Interview Questions.

Q1. Mention what is Active Directory?

Ans: An active directory is a directory shape used on Micro-smooth Windows based totally servers and computers to keep records and information approximately networks and domain names.

Q2. What is Native Mode?

Ans: When all of the domain controllers in a given domain are walking Windows 2000 Server. This mode lets in organizations to take advantage of recent Active Directory capabilities consisting of Universal organizations, nested organization club, and inter-area institution membership.

Q3. What is Organizational Units ?

Ans: The Organizational Unit (OU)is a essential layout factor impacting safety, policy, performance, and the price of management. Organizational Units are a sort of LDAP (X.500) box. It can be idea of as a sub-domain detail with similar properties to domain names. They are additives inner to domains. OUs are part of the LDAP call space and now not the DNS namespace.

Q4. Do we use clustering in Active Directory? Why?

Ans: No one installs Active Directory in a cluster. There isn't any want of clustering a domain controller. Because Active Directory offers overall redundancy with two or extra servers

Q5. What is web sites ? What are they used for ?

Ans: One or more properly-linked (incredibly reliable and rapid) TCP/IP subnets.

A web site allows administrators to configure Active Directory get right of entry to and replication topology to take gain of the bodily community.

A Site item in Active Directory represents a physical geographic vicinity that hosts networks. Sites comprise objects called Subnets.

Sites may be used to Assign Group Policy Objects, facilitate the discovery of sources, manage energetic listing replication, and manage community hyperlink traffic.

Sites may be connected to other Sites. Site-related items can be assigned a price fee that represents the velocity, reliability, availability, or other actual property of a bodily useful resource. Site Links will also be assigned a schedule.

Q6. What is Domains in Active Directory?

Ans: In Windows 2000, a website defines both an administrative boundary and a protection boundary for a collection of gadgets which are applicable to a specific group of users on a network. A domain is an administrative boundary because administrative privileges do now not expand to different domains. It is a protection boundary due to the fact each area has a protection policy that extends to all safety accounts inside the area. Active Directory shops records about gadgets in a single or greater domain names.

Domains can be organized into determine-infant relationships to shape a hierarchy. A determine domain is the domain at once superior in the hierarchy to one or more subordinate, or child, domains. A baby area additionally can be the discern of one or extra baby domain names, as shown beneath.

Q7. Explain what's SYSVOL?

Ans: The SysVOL folder keeps the server’s reproduction of the area’s public documents. The contents which include customers, institution policy, and so forth. Of the sysvol folders are replicated to all area controllers in the area.

Q8. Tell me about Infrastructure grasp?

Ans: The Infrastructure Master is used to keep references to items in other domains, known as phantoms.The Infrastructure Master is chargeable for fixing up stale references from objects in its area to items in other domain names. The Infrastructure Master FSMO position owner is used to constantly preserve the phantoms on every occasion the objects they seek advice from are changed or moved inside the item's area.

Q9. What is Active Directory Recycle Bin?

Ans: Active Directory Recycle bin is a feature of Windows Server 2008 AD. It enables to restore by accident deleted Active Directory objects with out the usage of a backedup AD database, rebooting domain controller or restarting any offerings

Q10. Trying to examine the Schema, how can I do that ?

Ans: Register schmmgmt.Dll the usage of this command

c:windowssystem32>regsvr32 schmmgmt.Dll

Open mmc --> upload snapin --> add Active directory schema

call it as schema.Msc

Open administrative device --> schema.Msc

Q11. Mention that's the default protocol utilized in listing services?

Ans: The default protocol used in directory offerings is LDAP (Lightweight Directory Access Protocol).

Q12. What is LDAP?

Ans: LDAP is the directory provider protocol this is used to question and replace AD. LDAP naming

paths are used to get entry to AD gadgets and consist of the following:

Distinguished names

Relative Distinguished names 

HubSpot Video

 

Q13. What is the purpose of replication in AD ?

Ans: The reason of replication is to distribute the facts stored inside the directory for the duration of the company for elevated availability, overall performance, and records safety. Systems directors can tune replication to occur based totally on their bodily community infrastructure and other constraints.

Q14. What is RODC? Why will we configure RODC?

Ans: Read best domain controller (RODC) is a feature of Windows Server 2008 Operating System. RODC is a read best replica of Active Directory database and it is able to be deployed in a faraway department workplace where physical safety cannot be guaranteed. RODC affords greater advanced safety and faster go browsing time for the department workplace

Q15. What is the port no of Kerbrose ?

Ans: 88

Q16. What is Mixed Mode?

Ans: Allows area controllers jogging both Windows 2000 and in advance versions of Windows NT to co-exist in the domain. In combined mode, the area features from previous variations of Windows NT Server are nevertheless enabled, at the same time as some Windows 2000 functions are disabled. Windows 2000 Server domain names are set up in mixed mode through default. In combined mode the domain can also have Windows NT 4.0 backup area controllers gift. Nested companies aren't supported in mixed mode.

Q17. Mention what's Kerberos?

Ans: Kerberos is an authentication protocol for community. It is built to provide sturdy authentication for server/patron programs through using mystery-key cryptography.

Q18. What is stale ?

Ans: Stale means references to gadgets that have been moved or renamed so that the neighborhood reproduction of the far flung item's name is obsolete .

Q19. How do you test currently forest and domain practical stages? Say each GUI and Command line.

Ans: To discover wooded area and domain practical levels in GUI mode, open ADUC, right click on the area call and take homes. Both domain and forest purposeful degrees can be listed there. TO find out forest and area useful degrees, you could use DSQUERY command.

Q20. What is the port no of Global catalog ? 

Ans: 3268

Q21. Explain the term FOREST in AD?

Ans: Forest is used to outline an meeting of AD domain names that share a single schema for the AD. All DC’s within the forest proportion this schema and is replicated in a hierarchical style among them.

Q22. Minimum Requirement for Installing AD?

Ans:

Windows Server, Advanced Server, Datacenter Server

Minimum Disk area of 200MB for AD and 50MB for log documents

NTFS partition

TCP/IP Installed and Configured to use DNS

Administrative privilege for creating a site in existing network

Q23. What is SID ?

Ans: Security Identifier (SID) is a unique, variable-period identifier used to become aware of a trustee or security major.

Q24. Explain Knowledge Consistency Checker (KCC)

Ans: KCC may be multiplied as Knowledge Consistency Checker. It is a protocol procedure running on all domain controllers, and it generates and keeps the replication topology for replication inside web sites and among websites.

Q25. What is the port no of LDAP ?

Ans: 389

Q26. What are the gear used to check and troubleshoot replication of Active Directory?

Ans: We can use command line equipment including repadmin and dcdiag. GUI toolREPLMON also can be used for replication monitoring and troubleshooting.

Q27. Explain Active Directory Schema ? 

Ans: Windows 2000 and Windows Server 2003 Active Directory uses a database set of policies called "Schema". The Schema is defines because the formal definition of all object training, and the attributes that make up the ones item lessons, that may be stored within the directory. As stated earlier, the Active Directory database includes a default Schema, which defines many object training, consisting of customers, corporations, computer systems, domains, organizational gadgets, and so forth.

These gadgets are also known as "Classes". The Active Directory Schema may be dynamically extensible, that means that you can regulate the schema by means of defining new object kinds and their attributes and by way of defining new attributes for existing objects. You can do this both with the Schema Manager snap-in device covered with Windows 2000/2003 Server, or programmatically.