Top 15 Windows Server Interview Questions and Answers

Answer
We are going to see how to do that.

• Boot the domain controller in Directory Services Restore spectre and log on with the Directory Services Restore Mode administrator account and password (this is the password we assigned during the Dcpromo process).
• At a command prompt, type ntdsutil.exe. We receive the following prompt:ntdsutil:
• Type files to receive the following prompt:file maintenance:
• Type info. Note the path of the database and log files.
• To move the database, type move db to %s (where %s is the target folder).
• To move the log files, type move logs to %s (where %s is the target folder).
• Type quit twice to return to the command prompt.
• Reboot the computer normally.

Answer : Domain Name System (DNS) is a database system that transforms a fully qualified domain name of a computer into an IP address.

The local DNS resolver
The following graphic explains an overview of the complete DNS query process.

Answer : Forward lookup zone – Name to IP address map.
Reverse lookup zone – IP address to name map.

Primary Zones – It contains Read and Write copies of all resource records (A, NS, _SRV).

Secondary Zones – It holds read-only copies of the Primary Zones.

Stub Zones

Ideally, stub zones are like secondary zones in that they contain a read-only replica of a primary zone. Stub zones are more effective and generate less copying traffic.

Stub Zones just have 3 records, the SOA for the primary zone, NS record and a Host (A) record. The notion is that if a client queries a record in the Stub Zone, your DNS server can refer that query to the exact Name Server because it knows its Host (A) record.

Answer : Queries can be classified into these following categories:

Inverse – Receiving the name from the IP address. These are used by servers as a security check.

Iterative – Server gives its best answer. This type of inquiry is sent from one server to another.

Recursive – Cannot indicate the query to another name server.

Answer : Another age-old use of forwards is where large organizations have subsidiaries, partners or people they know and contact regularly query. Instead of going the long way around using the root hints, the network administrators configure Conditional Forwarders for the better outcome.

Answer :
Without resource records, DNS could not do with queries. The aim of a DNS Query is to identify a server that is Authoritative for a particular domain. The easy part is for the Authoritative server to verify the name in the query against its resource records.

Answer : SOA (start of authority) record:
Every zone has one SOA record that finds out which DNS server is the ruler for domains and subdomains in the zone.

NS (name server) record:
An NS record has the FQDN and IP address of a DNS server authoritative for the zone. Each basically and secondary name server authoritative in the domain should have an NS record.

An (address) record:
By far the very common type of resource record, an A record is used to rectify the FQDN of a particular host into its relevant IP address.

CNAME (canonical name) record:
A CNAME record contains an alias (alternate name) for a host.

PTR (pointer) record is the opponent of an A record, a PTR record is used to resolve the IP address of a host into its FQDN.

SRV (service) record is an SRV record is used by DNS clients to identify a server that is running a peculiar service—for instance, to figure out a domain controller so we can log on to the network. SRV records are key to the operation of Active Directory.

MX (mail exchange) record is an MX record points to one or more computers that process SMTP mail for a company or site.

Answer :
After running DCPROMO, A text file including the exact DNS resource records for the domain controller is generated. The file called Netlogon.dns is created in the %systemroot%\System32\config folder and contains all the records needed to register the resource records of the domain controller. Netlogon.dns is used by the Windows 2000 NetLogon service and to support Active Directory for non-Windows 2000 DNS servers.

Answer :Once DNS and copy are setups, it is usually not a good idea to alter a servers IP address (at least according to Microsoft). Just we need to be sure that is what we really want to do before beginning the process. It is a bit kin to altering the Internal IPX number of A Novell server, but it can be accomplished.

1. Alter the Server’s IP address
2. Stop the NETLOGON service.
3. Rename or delete SYSTEM32\CONFIG\NETLOGON.DNS and NETLOGON.DNB
4. Restart the NETLOGON service and run “ipconfig /registerDNS”
5. We have to go to one of the other DCs and rectify that its DNS is now pointing to the new IP address of the server. If not, alter the records manually and give it 15 minutes to copy the DNS changes out.
6. Run REPLMON and make sure that replication is working live. We may have to wait a little time for things to work out.

Answer : If a server displays that it is not coping with one of its partners, there are several issues to be noted:
 

1. Check to see that the servers can poke each other.
2. we need to make sure that both the DNS entries servers for each other point to the proper IP addresses.
3. If server A says it copied well that is great, but server B mentions it could not contact Server A, check the DNS setup on Server B. Chances are it has a record for Server A pointing to the wrong place.
4. Run Netdiag and see if it explains any errors or issues.

Answer : One way trust – When just a domain permits access to users on another domain, but the other domain does not permit access to users on the first domain.
Two-way trust – When two domains guide access to users on the other domain.
Trusting domain – The domain that permits access to users on another domain.
Trusted domain – The domain that is trusted, whose users have access to the trusting domain.
Transitive trust – A trust which can go beyond two domains to other managed domains in the tree.
Intransitive trust – A single way trust that does not extend beyond two domains.
Explicit trust – A trust that an administrator generates. It is not transitive and is just one way only.
Cross-link trust – An open trust between domains in various trees or in the same tree when a descendant/ancestor relationship does not exist between the two domains.
Forest trust – When two forests have a functional level of Windows 2003, you can use a forest trust to join the forests at the root.
Shortcut trust – When domains that validate users are logically distant from one another, the process of logging on to the network can take a much longer time. We can manually add a shortcut trust between two domains in the same forest to accelerate authentication. Shortcut trusts are transitive and can either be one way or two way.
Windows 2000 just supports the following types of trusts:

Two-way transitive trusts
One way non-transitive trusts.

Answer : Normal – Saves files and folders and displays they were backed up by cleaning the archive bit.

Copy – Saves files and folders without clearing the archive bit.

Incremental – Incremental backup stores all files that have altered since the last Full,Differential or Incremental backup. The archive bit is cleared.

Differential – A differential backup has all files that have been altered since the last FULL backup. The archive bit is not cleared.

Daily – Saves files and folders that have been modified that day. The archive bit is not cleared.

Answer :Multiplexing dispatches data from various sources to a single tape or disk device. This is useful if we possess a tape or disk device that writes faster than a single system can send data, which is just about every tape device.

Answer : Multi-streaming sets up multiple connections, or threads, from a single system to the backup server. This is useful if we have a large system with many I/O devices and large amounts of data that need backing up.

To perform a backup, select “Start”, “Programs”, “Accessories”, “System Tools”, and “Backup”. The Windows 2000 “Backup Utility” will start. It contains these tabs:
System data

1. The registry
2. System start-up files
3. Component services data class registration database
4. Active Directory (Windows 2000 & 2003 Servers only)
5. Certificate server database (Windows 2000 & 2003Servers only)
6. SYSVOL folder (Windows 2000 & 2003 Servers only)

Answer : Non-authoritative Active Directory restores

Here at this stage changes are accepted from other domain controllers after the backup is done.

But when we are restoring a domain controller by using backup and restore programs, the standard mode for the restoration is non-authoritative. This connotes the fact that the restored server is brought up-to-date with its copies through the normal replication workings.

Authoritative Active Directory restores: Now modifications are not at all accepted from other domain controllers after the backup is done.

Authoritative restore permits the administrator to retrieve a domain controller, put it back to a particular point in time, and mark objects in Active Directory as being authoritative with respect to their copy partners. Authoritative restore has the capability to increase the version number of the features of all objects in the whole directory. You can authoritatively restore only objects from the configuration and domain-naming contexts. Authoritative restores of schema-naming contexts are not synched. To do an authoritative restoration, we must begin the domain controller in Directory Services Restore Mode.