InterviewFAQ

No:1 Source to prepare for job interviews.

(http://interviewfaq.co.in/)

Menu

(http://interviewfaq.co.in/author/ifaqadmin)

Active Directory Interview .

Questions User

Submitted Part 5
(http://interviewfaq.co.in/active-directoryinterview-questions-user-submitted-part5.html)

19. Sep / Active Directory (http://interviewfaq.co.in/windows/active-directory) /

No Comments (http://interviewfaq.co.in/active-directory-interview-questions-user-submitted-part5.html#comments)

Got a list of some Active Directory Interview Questions submitted by User : Noel.

(http://faqspoint.com/wp-content/uploads/2012/06/Windows-Server-ActiveDirectory-Interview-Questions-Answers.jpg?9d7bd4)
Explain about Trusts in AD ?
To allow users in one domain to access resources in another, Active Directory uses trusts.
Trusts inside a forest are automatically created when domains are created.

The forest sets the default boundaries of trust, not the domain, and implicit, transitive
trust is automatic for all domains within a forest. As well as two-way transitive trust, AD
trusts can be a shortcut (joins two domains in different trees, transitive, one- or two-way),
forest (transitive, one- or two-way), realm (transitive or nontransitive, one- or two-way),
or external (nontransitive, one- or two-way) in order to connect to other forests or nonAD domains.
Trusts in Windows 2000 (native mode)
One-way trust One domain allows access to users on another domain, but the other
domain does not allow access to users on the rst domain.
Two-way trust Two domains allow access to users on both domains.
Trusting domain The domain that allows access to users from a trusted domain.
Trusted domain The domain that is trusted; whose users have access to the trusting
domain.
Transitive trust A trust that can extend beyond two domains to other trusted domains
in the forest.
Intransitive trust A one way trust that does not extend beyond two domains.
Explicit trust A trust that an admin creates. It is not transitive and is one way only.
Cross-link trust An explicit trust between domains in different trees or in the same tree
when a descendant/ancestor (child/parent) relationship does not exist between the two
domains.
Windows 2000 Server supports the following types of trusts:
Two-way transitive trusts.
One-way intransitive trusts.
Additional trusts can be created by administrators. These trusts can be:
Shortcut
Windows Server 2003 offers a new trust type the forest root trust. This type of trust
can be used to connect Windows Server 2003 forests if they are operating at the 2003

forest functional level. Authentication across this type of trust is Kerberos based (as
opposed to NTLM). Forest trusts are also transitive for all the domains in the forests that
are trusted. Forest trusts, however, are not transitive.
Difference between LDIFDE and CSVDE?
CSVDE is a command that can be used to import and export objects to and from the AD
into a CSV-formatted le. A CSV (Comma Separated Value) le is a le easily readable in
Excel. I will not go to length into this powerful command, but I will show you some basic
samples of how to import a large number of users into your AD. Of course, as with the
DSADD command, CSVDE can do more than just import users. Consult your help le for
more info.
LDIFDE is a command that can be used to import and export objects to and from the AD
into a LDIF-formatted le. A LDIF (LDAP Data Interchange Format) le is a le easily
readable in any text editor, however it is not readable in programs like Excel. The major
difference between CSVDE and LDIFDE (besides the le format) is the fact that LDIFDE
can be used to edit and delete existing AD objects (not just users), while CSVDE can only
import and export objects.
What is tombstone lifetime attribute ?
The number of days before a deleted object is removed from the directory services. This
assists in removing objects from replicated servers and preventing restores from
reintroducing a deleted object. This value is in the Directory Service object in the
con guration NIC.
What are application partitions? When do I use them ?
AN application diretcory partition is a directory partition that is replicated only to speci c
domain controller.Only domain controller running windows Server 2003 can host a
replica of application directory partition.

Using an application directory partition provides redundany,availability or fault tolerance

by replicating data to speci c domain controller pr any set of domain controllers
anywhere in the forest.
How do you create a new application partition ?
Use the DnsCmd command to create an application directory partition.
To do this, use the following syntax:
DnsCmd ServerName /CreateDirectoryPartition FQDN of partition
How do you view all the GCs in the forest?
C:>repadmin /showreps domain_controller where domain_controller is the DC you want
to query to determine whether it?s a GC.
The output will include the text DSA Options: IS_GC if the DC is a GC.
Can you connect Active Directory to other 3rd-party Directory Services? Name a few
options.
Yes, you can use dirXML or LDAP to connect to other directories.
In Novell you can use E-directory.
What is IPSec Policy
IPSec provides secure gateway-to-gateway connections across outsourced private wide
area network (WAN) or Internet-based connections using L2TP/IPSec tunnels or pure
IPSec tunnel mode. IPSec Policy can be deployed via Group policy to the Windows
Domain controllers 7 Servers.
What are the different types of Terminal Services ?
User Mode & Application Mode.
What is RsOP
RsOP is the resultant set of policy applied on the object (Group Policy).
What is the System Startup process ?
Windows 2K boot process on a Intel architecture.

1. Power-On Self Tests (POST) are run.

2. The boot device is found, the Master Boot Record (MBR) is loaded into memory, and its
program is run.
3. The active partition is located, and the boot sector is loaded.
4. The Windows 2000 loader (NTLDR) is then loaded.
The boot sequence executes the following steps:
1. The Windows 2000 loader switches the processor to the 32-bit at memory model.
2. The Windows 2000 loader starts a mini- le system.
3. The Windows 2000 loader reads the BOOT.INI le and displays the operating system
selections (boot loader menu).
4. The Windows 2000 loader loads the operating system selected by the user. If Windows
2000 is selected, NTLDR runs NTDETECT.COM. For other operating systems, NTLDR
loads BOOTSECT.DOS and gives it control.
5. NTDETECT.COM scans the hardware installed in the computer, and reports the list to
NTLDR for inclusion in the Registry under the HKEY_LOCAL_MACHINE_HARDWARE
hive.
6. NTLDR then loads the NTOSKRNL.EXE, and gives it the hardware information
collected by NTDETECT.COM. Windows NT enters the Windows load phases.

ManualTesting
Admin

Ancestors

Availability

Answers

AreaNetwork

32bit

Attributes

Active

ActiveDirectory

ManualTesting

Availability

 Previous Page (http://interviewfaq.co.in/page/9?s=DNS)

(http://interviewfaq.co.in/?s=DNS)

(http://interviewfaq.co.in/page/9?s=DNS)

8 (http://interviewfaq.co.in/page/8?s=DNS)
9 (http://interviewfaq.co.in/page/9?s=DNS)

10

11 (http://interviewfaq.co.in/page/11?s=DNS)
12 (http://interviewfaq.co.in/page/12?s=DNS)
(http://interviewfaq.co.in/page/11?s=DNS)
(http://interviewfaq.co.in/page/25?s=DNS)
Next Page (http://interviewfaq.co.in/page/11?s=DNS)

PRE-PAY FOR WP ENGINE HOSTING FOR 1 YEAR AND GET 2 MONTHS FREE! (http://www.shareasale.com/r.cfm?
b=407239&u=963842&m=41388&urllink=&afftrack=) Optimized page load times, reliability and security. Fast,
Secure and Scalable. (http://www.shareasale.com/r.cfm?b=398787&u=963842&m=41388&urllink=&afftrack=)
Optimized your page load times, reliability and security. Fast, Secure and Scalable.
(http://www.shareasale.com/r.cfm?b=398786&u=963842&m=41388&urllink=&afftrack=)

Speed up WordPress with our baked in CDN, super fast servers and amazing up-time.
(http://www.shareasale.com/r.cfm?b=398784&u=963842&m=41388&urllink=&afftrack=) Month to month
contracts and no sign-up fees! Enjoy exibility with WP Engine. (http://www.shareasale.com/r.cfm?
b=398782&u=963842&m=41388&urllink=&afftrack=) Month to month contracts and no sign-up fees! Enjoy
exibility with WPEngine. (http://www.shareasale.com/r.cfm?b=398781&u=963842&m=41388&urllink=&afftrack=)

Month to month contracts and no sign-up fees! Enjoy exibility with WPEngine. (http://www.shareasale.com/r.cfm?
b=398781&u=963842&m=41388&urllink=&afftrack=) Get 50GB of Premium Bandwidth and 10GB of storage with
WP Engine's standard hosting plan! (http://www.shareasale.com/r.cfm?
b=398777&u=963842&m=41388&urllink=&afftrack=) Speed up WordPress with our baked in CDN, super fast
servers and amazing up-time. (http://www.shareasale.com/r.cfm?
b=398776&u=963842&m=41388&urllink=&afftrack=)

Copyright 2016 Theme design by the Bluth Company www.bluth.is