These Active Directory multiple-choice questions and their answers will help you strengthen your grip on the subject of Active Directory. You can prepare for an upcoming exam or job interview with these 100+ Active Directory MCQs.
So scroll down and start answering.
A. When registering another user.
B. When replacing computer hardware.
C. When logging out.
D. When logging in.
A. TIMEnt.exe
B. W32tm.exe
C. ntp.exe
D. T32v.exe
A. Include the printer as an object in Active Directory Users and Groups, create a security group of those users who can print to that printer, then give them exclusive rights to print.
B. Make sure that the printer can be reached by name on the network. In Active Directory Group Policy Manager create a group policy that hides the printer name for all users except for the group in Accounting.
C. Setup a new resource domain, add those users to that need to print to that printer and the printer in Active Directory Users and Groups, then create a one way forest-to-forest trust in Active Directory Domains and Trusts to allow only those users to print
D. Set up a subnet on the corporate switch for the port that is attached to the printer. Give the printer an IP address on that subnet, then set up routes on the computers of the users who will print to that printer.
A. Power Users
B. Forest Admins
C. Domain Admins
D. Enterprise Admins
A. a collection of different domains connected via two way trusts that don't share the same DNS name space, but share authentication and policy management.
B. a method for visualizing autonomous sites that are connected via high speed networks but independent of domain hierarchies.
C. the sum total of all the objects both physical and logical including their properties in an Active Directory domain and managed from a PDC.
D. the different databases and their interactions that comprise the Active Directory for the management of objects, domain security and policy.
A. Edit DNS records of Active Directory members.
B. Remove inactive objects in the Active Directory.
C. Directly add, delete or modify components in the Active Directory.
D. Filter SID components in the DHCP registry.
A. Infrastructure Master Role
B. Domain Naming Master Role
C. NTLM Master Role
D. RID Master Role
A. The operations master, and the domain controlling master.
B. The schema master, and the domain naming master.
C. The system master, and the user master.
D. The super master, and the user master.
A. Inside, or outside.
B. Open, or closed.
C. Four-way, or two-way.
D. One-way, or two-way.
A. Setting Active Directory's clock timing.
B. Synchronizing the system clock so the system runs better.
C. Setting the system time to the appropriate time zone.
D. Synchronizing the time of all the computers running on the network.
A. Two domains block each other so only users can access the computer.
B. Authentication is only allowed for administrators.
C. Authentication is allowed for all users.
D. The authentication coming from each domain trusts the authentications coming from the other domain.
A. FAT32
B. ext2
C. FAT12
D. NTFS
A. Email Address
B. Domain user
C. Domain Server
D. Computer
A. Local Directory Application Programming Interface.
B. Lightweight Directory Access Protocol.
C. Logical Directory Access Protocol.
D. Local Domain Administration Protocol.
A. Tell the user to turn off the computer and restart it, then log in.
B. In the Active Domain Domains andTrusts, find the users login server right click and choose Replicate Now, then ask the user to login
C. Ask the user to get someone else to login for them.
D. In the Active Directory Users and Computers, find and open the user object, choose the Account tab and unlock the account.
A. Organizational Utility Services
B. Organizational Unit
C. Optional Upgrade
D. Operational Unit
A. Receive and relay domain commands
B. Assign IP addresses to domain computers
C. Control granular settings in a domain environment
D. Store the database, maintain the policies and provide the authentication of domain logons
A. Run the command: gpupdate /force
B. Run the command: ipconfig /flushdns
C. Run the command: nbtstat /R
D. Perform a warm boot of the computer
A. VOLSYS
B. SYSVOL
C. HKEY
D. SYSKEY
A. The program that underlies Active Directory Group Policy management.
B. The script complier used for parsing and interpreting SYSVOL scripts.
C. A messaging protocol used in Active Directory for intersite transport in multi-site domains.
D. A security protocol used for authentication in Active Directory.
A. GPRESULT
B. GPMC
C. GPUPDATE
D. GPFIXUP
A. Branch
B. Forest
C. OU
D. Domain
A. Create a Group policy that identifies each member of Fred's team that will redirect and map a drive to a hidden folder on the server.
B. Dedicate a computer to Fred's group and give each person local rights to the computer .
C. Create and share a folder on Fred's PC and write a login script that will map a drive to that folder for each member of Fred's team.
D. Create an Active Directory Security Group and assign Fred and his team to it. Create a directory on the file server and give that group exclusive rights to the directory. Share that folder with Fred's team.
A. From the computer, change the computer's login password in Local Security Manager, then reboot.
B. From the Active Directory Users and Groups Manager find the computer in the directory and delete it.
C. Rename the computer and reboot it.
D. From the computer, remove from the computer from the domain reboot, and rejoin it to the domain
A. New-ADUser
B. New-Item
C. New-DSObj
D. Set-ADUser
A. tracert
B. dcpromo.exe
C. traceroute
D. Fixboot
E. ADSI
A. Default Domain Policy (GPO)
B. IIS
C. DNS Server and services
D. LDAP
E. DCHP Server
A. No
B. Yes
A. The Active Directory SYSVOL shared folder.
B. The Active Directory shared network.
C. The Active Directory SYSVOL system.
A. They are connected by Connection objects.
B. They are connected by Network objects.
C. They are connected by Link Bot objects.
D. They are connected by Site Link objects.
A. When your organization needs to collaborate with users or resources in other domains, forest trusts, or realms.
B. When your organization needs to access other forest trusts only.
C. Only when your organization needs to access other domains.
D. Never. They are automatically managed.
A. Flexible Master
B. RID Master
C. Infrastructure Master
D. Schema Master
A. An historical catalog of all authentication traffic in the entire forest.
B. A listing of all users information that is published by intervals from the Active Directory to Microsoft Exchange.
C. A database of every object in an active directory tree, containing the most frequently used object attributes.
D. The listing of all Group Policies in an Active Directory domain and their implementation schema.
A. Performing annual backups.
B. Keeping the system running.
C. Rebuilding the system every year.
D. Performing regular backups.
A. %windir&\ntds
B. %windir%\etc
C. %windir%\sysvol
D. %windir%\inf
A. Windows 2012
B. Windows 2000
C. Windows 2003 R
D. Windows 2008
A. Stub Zone
B. Internal Lookup Zone
C. Primary Zone
D. Forward Lookup Zone
A. Active Directory Network Object Services
B. Active Directory Federated Services
C. Active Directory Certificate Services
D. Active Directory Domain Services
A. The trusts that need manual configuration are contingent upon how Active Directory is organized, and whether different versions of Windows coexist on the network.
B. All trusts are set automatically.
C. All trusts are set automatically, and they cannot be changed.
D. All trusts must be set manually.
A. MACHINE\SYSTEM\SET\Services\NTDS\
B. HKEY_LOCAL_MACHINE\SYSTEM\ControlSet\Utilities\NTDS\
C. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTDS\
D. \SYSTEM\CurrentControlSet\Services\NTDS\HKEY_LOCAL_MACHINE
A. HKEY_Local_Machine\NtFrs\Parameters
B. System\CurrentControlSet\Services\NtFrs\Parameters\HKEY_Local_Machine
C. HKEY_Local_Machine\System\CurrentControlSet\Services\NtFrs\Parameters
D. HKEY_Local_Machine\User\Share\Etc\NtFrs\Parameters
A. Yes.
B. No. Use “Run as” to complete them.
C. Yes, and stay logged in continually.
D. Yes. You should always log in as an administrator, but log out after you are finished.
A. It is used to log onto a domain controller that has been rebooted into DSRM mode to delete its copy of Active Directory.
B. It is used to log into the system.
C. It is used to log onto a domain controller that has been rebooted into DSRM mode to take its copy of Active Directory off-line.
D. It is used to log into Active Directory in the case that DSRM needs to be taken off-line.
A. Access is allowed to all users.
B. Permissions are granted to fewer users.
C. Permissions are totally deleted.
D. Permissions are transparent across the system, leaving less opportunities for intrusion.
A. It is essential for performance audits.
B. It is essential for network administration.
C. It is essential for domain audits.
D. It is essential for security audits.
A. ping (IP Address)
B. ping -a (IP Address)
C. tracert (IP Address)
D. ping -h (IP Address)
A. It is the Knowledge Consistency Checker used to generate the replication topology in Active Directory Domains and Trusts.
B. It is the Kerberos Consignment Client, which checks and passes Kerberos authentication packets between clients.
C. It is the Knowledge Capture Client, used by the Schema Manager in mapping and maintaining domain morphology.
D. It is the Key Collection Center, the database used in conjunction with Key Distribution Center for exchange Kerberos keys during authentication.
A. Set up a Two Way External Trust via Active Directory Domains and Trusts, then setup security groups to share directories.
B. Set up a server on the internet and utilize Windows R-Sync to replicate data from the servers from each partners servers. Set up a Radius Server with user accounts then provide the users with VPN access to the data.
C. Create a group in your company's Active Directory Users and Groups, then create user accounts for the people who will need access to resources in your domain, restrict resources to that group. Have your partner do the same on their domain.
D. Utilize Active Directory Cloud Authentication Services (CA) to create user groups from both companies to access shared data.
A. Domain security.
B. Network security.
C. Computer security.
D. Physical security.
A. It will function at the Windows 2003 R2 level.
B. It will function at the 2008 R2 level.
C. All domain objects created on the 2008 R2 domain controllers will function as 2008 R2 those from the incorporated 2003 R2 servers will continue to operate as 2003 objects.
D. It depends on the site the 2003 R2 domain controller is located.