Interview Question & Answer MCSE & CCNA

MCSE - Windows: Active Directory, Functional Levels, FSMO Roles

FQDN, Kerberos, DS commands, shortcut trust

42.What is the use of Kerberos in Active Directory? Which port is used for Kerberos communication?

Kerberos is a network authentication protocol. Active Directory uses Kerberos for user and resource authentication and trust relationship functionality. Kerberos uses port number 88

43.Which version of Kerberos is used for Windows 2000/2003 and 2008 Active Directory?

All versions of Windows Server Active Directory use Kerberos 5

44. Please name few port numbers related to Active Directory.LDAP-389,DNS-53,DHCP-67,68,

Kerberos 88, SMB 445

45. What is an FQDN?

FQDN can be expanded as Fully Qualified Domain Name. It is a hierarchy of a domain name system which points to a device in the domain at its left most end

46.Tell me few DS commands and its usage. 

Dsadd - to add an object to the directory, Dsget - displays requested properties of an object in AD, Dsmove - Used to move one object from one location to another in the directory, DS query - To query specific objects.

47.Explain Active Directory tree and forest.

A tree in Active Directory is a collection of one or more domains which are interconnected and sharing global resources each other. If a tree has more than one domain, it will have contiguous namespace. When we add a new domain in an existing tree, it will be called a child domain. A forest is a collection of one or more trees which trust each other and sharing a common schema. It also shares common configuration and global catalog. When a forest contains more than one tree, the trees will not form a contiguous namespace.

48.What are Intersite and Intrasite replication?

Replication between domain controllers inside a single site is called Intrasite replication, whereas replication between domain controllers located indifferent sites is called Intersite replication. Intrasite replication will be very frequent, whereas Intersite replication will be with specific interval and in a controlled fashion just to preserve network bandwidth

49.What is shortcut trust?

Shortcut trust is a manually created transitive trust which is configured to enable fast and optimized authentication process. For example, If we create short cut trust between two domains of different trees, they can quickly authenticate each other without traveling through the entire parent domains. Short cut trust can be either one-way or two-way