Welcome to Certifiable, your exam prep headquarters. Here you'll find questions about some of the tricky areas that are fair game for the certification exams. Following the questions, you'll find the correct answers and explanatory text. We change the questions weekly.

Questions (August 31, 2001)
Answers (August 31, 2001)

This week's questions cover topics for Exam 70-217: Implementing and Administering a Microsoft Windows 2000 Directory Services Infrastructure.

Questions (August 31, 2001)

Question 1
The following files are associated with Active Directory (AD):

  • ntds.dit (the AD database)
  • edb*.log (transaction log files)
  • edb.chk (a checkpoint file that the database engine uses to track the data that the system hasn't yet written to the AD database file)
  • res1.log and res2.log (reserved transaction log files)

On a Windows 2000 domain controller (DC), the boot files are located on the C drive, and the OS files are installed on the D drive. By default, where are the AD files listed above located? (Choose the best answer.)

  1. In the %systemroot%\NTDS folder in the boot volume, where %systemroot% is the folder in which the OS files were installed.
  2. In the %systemroot%\NTDS folder in the system volume, where %systemroot% is the folder in which the OS files were installed.
  3. In the %systemroot%\Sysvol folder in the boot volume, where %systemroot% is the folder in which the OS files were installed.
  4. In the %systemroot%\Sysvol folder in the system volume, where %systemroot% is the folder in which the OS files were installed.
  5. In the NTDS folder at the root of the boot volume.
  6. In the NTDS folder at the root of the system volume.
  7. In the Sysvol folder at the root of the boot volume.
  8. In the Sysvol folder at the root of the system volume.

Question 2
Group Policy is a very powerful Windows 2000 component that gives administrators additional control over desktop configuration, logon scripts, software installation, and much more. When using Group Policies in Win2K, which of the following can you link a Group Policy Object (GPO) to? (Choose all that apply.)

  1. Computer
  2. Domain
  3. Group
  4. Organizational unit
  5. Site
  6. Site link
  7. Site link bridge
  8. User

Question 3
Two protocols, RPC and SMTP, are involved in Active Directory (AD) replication. Both protocols run over IP. Which of the following statements about replication protocols is correct? (Choose the best answer.)

  1. You can use either RPC or SMTP for intrasite replication and RPC for intersite replication.
  2. You can use either RPC or SMTP for intrasite replication and SMTP for intersite replication.
  3. You can use RPC and SMTP for both intrasite and intersite replication.
  4. You can use RPC for intersite replication and SMTP for intrasite replication.
  5. You can use RPC for intrasite replication and either RPC or SMTP for intersite replication.
  6. You can use RPC for intrasite replication and SMTP for intersite replication.
  7. You can use SMTP for intrasite replication and either SMTP or RPC for intersite replication.

Answers (August 31, 2001)

Answer to Question 1
The correct answer is A—The %systemroot%\NTDS folder in the boot volume, where %systemroot% is the folder in which the OS files were installed. AD files ntds.dit, edb*.log, edb.chk, res1.log, and res2.log are located in %systemroot%\NTDS, and the OS files are installed on the D drive, making that drive the boot volume. For more information, see Module 13 of Microsoft Official Curriculum Course 2154A.

Answer to Question 2
The correct answers are B—Domain; D—Organizational unit; and E—Site. In fact, you can link a given GPO to more than one site, domain, or OU. Conversely, a given site, domain, or OU can have multiple GPOs associated with it. When you have linked multiple GPOs to a particular site, domain, or OU, you can prioritize the order in which these GPOs apply.

You can't directly link GPOs to a user, group, or computer account as you can Windows NT 4.0 System Policies. To apply a GPO to a specific account, you must use security filtering. For more information about Group Policy, see the Microsoft Web site.

Answer to Question 3
The correct answer is E—You can use RPC for intrasite replication and either RPC or SMTP for intersite replication.

The following rules apply to the replication transports:

  • Replication within a site always uses RPC over IP.
  • Replication between sites can use either RPC over IP or SMTP over IP.
  • Replication between sites over SMTP is supported only for domain controllers (DCs) of different domains. DCs of the same domain must use the RPC over IP transport to replicate. Therefore, replication between sites over SMTP is supported for only schema, configuration, and Global Catalog (GC) replication, which means that domains can span sites only when point-to-point, synchronous RPC is available between sites.

For more information, see the Microsoft Web site.