PlayUKlottery.com - win up to 42 million Pounds
Appendix A -- Questions and Answers

Cover
LOC Page
About This Book
Chapter and Appendix Overview
Getting Started
The Microsoft Certified Professional Program
Technical Support
Chapter 1 -- The Microsoft Windows 2000 Platform
Lesson 1: Overview of the Windows 2000 Platform
Lesson 2: Windows 2000 Professional
Lesson 3: Windows 2000 Server
Lesson 4: Windows 2000 Advanced Server and Windows 2000 Datacenter Server
Review
Chapter 2 -- Installing Windows 2000
Lesson 1: Preparing to Install
Lesson 2: Installing Windows 2000 from a CD-ROM
Lesson 3: Installing Windows 2000 over the Network
Lesson 4: Troubleshooting Windows 2000 Setup
Review
Chapter 3 -- Configuring the DNS Service
Lesson 1: Understanding DNS
Lesson 2: Resolving Names
Lesson 3: Installing the DNS Service
Lesson 4: Configuring the DNS Service
Lesson 5: Configuring a DNS Client
Lesson 6: Troubleshooting the DNS Service
Review
Chapter 4 -- Implementing Active Directory Directory Services
Lesson 1: Introduction to Active Directory Directory Services
Lesson 2: Active Directory Structure and Site Replication
Lesson 3: Active Directory Concepts
Lesson 4: Introduction to Planning
Lesson 5: Installing Active Directory Directory Services
Lesson 6: Configuring Active Directory Replication
Review
Chapter 5 -- Administering Active Directory Directory Services
Lesson 1: Creating Organizational Units
Lesson 2: Creating User and Computer Accounts
Lesson 3: Managing Groups
Lesson 4: Controlling Access to Active Directory Objects
Review
Chapter 6 -- Managing Desktop Environments with Group Policy
Lesson 1: Understanding Group Policy
Lesson 2: Applying Group Policy
Lesson 3: Configuring Group Policy
Review
Chapter 7 -- Managing Software by Using Group Policy
Lesson 1: Introducing the Software Installation and Maintenance Technology
Lesson 2: Deploying Software
Lesson 3: Upgrading Software
Lesson 4: Managing Software
Review
Chapter 8 -- Managing File Resources
Lesson 1: Sharing and Publishing File Resources
Lesson 2: Administering Shared Folders by Using Dfs
Lesson 3: Using NTFS Special Access Permissions
Lesson 4: Managing Disk Quotas on NTFS Volumes
Lesson 5: Increasing Security with EFS
Lesson 6: Using Disk Defragmenter
Review
Chapter 9 -- Configuring Remote Access
Lesson 1: Understanding the New Authentication Protocols in Windows 2000
Lesson 2: Configuring Inbound Connections
Lesson 3: Configuring Outbound Connections
Lesson 4: Examining Remote Access Policies
Lesson 5: Creating a Remote Access Policy
Review
Chapter 10 -- Supporting DHCP and WINS
Lesson 1: New DHCP Functionality
Lesson 2: New WINS Functionality
Review
Chapter 11 -- Managing Disks
Lesson 1: Introduction to Disk Management
Lesson 2: Common Disk Management Tasks
Review
Chapter 12 -- Implementing Disaster Protection
Lesson 1: Using Fault-Tolerant Volumes
Lesson 2: Using Advanced Startup Options
Lesson 3: Using the Recovery Console
Lesson 4: Using the Backup Utility
Lesson 5: Performing an Emergency Repair
Review
Chapter 13 -- Upgrading a Network to Windows 2000
Lesson 1: Planning a Network Upgrade
Lesson 2: Establishing the Root Domain
Lesson 3: Upgrading Domain Controllers and Member Servers
Lesson 4: Upgrading Client Operating Systems
Review
Chapter 14 -- Using Remote Installation Services
Lesson 1: Performing Remote Installations
Lesson 2: Creating Distribution Servers
Review
Appendix A -- Questions and Answers
Appendix B -- Creating Setup Disks
About This Electronic Book
About Microsoft Press


[Previous] [Next]

Appendix A -- Questions and Answers

Chapter 1

The Microsoft Windows 2000 Platform

Review Questions

  1. You have been asked to install a file and print server for your department of 50 people. Which operating system would you choose from the Windows 2000 platform?

    2. Windows 2000 Server.

  2. Your department has now grown to support over 500 people, all of whom need access to your server's file services. They also require 24-hour access to these services. Which operating system from the Windows 2000 platform would you now choose?

    3. Windows 2000 Advanced Server.

  3. Users in your organization are complaining that they cannot locate the printers that they need to print to. Identify the component in Windows 2000 that addresses this business problem, and explain how it addresses the problem.

    4. Active Directory directory services. Integrating Active Directory directory services with Windows 2000 makes all shared printers in your domain available as objects in Active Directory directory services.

  4. Your organization provides users with access to a large number of programs for everyday use. The help desk is receiving many calls from people who are having difficulty finding the applications that they need because of a very large and confusing Start menu structure. How does Windows 2000 solve this problem?

    5. Personalized Menus can be activated to keep track of the programs you use and to update the Programs menu so that it presents only the programs that you use most often. Applications that you use less frequently are hidden from normal view, making the Start menu easier to use.

  5. Identify three of the features that make Windows 2000 Professional the best desktop operating system for a business environment.

    6. Improvements to the user interface, a graphical scheduling utility, improved hardware support, and support for ACPI.

  6. List three of the features that help to simplify management of a Windows 2000 network.

    7. Microsoft Management Console (MMC), group policy, DNS dynamic update protocol, Active Directory directory services, Windows Management Instrumentation (WMI), Remote Storage, Windows Script Host, Indexing Service.

Chapter 2

Installing Windows 2000

Review Questions

  1. Your company has decided to install Windows 2000 Professional on all new computers that are purchased for desktop users. What should you do before you purchase new computers to ensure that Windows 2000 can be installed and run without difficulty?

    2. Verify that the hardware components meet the minimum requirements for Windows 2000. Also, verify that all of the hardware components that are installed in the new computers are on the Windows 2000 HCL. If a component is not listed, contact the manufacturer to verify that a Windows 2000 driver is available.

  2. You are attempting to install Windows 2000 Professional from a CD-ROM; however, you have discovered that your computer does not support booting from the CD-ROM drive. How can you install Windows 2000?

    3. Start the computer by using the Setup boot disks. When prompted, insert the Windows 2000 Workstation CD-ROM, and then continue Setup.

  3. You are installing Windows 2000 Server on a computer that will be a member server in an existing Windows 2000 domain. You want to add the computer to the domain during installation. What information do you need, and what computers must be available on the network, before you run the Setup program?

    4. You need the DNS domain name of the domain that you are joining. You must also make sure that a computer account for the member server exists in the domain or you must have the user name and password of a user account in the domain with the authority to create computer accounts in the domain. A server running the DNS Service and a domain controller in the domain you are joining must be available on the network.

  4. You are using the CD-ROM to install Windows 2000 Server on a computer that was previously running another operating system. How should you configure the hard disk to simplify the installation process?

    5. Use a disk partitioning tool to remove any existing partitions, and then create and format a new partition for the Windows 2000 installation.

  5. You are installing Windows 2000 over the network. Before you install to a client computer, what must you do?

    6. Locate the path to the shared installation files on the distribution server. Create a 500 MB FAT partition on the target computer (1 GB recommended). Create a client disk with a network client so that you can connect from the computer, without an operating system, to the distribution server.

Chapter 3

Configuring the DNS Service

  • To test your DNS Server using Nslookup

    1. At the command prompt, type nslookup and then press Enter.

      2. Record your results in the following table.

      Parameter Value
      Default server Server1.domain.com.
      (Answers will vary if you did not use Server1 as your computer name or domain1 as your DNS domain name.)
      Address 192.168.1.201.
      (Answers will vary if you did not use 192.168.1.201 as the static IP address for your server.)

    Review Questions

    1. What is the function of each of the following DNS components?

      2. Domain name space

      The domain name space provides the hierarchical structure for the DNS distributed database.

      Zones

      Zones are used to divide the domain name space into administrative units.

      Name servers

      Name servers store the zone information and perform name resolution for their authoritative domain name spaces.

    2. Why would you want to have multiple name servers?

      3. Installing multiple name servers provides redundancy, reduces the load on the server that stores the primary zone database file, and allows for faster access speed for remote locations.

    3. What is the difference between a forward lookup query and a reverse lookup query?

      4. A forward lookup query resolves a name to an IP address. A reverse lookup query resolves an IP address to a name.

    4. When would you configure a server as a root server?

      5. Configure a name server as a root server only if you will not be connecting to the Internet or if you are using a proxy server to gain access to the Internet.

    5. Why do you create forward and reverse lookup zones?

      6. A name server must have at least one forward lookup zone. A forward lookup zone enables name resolution.

      A reverse lookup zone is needed for troubleshooting utilities, such as Nslookup, and to record names instead of IP addresses in IIS logs.

    6. What is the difference between Dynamic DNS and DNS?

      7. Dynamic DNS allows automatic updates to the primary server's zone file. In DNS, you must manually update the file when new hosts or domains are added.

      Dynamic DNS also allows a list of authorized servers to initiate updates. This list can include secondary name servers, domain controllers, and other servers that perform network registration for clients, such as servers running WINS and the DHCP Service.

    Chapter 4

    Implementing Active Directory Directory Services

  • To install Active Directory directory services on a stand-alone server

    1. Ensure that the Sysvol location is C:\Winnt\Sysvol.

      2. What is the one Sysvol location requirement?

      Sysvol must be located on a Windows 2000 partition that is formatted as Windows NT file system (NTFS).

      What is the function of Sysvol?

      Sysvol is a system volume hosted on all Windows 2000 domain controllers. It stores scripts and part of the Group Policy objects for both the current domain and the enterprise.

  • To use Active Directory Users and Computers

    1. In the console tree, expand domain.com.

      2. What selections are listed under domain?

      Builtin, Computers, Domain Controllers, Foreign-Security-Principals, LostAndFound, System, and Users.

    Review Questions

    1. List three of the items that you should check on a server before running the Active Directory Installation wizard.

      2. That you have a partition or volume formatted with NTFS.

      That you have adequate hard disk space to store the directory.

      That the system time and time zone settings are accurate.

      That you have a DNS server, if you are not going to let Active Directory directory services configure a DNS server while running the wizard.

    2. You have installed Active Directory directory services on your corporate network and have upgraded all domain controllers running Windows NT 4.0 to Windows 2000. You now want to create security-type universal groups. What should you do and what console should you use to make the change?

      3. Change from mixed mode to native mode. To do this, you use the Active Directory Domains and Trusts snap-in, which you start from the Administrative Tools menu.

    3. You are the administrator of a network in a remote location, and the network connection from the main office to that location has failed. You find you are still able to create user accounts even though the connection has failed, and users are noticing no difference in logon speed. What would you need at the remote location for this to be possible?

      4. A domain controller and a global catalog server. These two components can be on the same computer.

    4. Your company has one remote office connected by a 64 Kbps WAN link. Technical support is receiving calls from users in the remote office who are complaining that it is sometimes taking over five minutes to log on. You have configured a domain controller and a global catalog server in the remote office. What is a potential source of the problem? Describe the steps you would take to improve logon times.

      5. It is likely that you haven't configured sites for your network and that domain controllers that are located across the slow WAN link are occasionally authenticating users.

      Create a site for your main office and a site for your remote office. Create a subnet object for each network, and associate the subnet with the appropriate site. Make sure that both sites are in the default site link, DEFAULTIPSITELINK.

    5. You have three locations (A, B, and C) that are connected to a central site (D) by 128 Kbps WAN links, and another remote location (E) connected to the central site by a 256 Kbps WAN link. You create a site for each location. What site links should you create to enable replication to take place, and given only the bandwidth information about the links, what cost should be associated with each site link?

      6. Site Link AD: Cost 2

      Site Link BD: Cost 2

      Site Link CD: Cost 2

      Site Link ED: Cost 1

      The cost value is arbitrary. It is only important that the cost of site links be in the same proportions as above.

    Chapter 5

    Administering Active Directory Directory Services

  • To modify user account properties

    1. Click the Account tab, and then click Logon Hours.

      2. By default, when can a user log on?

      All hours on all days are allowed by default.

  • To test restrictions on logon hours

    1. Click OK to close the Change Password message box.

      2. Were you able to successfully log on as User1? Why or why not?

      Yes, because User One has access to the network 24 hours a day, 7 days a week.

    2. Repeat steps 1-3 for User Two; use User2 as the new password.

      3. Were you able to successfully log on as User Two? Why or why not?

      It depends on the time set on your system clock. If it is between 6:00 AM and 6:00 PM, you should not be able to log on. If it is between 6:00 PM and 6:00 AM, you should be able to log on.

  • To add members to a universal group

    1. Click OK to close the Universal1 Properties dialog box.

      2. Were you able to successfully add the Managers global group to the universal group? Why or why not?

      Yes. A global group can be a member of a universal group.

    2. Attempt to repeat steps 1 through 5 to add the Inventory domain local group to the universal group.

      3. Was the Inventory domain local group available for you to add to the universal group? Why or why not?

      No. A domain local group cannot be a member of a universal group.

  • To view default Active Directory permissions for an OU

    1. In the following table, list the groups that have permissions for the Security OU. If an account has special permissions, just record Special Permissions in the table. You will need to refer to these permissions in the next exercise.

      2. User account or group Assigned permissions
      Account Operators
      Administrators Read, write, Create All Child Objects
      Authenticated Users Read
      Domain Admins Full Control
      Enterprise Admins Full Control
      Pre-Windows 2000 Compatible Access
      Print Operators Special Permissions
      System Full Control

      Why are all permission check boxes for some groups blank?

      Additional permissions are present, but you cannot view them in this dialog box. To see the unavailable permissions, click the Advanced button.

      Are any of the default permissions inherited from the domain, which is the parent object? How can you tell?

      The permissions that are assigned to Enterprise Admins are inherited from the parent object. The check boxes for inherited permissions are shaded.

  • To view special permissions for an OU

    1. To view the permissions for Account Operators, in the Permission Entries box, click each entry for Account Operators, and then click View/Edit.

      2. The Permission Entry For Security dialog box appears.

      What object permissions are assigned to Account Operators? What can Account Operators do in this OU?

      The permissions that are assigned to Account Operators are Create User Objects, Delete User Objects, Create Group Objects, Delete Group Objects, Create Computer Objects, and Delete Computer Objects. Account Operators can only create and delete user accounts groups, accounts, and computer accounts.

      Do any objects within this OU inherit the permissions assigned to the Account Operators group? Why or why not?

      No. Objects within this OU do not inherit these permissions. The dialog box shows that permissions are applied on this object only.

  • To test current permissions

    1. In the console tree, expand your domain, and then click Security.

      2. What user objects are visible in the Security OU?

      The Secretary and Assistant user accounts.

      Which permissions allow you to see these objects? (Hint: refer to your answers in the preceding exercise.)

      The Assistant user account automatically belongs to the Authenticated Users built-in group, which has the Read permission for the OU.

      Attempt to change the logon hours for Secretary. Were you successful? Why or why not?

      No. The Assistant user account does not have the Write permission for this object.

      Attempt to change the logon hours for Assistant. Were you successful? Why or why not?

      No. The Assistant user account does not have the Write permission for this object.

  • To test delegated permissions

    1. Attempt to change the logon hours for both user accounts in the Security OU.

      2. Were you successful? Why or why not?

      Yes. The Assistant user account has been assigned the Full Control permission for all objects in the OU. This includes the permission to change the logon hours.

    2. Attempt to change the logon hours for a user account in the Users container.

      3. Were you successful? Why or why not?

      No. The Assistant user account has been assigned no permissions for the Users OU.

    Review Questions

    1. What strategy should you apply when you use domain local and global groups?

      2. Place user accounts (A) into global groups (G), place global groups into domain local groups (DL), and then assign permissions (P) to the domain local group.

    2. What determines whether users can locate an object using the global catalog?

      3. The global catalog contains the access permissions for an object. If users do not have the Read permission for an object, they cannot view or locate the object.

    3. What happens to the permissions of an object when you move it from one OU to another OU?

      4. Permissions that are assigned directly to the object remain the same. The object also inherits permissions from the new OU. Any permissions that were inherited from the previous OU no longer affect the object.

    4. You want to delegate administrative control of all computer accounts in an OU to a specific user. What is the simplest method for assigning the needed permissions?

      5. Right-click the OU and click Delegate Control to run the Delegation Of Control wizard. Assign control of the OU to the user and limit the user's control to computer accounts within that OU.

    5. You have the Read permission for the Sales OU. Can you create other OUs within Sales?

      6. No, you must also have the Create Organizational Unit Objects permission to create an OU. You should also have the List Contents permission to view the objects in the container.

    6. What is the difference between the naming requirements for user accounts and for computer accounts?

      7. User accounts must have unique names within the OU or container in which you have created them. Computer accounts must have unique names within the Active Directory forest.

    Chapter 6

    Managing Desktop Environments with Group Policy

  • To test Group Policy

    1. Log on as User1 with a password of User1.

      2. Were the following restrictions enforced? Why or why not?

      No Run command on the Start menu.

      No access to Display icon in Control Panel.

      No My Network Places icon on the desktop.

      No Map Network Drive or Disconnect Network Drive on the Tools menu in Windows Explorer.

      Yes. The restrictions should be enforced for the Administration OU and the User One account is located in this OU.

  • To test Group Policy

    1. Log on as ADAdmin with a password of password.

      2. Were the following restrictions enforced? Why or why not?

      No Run command on the Start menu.

      No access to Display icon in Control Panel.

      No My Network Places icon on the desktop.

      No Map Network Drive or Disconnect Network Drive on the Tools menu in Windows Explorer.

      No. None of the four were in force for ADAmin because the user account is located in the Users OU.

  • To test Group Policy

    1. Log on as User1 with a password of User1.

      2. Were the following restrictions enforced? Why or why not?

      No Run command on the Start menu.

      No access to Display icon in Control Panel.

      No My Network Places icon on the desktop.

      No Map Network Drive or Disconnect Network Drive on the Tools menu in Windows Explorer.

      No. Group Policy has been removed.

    Review Questions

    1. Where do GPOs store Group Policy information?

      2. GPOs store Group Policy information in a Group Policy Container and in a Group Policy Template.

    2. In what order are GPOs implemented through the structure of Active Directory directory services?

      3. GPOs are implemented in the following order: site, domain, and then organizational unit.

    3. Your company has decided to implement some restrictions on what users can and cannot do on their desktops. These restrictions need to be applied to all users in your single domain, with the exception of members of the Software Development group. If the Software Development group had their own organizational unit, how would you accomplish this? How would you accomplish this if all user accounts in the domain, including members of the Software Development group, were in the Users container?

      4. If the Software Development group had its own OU, you would create a GPO at the domain level, containing the required restrictions. You would then set the Block Policy Inheritance option at the Software Development OU. If all user accounts, including the Software Development group, were in the Users container, you would create a GPO at the domain level, containing the required restrictions. Next you would create a security group and add all of the Software Development group accounts to this group. Then you would deny Apply Group Policy permission on the discretionary access control list of the GPO for the new security group.

    Chapter 7

    Managing Software by Using Group Policy

    Review Questions

    1. What two new technologies in Windows 2000 provide the ability to manage software?

      2. The two new technologies are the Windows Installer and Windows 2000 Software Installation And Maintenance.

    2. You need to deploy two new applications to users in your organization, Microsoft Excel 2000 and Microsoft Word 2000. All users in your company use Word 2000 on a daily basis. All users in the accounting department also use Excel 2000 on a daily basis. Some users outside of the accounting department need occasional access to Excel 2000. If you have a single domain and each department has their own organizational unit, how would you deploy these two applications?

      3. Microsoft Word 2000 would be assigned in a GPO at the domain level. Microsoft Excel 2000 would be assigned in a GPO at the accounting department's organizational unit and would also be published in a GPO at the domain level.

    3. Under what circumstances would you choose to assign an application to computers instead of users?

      4. If the application were required for all users, regardless of which computer they log on to, you would assign the application to computers.

    4. You have deployed an application to all users in your organization and now need to upgrade the application to the latest version. For compatibility reasons, you need to allow some users to continue to use the old version. How would you accomplish this?

      5. You would deploy the new version as an optional upgrade. This will allow users to continue to use the previous version until they are able to upgrade to the new version.

    Chapter 8

    Managing File Resources

  • To determine the permissions for a file

    1. Click the Owner tab.

      2. Who is the current owner of the Owner.txt file?

      The Administrators group.

  • To take ownership of a file

    1. Click Advanced to display the Access Control Settings For Owner dialog box, and then click the Owner tab.

      2. Who is the current owner of Owner.txt?

      The Administrators group.

    2. Under Name, select User Four, and then click Apply.

      3. Who is the current owner of Owner.txt?

      The User Four user account.

  • To configure quota management settings for a user

    1. Click OK.

      2. Windows 2000 displays the Add New Quota Entry dialog box.

      What are the default settings for the user you just set a quota limit for?

      Limit disk space to 10 MB and set warning level to 6 MB. These are the default settings that are selected for drive C.

  • To test encrypt files

    1. Start Windows Explorer and open C:\Secret\File1.txt.

      2. What happens?

      The Notepad message box informs you that access is denied.

    Review Questions

    1. You are the administrator for your organization's network. Management would like to segregate documents so that marketing documents are available to everybody on the network while research and development documents are hidden in a shared folder. How can this be accomplished?

      2. This can be accomplished by publishing the marketing documents and putting the research and development documents in a hidden shared folder.

    2. Users are distraught because information they need is scattered throughout the network on various servers. This forces them to remember the names of all of the servers and shared folders on the entire network, which is difficult at best. As the administrator, what can you do to alleviate this problem?

      3. Install Dfs on one computer and create child nodes out of all of the shared folders.

    3. Your company utilizes a data center for centralized storage and control of corporate documents. Each user is allocated a certain amount of storage at the data center and the user's department is charged a monthly fee for usage. In the past, the data center's strategy has been to partition the drives on the servers to configure each user's allocation. This creates problems when the allocations must be changed. The data center is going to be upgrading all of its servers to Windows 2000. Which feature of Windows 2000 will make setting the allocations easier?

      4. Windows 2000 supports disk quotas, which allow administrators to dynamically change the quotas.

    4. Users complain that access times to the data center's servers has increased over the past few months. What maintenance must be done and when should this be done?

      5. The disks need to be defragmented. This should be done at night or during the weekend to minimize the impact on productivity.

    Chapter 9

    Configuring Remote Access

    Review Questions

    1. What are the advantages of using L2TP over using PPTP?

      2. L2TP supports more types of internetworks, it supports header compression, and it cooperates with IPSec for encryption.

    2. Describe the two new settings that must be configured using the Network Connection wizard in regard to sharing the connection.

      3. The settings are whether you want to allow others who use the computer to use the connection (access to the connection) and whether you want to allow other computers to access resources through this port (sharing the connection once it is established).

    3. Why are remote access policies stored on the remote access server and not in Active Directory directory services? Describe a scenario in which this is beneficial.

      4. By storing remote access policies on the remote access server, policies can vary according to the capabilities of the server. For example, servers having different sizes of modem pools can have different profile settings for multilinking.

    4. Which part of a remote access policy is overridden in a mixed-mode domain? Why? Which parts are still effective?

      5. The access permission setting on the policy is overridden in a mixed-mode domain because the user dial-in setting, Control Access Through Remote Access Policy, is not available. Policy conditions and profiles are still effective.

    5. A user in the Sales Group has their dial-in permission set to Allow Access. The user attempts to connect during business hours using an ISDN connection, an IP address of 123.45.1.2, and CHAP authentication. Assuming the following policy is in effect on the remote access server, will the user's connection attempt be accepted?

      6. The profile must still match the settings of the connection attempt. For example, the profile may specify that another authentication protocol be used instead of CHAP. If this is the case, this attempt would be denied.

    Chapter 10

    Supporting DHCP and WINS

  • To install the DHCP Service

    1. Click Start, point to Programs, and then point to Administrative Tools.

      2. Are there any entries for DHCP?

      No.

    2. Click Start, point to Programs, and then point to Administrative Tools.

      3. Are there any entries for DHCP?

      Yes, the DHCP tool was added to the Administrative Tools menu when the DHCP Service was installed.

    Review Questions

    1. What statistical information can you display in the DHCP console?

      2. You can use the DHCP console to display the total number of scopes and addresses on the server, the number of available addresses versus the number of depleted addresses, and the number of leases being processed per second.

    2. You have installed the DHCP Service on a member server in a domain and have configured a scope, but clients cannot lease an address. You open the DHCP console and notice that the DHCP server icon is marked with a red arrow. What does this mean?

      3. The DHCP Service is not authorized to operate in the domain. A member of the Enterprise Admins group must authorize the DHCP server before the DHCP Service will start on the member server.

    3. How does a DHCP server determine authorization status within a workgroup?

      4. When a DHCP server that is a member of a workgroup starts, it sends a broadcast message. If the DHCP server receives a response from a DHCP server in a domain, the DHCP server that sent the broadcast message assumes that it is unauthorized on the network. If the DHCP server receives a response only from workgroup DHCP servers, the DHCP server that sent the broadcast message determines that it can operate normally.

    4. You have defined a scope for a subnet and want to add additional IP addresses to the scope. What is the easiest way to complete this task without having to delete the current scope and create a new one?

      5. Create a new scope with the additional addresses, and then combine the two defined scopes into a superscope.

    5. What is the purpose of option classes and what types can you create?

      6. You can use DHCP option classes to manage configuration details for DHCP clients within a scope. Windows 2000 supports two types of option classes: vendor-defined and user-defined classes.

    6. If a DHCP client is unable to obtain a lease from a DHCP server, how can the client still gain limited network functionality?

      7. The client can use Automatic Private IP Addressing to generate a unique IP address in the range 169.254.x.y.

    7. How does the Windows 2000 implementation of WINS provide greater fault tolerance for the client?

      8. You can configure a WINS client with as many as 12 WINS servers. The additional WINS servers provide an extra measure of fault tolerance in the event that the primary and secondary WINS servers fail to respond.

    Chapter 11

    Managing Disks

    Review Questions

    1. You install a new 10-gigabyte (GB) disk drive that you want to divide into five equal 2-GB sections. What are your options?

      2. You can leave the disk as a basic disk and then create a combination of primary partitions (up to three) and logical drives in an extended partition; or, you can upgrade the disk to a dynamic disk and create five 2-GB simple volumes.

    2. How do you configure the Disk Management tool for remote administration of other computers?

      3. Add the Computer Management or Disk Management snap-in to an MMC console. You have the option to focus the snap-in on the local computer or another computer. Type in the name of the computer you want to administer remotely.

    3. You are trying to create a striped volume on your Windows 2000 Server in order to improve performance. You confirm that you have enough unallocated disk space on two disks in your computer, but when you right-click an area of unallocated space on a disk, your only option is to create a partition. What is the problem and how would you resolve it?

      4. You can create striped volumes on dynamic disks only. The option to create a partition rather than a volume indicates that the disk you are trying to use is a basic disk. You will need to upgrade all of the disks that you want to use in your striped volume to dynamic disks before you stripe them.

    4. You add a new disk to your computer and attempt to extend an existing volume to include the unallocated space on the new disk, but the option to extend the volume is not available. What is the problem and how would you resolve it?

      5. The existing volume is not formatted with NTFS. You can extend NTFS volumes only. You should back up any data on the existing volume, convert it to NTFS, and then extend the volume.

    5. You dual boot your computer with Windows 98 and Windows 2000. You upgrade a second drive, which you are using to archive files, from basic storage to dynamic storage. The next time you try to access your archived files from Windows 98, you are unable to read the files. Why?

      6. Only Windows 2000 can read dynamic disks.

    Chapter 12

    Implementing Disaster Prevention

    Review Questions

    1. What requirement applies to disks used to create new fault-tolerant volumes in Windows 2000?

      2. All disks that will be a part of the fault-tolerant volume must be upgraded to dynamic storage.

    2. After installing a new hardware device, you restart your computer and log on. Immediately after logging on, your computer fails with a stop error that indicates the problem resulted from the new device driver. How would you solve this problem?

      3. You would restart the computer and select Safe Mode from the Advanced Options menu. When the computer starts in Safe Mode, you would remove the device that was causing the stop error.

    3. Describe two methods for accessing the Windows 2000 Recovery Console.

      4. You can access the Windows 2000 Recovery Console by starting the computer from the Windows 2000 CD-ROM or the Windows 2000 boot disks and then choosing the repair option in setup.

      You can also install the Windows 2000 Recovery Console by running Winnt32.exe /cmdcons, and then you can access the Recovery Console from the Windows 2000 startup menu.

    4. An administrator on your network has accidentally deleted an OU containing several thousand user objects. Assuming you have a recent backup of Active Directory directory services, how would you recover the deleted OU?

      5. On a domain controller you have backed up recently, restart the domain controller in Directory Services Restore Mode. Using the Backup utility, restore the system state data. Next, using the Ntdsutil.exe utility, mark the deleted OU as authoritative. Restart the domain controller and replicate the changes to the remaining domain controllers.

    5. What are the two types of emergency repair and what are the differences between them?

      6. The two types of emergency repair are Manual and Fast. You should normally choose Fast emergency repair because it is the easiest and does not require any user interaction. The fast repair will attempt to repair registry problems. You should only choose Manual emergency repair if you are an experienced user. Manual repair does not allow you to attempt to repair the registry.

    Chapter 13

    Upgrading a Network to Windows 2000

    Review Questions

    1. You have a server running Windows NT 3.5 and SNA server. You want to upgrade this server to Windows 2000. Can this server be upgraded to Windows 2000? If so, what is the upgrade path?

      2. Yes. You must first upgrade to Windows NT Server 3.51 or 4.0, and then upgrade to Windows 2000.

    2. You have a laptop running Windows 95 and you want to upgrade it to Windows 2000. The computer has 16 MB of RAM, and this can be upgraded to 24 MB. Can you upgrade this computer to Windows 2000? If not, how would you make it so this computer is able to access Active Directory directory services?

      3. No. You can install the Directory Service Client for Windows 95 or 98. The laptop would then be able to access Active Directory directory services.

    3. You are about to install Active Directory directory services in your network, and you want to use your existing DNS servers to support Active Directory directory services. What two features must be supported by the DNS server?

      4. SRV (Service) location resource records and the dynamic update protocol for DNS.

    4. Your organization currently uses a Windows NT 4.0 single master domain model. Your organization has decided to upgrade to Windows 2000 and Active Directory directory services. How will you establish the root domain for your organization and what system recovery step should you take?

      5. Upgrade the master domain to Windows 2000 to create the root domain.

      To facilitate system recovery in the event of a problem during the upgrade, you should synchronize a BDC with the PDC and keep this BDC offline until you are sure the network upgrade has completed successfully.

    5. Your organization wants to migrate to Active Directory directory services from a multiple master domain model. They created a new empty root domain and now wish to upgrade their existing Windows NT 4.0 domains. Explain the steps you must use to upgrade the master domains, and then the resource domains.

      6. In all domain upgrade cases, the first step is to take a fully synchronized BDC offline to facilitate system recovery in case of problems during the upgrade.

      Next, upgrade the PDCs in the resource domains, and tell the Active Directory Installation wizard to make a new child domain in an existing domain tree. In this case, make the resource domains child domains of the old master domains. Finally, upgrade the BDCs of the resource domains.

    6. Your organization has a Windows NT 4.0 member server in a domain that has been upgraded to Active Directory directory services. The member server is a print server and you have created local groups on that server and applied permissions to those groups. You also put global groups from the domain into the local groups to give print permissions. What happens to the local groups when you upgrade to Windows 2000?

      7. Nothing. The local groups remain, and group membership remains unchanged.

    7. You are about to upgrade a Windows NT 4.0 workstation to Windows 2000 Professional. List two things you should check before starting the upgrade process.

      8. Check that you have at least 32 MB of RAM and enough hard disk space free to complete the upgrade. You should also run the Windows 2000 Compatibility Tool to check that all hardware and software currently installed is compatible with Windows 2000.

    Chapter 14

    Upgrading a Network to Windows 2000

    Review Questions

    1. What five resources are required to use remote installation services to install Windows 2000 Professional?

      2. Remote installation requires the following five resources:

      A Windows 2000 Server with RIS installed and configured

      A DNS server available on the network

      A DHCP server available on the network

      A Windows 2000 domain to provide Active Directory directory services

      Client computers that meet the Net PC specification or have a boot floppy to connect to the RIS server.

    2. What utility is provided to create boot floppies and how is it accessed?

      3. Windows 2000 ships with the Windows 2000 Remote Boot Disk Generator (rbfg.exe), which is used to create boot disks. It is found on the RIS Server in the folder where the Windows 2000 Professional installation files are stored. The path is E:\RemoteInst\Admin\i386\rbfg.exe.

    3. Your are planning to install Windows 2000 Professional on 45 computers. You have determined that there are 7 different network adapter cards in these 45 computers. How can you determine if these 7 different types of network adapter cards are supported by the boot floppies you'll create?

      4. The boot floppies created using Rbfg.exe only support the PCI-based network adapters listed in the Adapters List, Start Rbfg.exe and then click the Adapter List button to see the list of supported adpaters.

    4. Why would you create distribution servers?

      5. You create distribution servers when you have mulitple installations to perform. Having more than one source of installation files, speeds up the installations.