Term
| What are some of the useful counters for a domain controller in PerfMon |
|
Definition
• NTDS\ DRA Inbound Bytes Total/sec
• NTDS\ DRA Inbound Object
• NTDS\ DRA Outbound Bytes Total/sec
• NTDS\ DRA Pending Replication Synchronizations
• NTDS \ Kerberos Authentications/sec
• NTDS\ NTLM Authentications |
|
|
Term
| What group can you add a user to if you want them to be able to view performance but not admistrative priviledges |
|
Definition
Performance Log Users group.
Make sure that the Users have the Logon as a batch file(default) |
|
|
Term
| What is the name of the default DCS on a DC that can be used to monitor AD |
|
Definition
| Active Directory Diagnostics |
|
|
Term
| What is OS is the Best Practices Analyzer found |
|
Definition
|
|
Term
| What tools do you use to maintain the AD Database |
|
Definition
|
|
Term
| What commandline tool can you use to perform an offline fragmentation |
|
Definition
|
|
Term
| Other than the AD Database what is another important thing thatt NTDSUtil can manage |
|
Definition
| FSMOs, create and mount snapshots, move database files,AD DC removal/demotion when not connect to the domain |
|
|
Term
| What tool can you use to set the DSRM password |
|
Definition
|
|
Term
| What are the three states that ADDS can be in |
|
Definition
| AD DS Started,AD DS Stopped, Directory Services Restore Mode |
|
|
Term
| What can't you do while AD DS is in a stopped state |
|
Definition
| perform system state restore( YOU HAVE TO DO THIS IS DSRM) |
|
|
Term
| Which Windows Server environment must you use to be able to start/stop AD like a service |
|
Definition
| 2008(no functional requirements for this one) |
|
|
Term
| What is the command to perform an authoritative restore while AD DS is stopped |
|
Definition
|
|
Term
| What are the two states of the AD DS database to run dcpromo /forceremoval |
|
Definition
|
|
Term
| What must you do to logon to a DC that has the AD DS is in DSRM |
|
Definition
| logon as the local Administrator by using the DSRM password, Restart the DC and logon with a domain account |
|
|
Term
| What is the procedure to perform an offline defragmentation |
|
Definition
| Use NTDSUtil in DSRM(Remember RELEASES unused space AND reduces file size |
|
|
Term
| What are the two thing that garbage collection does |
|
Definition
| Removes deleted objects which have outlive their tombstone lifecyle and perform online defragmentation |
|
|
Term
| What is the default tombstone interval |
|
Definition
|
|
Term
| what is the limitation to an online defragmentation |
|
Definition
| Doesnt reduce the file size of the database |
|
|
Term
| What is the only method of reducing the file size of the AD DS Database |
|
Definition
| Offline Defrag(NTDSUTIL in DSRM) |
|
|
Term
| What are the two utilities you can use the AD Recycle-bin |
|
Definition
| LDP.exe and Powershell with AD Module |
|
|
Term
| What happens to the link-attributes and non-linked attributes of an object that has been locally deleted |
|
Definition
| Non-linked attributes are cleared and linked attributes are removed |
|
|
Term
| What does hte AD Recycle-bin help with on locally deleted itmes |
|
Definition
| Non-linked attributes are preserved and linked attributes are marked as deactivated(but preserved) |
|
|
Term
| What is the lifetime of a deleted determined by |
|
Definition
| the msDS-deletedObjectLife attribute value |
|
|
Term
| What is the forest functional level have to be set to for the Recycle-bin |
|
Definition
|
|
Term
| What is the command to enable the Recycle-bin |
|
Definition
Enable-ADOptionalFeature –Identity ‘CN=Recycle Bin Feature,CN=Optional
Features,CN=Directory Service,CN=Windows NT,CN=Services,CN=Configuration,
DC=contoso,DC=com’ –Scope ForestOrConfigurationSet –Target ‘contoso.com’ |
|
|
Term
|
Definition
| It is also possible to enable the Recycle-bin through LDP.exe but is very complex |
|
|
