1. You are the administrator of a Windows 2000 network. Your Windows 2000 domain controller has been in operation for one year. During that year, you have deleted numerous objects. However, the NTDS.DIT file is the same size it was before you deleted any objects. You want to reduce the size of the NTDS.DIT file.
What should you do? (Choose two)
A. Delete all the log files from the NTDS folder and restart the server.
B. Use the Ntdsutil utility to perform an authoritive restore.
C. Run the Esentutl utility by using the /d switch.
D. Restart the server in Directory Services restore mode.
E. Use the Ntdsutil utility to compress the database to another drive.
Ans: D, E
2. You are the administrator for Trey Research and A. Datum Corporation. You manage a multi-domain Windows 2000 network of 5,000 users for the two companies.
The network is configured as shown in an exhibit:
The two companies have a total of six departments. Each department is an OU in AD.
Each Domain and OU has specific Group Policy settings that must be applied to all of its members. Your company is reorganizing all six departments. Some, but not all, of the users in each OU have moved. Many users have changed departments, and some have changed domains.
You want to accomplish the following goals in the least possible amount of time:
- Place the users account in the appropriate domains.
- Apply the existing policies for each domain or OU to the moved accounts.
- Do not disrupt user access to shared resources.
What should you do?
A. For all users, create new user accounts in the appropriate OUs. Assign permissions to the accounts to apply the Group Policy settings and then delete the old accounts.
B. For the users moving between domains create new user accounts in the appropriate OUs. Assign permissions to the accounts to apply the Group Policy settings and then delete the old accounts. For the users moving between Ous in the same domain, select the accounts. Then choose MOVE from the Action menu, targeting the new OU.
C. For the users moving between domains, use the Movetree utility, specifying the source and target domains and OUs. For the users moving between OUs in the same domain, select the accounts. Then choose MOVE from the ACTION menu, targeting the new OU.
D. For the users moving between domains, create new user accounts in the appropriate OUs. Assign permissions to the account to apply the Group Policy settings and then delete the old accounts. For the users moving between OUs in the same domain, select the accounts. Then choose Copy from the Action menu, entering the appropriate account information for the new users accounts. Then delete the old accounts.
Ans: C
3. You are the LAN admin for Arbor Shoes. You hire Sophie to be a LAN administrator for the Dublin office. Arbor Shoes has one domain named arborshoes.com. Each office has its own OU. Sophie needs to be able to create child OUs under only ou=Dublin, dc=arborshoes, dc=com and verify the existence of the created OUs.
Which permissions should you assign to Sophie on the Dublin OU? (Choose three)
A. Full Control
B. List Contents
C. Create OU objects
D. Create All Child Objects
E. Write
F. Read
Ans: B, C, F
4.You add three new SCSI hard disk drives to your company's domain controller. The SCSI disks are configured in a hardware RAID-5 array. You have two other physical disks in this domain controller. You want to optimize the speed of the Active Directory database.
What can you do? (Choose two)
A. Move the NTDS.DIT file to the RAID-5 array.
B. Move the log files to a separate physical disk from the OS.
C. Move the log files and the NTDS.DIT file to the RAID-5 array.
D. Move the NETLOGON share to the RAID-5 array.
E. Create a mirror volume and place the log files on the mirror.
Ans: A, B
5. You add a new domain controller named GC01 to your network to take the place of the existing global catalog server. You also enable GC01 as a global catalog. You want to use GC00, the original server, as a domain controller but not as a GC server for the domain. You want to increase disk space on GC00.
What should you do? (Choose all that apply)
A. Use the Active Directory Sites and Services. Select the NTDS settings object for the GC00 Server to clear the Global Catalog check box.
B. On the GC00 server, run the Ntdsutil utility to defragment Active Directory.
C. On the GC00 server, reinstall Windows 2000.
D. On the GC01 server, run the Ntdsutil utility to enable the global catalog server option.
Ans: A, B
6. You are the administrator of a Windows 2000 Network. Your network's organizational unit (OU) structure is shown in an exhibit. You grant Create Users Objects permission to Anita for the Executive OU, but she is unable to create users objects in the Users OU. Anita is able to create users objects in the Workstation OU.
What should you do to enable Anita to create users objects in the Users OU?
A. Clear the Allow inheritable permissions from parent to propagate to this object check box in the Executive OU properties.
B. Select the Allow inheritable permissions from parent to propagate to this object check box in the Users OU properties.
C. Add Anita to the Server Operators group.
D. Move the Users OU to the same level as the Executive OU.
Ans: B
7. You work as a Network Administrator of a Windows 2000 Active Directory based network. Your network is a single domain multiple site network. These sites are connected with high-speed T1 lines. A DNS server is used for host name resolution. Changes are frequent and you want that the name server should return the current domain namespace across the network.
What should you do to ensure that the data about the domain namespace is more current across the network?
A. Specify longer TTL values for each DNS name server in the domain.
B. Remove all cache-only servers in the domain.
C. Specify shorter TTL values for each DNS name server in the domain.
D. Install a preferred bridgehead server in each site.
Ans: C
8. You want to install Active Directory on your Windows 2000 system. You have already installed DNS and want to check it using the DNS console.
Which options will be available?
A. Run the loopback test.
B. Use the Test Now button on the client computer's TCP/IP properties.
C. Run the PING utility from the DNS console.
D. Use the Test Now button on the Monitoring tab of the Properties dialog box for the server.
Ans: D