61⟩ Define Res1.log and Res2.log?
This is reserved transaction log files of 20 MB (10 MB each) which provides the transaction log files enough room to shutdown if the other spaces are being used.
Active Directory
Home Networking Active Directory
“Active Directory Interview Questions and Answers will guide us now that Active Directory is a technology created by Microsoft that provides a variety of network services, including LDAP-like directory services, Kerberos-based authentication, DNS-based naming and other network information, Central location for network administration and delegation, Information security and single sign-on for user access to networked based resources so learn more by this Active Directory Interview Questions Answer”
146 Active Directory Questions And Answers
62⟩ What is ADS Database garbage collection process?
Garbage Collection is a process that is designed to free space within the Active Directory database. This process runs independently on every DC with a default lifetime interval of 12 hours.
63⟩ List the main steps of Garbage collection process?
★ Removing "tombstones" from the database. Tombstones are remains of objects that have been previously deleted.
★ Deletion of any unnecessary log files.
★ The process launches a defragmentation thread to claim additional free space.
64⟩ What is Online Defragmentation in Active Directory?
Online Defragmentation method that runs as part of the garbage collection process. The only advantage to this method is that the server does not need to be taken offline for it to run. However, this method does not shrink the Active Directory database file (Ntds.dit).
65⟩ What is Schema information in Active Directory?
Definitional details about objects and attributes that one CAN store in the AD. Replicates to all DCs. Static in nature.
66⟩ What is Schema Configuration in Active Directory?
Configuration data about forest and trees. Replicates to all DCs. Static as your forest is.
67⟩ What is Offline Defragmentation in Active Directory?
Offline Defragmentation is done by taking the server offline and use Ntdsutil.exe to defragment the database. This approach requires that the ADS database be started in repair mode. The advantage to this method is that the database is resized, unused space is removed, and the size is reflected by the Ntds.dit file.
68⟩ How to do Offline Defragmentation of Active Directory?
Active Directory routinely performs online database defragmentation, but this is limited to the disposal of tombstoned objects. The database file cannot be compacted while Active Directory is mounted.
To defrag ntds.dit offline:
★ Back up System State in the backup wizard.
★ Reboot and select Directory Services Restore Mode.
★ At the command prompt:
★ Ntdsutil
★ Files
★ Info
This will display current information about the path and size of the Active Directory database
and its log files.
Compact to D:DbBackup
You must specify a directory path and if the path name has spaces, the command will not work unless you use quotation marks:
Quit (till you reach the command prompt)
A new compacted database named Ntds.dit can be found in D:DbBackup.
Copy the new ntds.dit file over the old ntds.dit file. You have successfully compacted the Active Directory database.
69⟩ Define EDB.LOG?
This is the transaction log file (10 MB). When EDB.LOG is full, it is renamed to EDBnnnn.log. Where nnnn is the increasing number starting from 1.
70⟩ Define EDB.CHK?
This is the checkpoint file used to track the data not yet written to database file. This indicates the starting point from which data is to be recovered from the log file, in case of failure.
71⟩ Define Domain Forests in Active Directory?
A forest consists of multiple domain trees. The domain trees in a forest do not form a contiguous namespace but share a common schema and GC. The forest root domain is the first domain created in the forest. The root domains of all domain trees in the forest establish transitive trust relationships with the forest root domain. This is necessary for the purposes of establishing trust across all the domain trees in the forest. All of the Windows 2000 domains in all of the domain trees in a forest share the following traits:
★ Transitive trust relationships between the domains
★ Transitive trust relationships between the domain trees
★ A common schema
★ Common configuration information
★ A common global catalog
Using both domain trees and forests provides you with the flexibility of both contiguous and non-contiguous naming conventions. This can be useful in, for example, companies with independent divisions that must each maintain their own DNS names.
72⟩ Define domain Trees in Active Directory?
Tree is a hierarchical arrangement of W2K domains that share a contiguous name space. The first domain in a domain tree is called the root domain. Additional domains in the same domain tree are child domains. A domain immediately above another domain in the same domain tree is referred to as the parent of the child domain. The name of the chills domain is combined with its parent domain to form its DNS name. Every child domain has a two two-way, transitive trust relationship with its parent domain Because these trust relationships are two-way and transitive, a Windows 2000 domain newly created in a domain tree or forest immediately has trust relationships established with every other Windows 2000 domain in the domain tree or forest.
These trust relationships allow a single logon process to authenticate a user on all domains in the domain tree or forest. This does not necessarily mean that the authenticated user has rights and permissions in all domains in the domain tree. Because a domain is a security boundary, rights and permissions must be assigned on a per-domain basis.
73⟩ Define Active Directory Schema Attributes?
Attributes are defined separately from classes. Each attribute is defined only once and can be used in multiple classes. For example, the Description attribute is used in many classes, but is defined once in the schema, assuring consistency.
74⟩ Define Active Directory schema?
The Active Directory schema is the set of definitions that defines the kinds of objects, and the types of information about those objects, that can be stored in Active Directory. The definitions are themselves stored as objects so that Active Directory can manage the schema objects with the same object management operations used for managing the rest of the objects in the directory.
There are two types of definitions in the schema: attributes and classes. Attributes and classes are also referred to as schema objects or metadata.
75⟩ Define Active Directory Sites?
Site consists of one or more IP subnets connected by a high speed link. Wide area networks should employ multiple sites for efficiently handling servicing requests and reducing replication traffic. Sites map the physical structure of your network whereas domains generally map the logical structure of your organization.
Active Directory Sites and Services allow you to specify site information. Active Directory uses this information to determine how best to use available network resources.
76⟩ What are the advantages of Active Directory Sites?
Active Directory Sites and Services allow you to specify site information. Active Directory uses this information to determine how best to use available network resources.
77⟩ Define Active Directory Classes?
Classes, also referred to as object classes; describe the possible directory objects that can be created. Each class is a collection of attributes. When you create an object, the attributes store the information that describes the object. The User class, for example, is composed of many attributes, including Network Address, Home Directory, and so on. Every object in Active Directory is an instance of an object class.
78⟩ Define Service requests in Active Directory?
When a client requests a service from a domain controller, it directs the request to a domain controller in the same site. Selecting a domain controller that is well-connected to the client makes handling the request more efficient.
79⟩ What is GC in Active Directory?
GC is created automatically on the first DC in the forest. It stores a full replica of all objects in the directory for its host domain and a partial replica of all objects of every other domain in the forest. The replica is partial because it stores only some attributes for each objects.
80⟩ List the GC key directory roles?
★ It enables network logon by providing universal group membership information to a DC when a logon process is initiated.
★ It enables finding directory information regardless of which domain in the forest actually contains the data.
