the purpose of replication in AD ?
The purpose of
replication is to distribute the data stored within the directory throughout
the organization for increased availability, performance, and data protection.
Systems administrators can tune replication to occur based on their physical
network infrastructure and other constraints.
14.
What is global catalog ?
The Global Catalog
is a database that contains all of the information pertaining to objects within
all domains in the Active Directory environment.
15. What is DNS Zones ?
A DNS zone is a
portion of the DNS namespace over which a specific DNS server has authority.
16. What is a site ?
one or more
well-connected highly reliable and fast TCP/IP subnets. A site allows
administrator to configure active directory access and replication topology to
take advantage of the physical network.
17. What is Active Directory Schema ?
The Active
Directory schema contains formal definitions of every object class that can be
created in an Active Directory forest. it also contains formal definitions of
every attribute that can exist in an Active Directory Object.
18. What are the benefits of AD integrated DNS ?
1.
A few advantages that Active
Directory-integrated zone implementations have over standard primary zone
implementation are :
2.
Active Directory replication is
faster, which means that the time needed to transfer zone data between zones is
furless.
3.
The Active Directory replication
topology is used for Active Directory replication, and for Active Directory-
integrated zone replication. There is no longer a need for DNS replication when
DNS and Active Directory are integrated.
19. What is File Replication Service (FRS)
File Replication Service is a
Microsoft service which replicates folders stored in sysvol shared folders on
domain controllers and distributed file system shared folders. This service is
a part of Microsoft's Active Directory Service.
20. Explain different zone involved in DNS Server?
DNS has two
different Zones Forward Lookup Zone and Reverse Lookup Zone. There two Zones
are categorized into three zones and are as follows:
Primary zone: It
contains the read and writable copy of the DNS Database.
Secondary Zone: It
acts as a backup for the primary zone and contains the read only copy of the
DNS database.
Stub zone: It is
also read-only like a secondary zone; stub zone contains only SOA, copies of NS
and A records for all name servers authoritative for the zone
21. What is the difference between local, global and
universal groups ?
Domain local groups
assign access permissions to global domain groups for local domain resources.
Global groups provide access to resources in other trusted domains. Universal
groups grant access to resources in all trusted domains.
22. What is RPC protocol ?
A protocol RPC
(Remote Procedure Call) used to allow communications between system process on
remote computers. The RPC protocol is used by the Active Directory for
intra-site replication.
23. What is Resource Record ?
Resource Record
(RR) is a DNS entry that specifies the availability of specific DNS
services. For Example, an MX record specifies the IP address of a mail server,
and Host (A) records specify the IP addresses of workstations on the network.
24. What is a Tree ?
A set of Active
Directory domains that share a common namespace and are connected by a
transitive two-way trust. Resources can be shared between the domains in an
Active Directory.
25. What is REPADMIN ?
This command-line
tool assists administrators in diagnosing replication problems between windows
domain controllers. Administrators can use Repadmin to view the replication
topology as seen from the perspective of each domain controller.