Top 100 AD Interview Questions For Interviewers | Active Directory L3 Interview Questions #TechAarya

 Top 100 AD Interview Questions For Interviewers | Active Directory L3 Interview Questions #TechAarya

1. What are the (Flexible Single Master Operation) FSMO roles in Windows 2000/3?
2. What role does a PDC emulator play in the native mode?
3. How do you change the RID Master FSMO?
4. How do you change the PDC Emulator FSMO?
5. What is multi-master replication?
6. How do you move a server to a different site?
7. How can a server belong to more than one site?
8. How do you back up Active Directory and the System State?
9. How do you allow modifications to the schema?
10. What are Tombstone objects? Follow up Q – What are “Lingering objects”?
11. When do you switch a Windows 2000/3 domain to native mode?
12. How do you force replication between two domain controllers in a site?
13. How do you change the schedule for replication between two domain controllers in a site?
14. How do you rename a site?
15. What DNS entries does Windows 2000/3 add when you create a domain?
16. How do you manually de-fragment Active Directory?
17. How do you audit Active Directory?
18. How do you enable circular logging for Active Directory?
19. What tools are available for monitoring or changing replication?
20. How does intra site replication work in Windows 2000/3?
21. How can you set the RPC port that intra site replication uses?
22. How do you remove a nonexistent domain controller?
23. How do you remove a nonexistent domain from Active Directory?
24. How do you create a new site link?
25. How do you disable site link transitivity?
26. How do you create a site link bridge?
27. How do you specify a bridgehead server?
28. How do you change my Windows 2000/3 domain’s NetBIOS name?
29. How do you monitor when the Knowledge Consistency Checker runs?
30. Why is placing the “Sysvol”directory on a separate partition a good practice?
31. When should you manually de-fragment a domain controller (DC)?
32. How can you determine whether the new Global Catalog (GC) is ready to service clients?
33. How can you check the status of the Relative Identifier (RID) pool on a domain controller (DC)?
34. What are the Relative Identifiers (RIDs) of a domain's built-in accounts?
35. Can you switch an Active Directory (AD) domain from native mode back to mixed mode?
36. How can you reset the Directory Service Restore Mode Administrator password?
37. What are the Windows Server 2003 forest modes?
38. What are the Windows Server 2003 domain modes?
39. How can you move a computer account from one domain to another?
40. What types of trust relationships does Windows Server 2003 support?
41. Explain the Group Scopes in Windows 2003 AD
42. Explain the Types of AD Groups that can created in Windows 2003 AD
43. I am trying to create a new universal user group. Why can’t I?
44. What is a Creator Owner Account in Windows?
45. What is the difference between Enterprise Admins & Domain Admins account in Active Directory?
46. What are the differences between Group Policy, Registry-based policy, and Security policy?
47. Is there a maximum number of Group Policy objects that I can store in a domain?
48. What is the maximum number of Group Policy objects a user or computer can process?
49. Can I apply a Group Policy object directly to a security group?
50. Explain GPMC & RSOP in windows 2003?
51. What is the difference between Assign and Publish Application through GPO?
52. What permissions are necessary for Group Policy to apply to a user or computer?
53. Where are group policies stored ?
54. What’s contained in administrative template conf.adm
55. Explain the Enforce and Block Inheritance features available when managing GPO precedence
56. What is the significance of SYSVOL directory in AD?
57. List out the important ports used in AD communications
58. What is a site?
59. Differentiate between Intra-site replication can be done between the domain controllers in the same site
60. What is USN with reference to Active Directory?
61. What is KCC?
62. What are the protocols used by Active Directory for replication?
63. Explain the Active Directory Partitions
64. What is the name of AD Database and what is the default location of AD Database?
65. What are FSMO roles and brief them all
66. What is a Global Catalog?
67. What is universal group membership cache in windows 2003?
68. Can I place Global Catalog and Infrastructure Master Role on the same server? Justify your answer
69. Give the names of few standard commands / tools from MS to troubleshoot AD related issues?
70. What types of trust relationships are supported in Windows 2003
71. Can we establish trust relationship between two forests?
72. What is Active Directory?
73. What is LDAP?
74. Can you connect Active Directory to other 3rd-party Directory Services? Name a few options
75. Where is the AD database held? What other folders are related to AD?
76. What is the SYSVOL folder?
77. Name the AD NCs and replication issues for each NC
78. What are application partitions? When do I use them
79. How do you create a new application partition
80. How do you view replication properties for AD partitions and DCs?
81. What is the function of Global Catalog in an AD forest?
82. How do you view all the GCs in the forest?
83. Why not make all DCs in a large forest as GCs?
84. Trying to look at the Schema, how can I do that?
85. What are the Support Tools? Why do I need them?
86. What is LDP? What is REPLMON? What is ADSIEDIT? What is NETDOM? What is REPADMIN?
87. What are AD sites? What are they used for?
88. What's the difference between a site link's schedule and interval?
89. What is the KCC?
90. What is the ISTG? Who has that role by default?
91. What are the requirements for installing AD on a new server?
92. What can you do to promote a server to DC if you're in a remote location with slow WAN link?
93. How can you forcibly remove AD from a server, and what do you do later? Can I get user passwords from the AD database?
94. What tool would I use to try to grab security related packets from the wire?
95. Name some OU design considerations
96. What is tombstone lifetime attribute?
97. What do you do to install a new Windows 2003 DC in a Windows 2000 AD?
98. What do you do to install a new Windows 2003 R2 DC in a Windows 2003 AD?
99. How would you find all users that have not logged on since last month?
100. What are the DS* commands?
101. What's the difference between LDIFDE and CSVDE? Usage considerations?
102. What are the FSMO roles? Who has them by default? What happens when each one fails?
103. What FSMO placement considerations do you know of?
104. I want to look at the RID allocation table for a DC. What do I do?
105. What's the difference between transferring a FSMO role and seizing one? Which one should you NOT seize? Why?
106. How do you configure a "stand-by operation master" for any of the roles?
107. How do you backup AD?
108. How do you restore AD?
109. How do you change the DS Restore admin password?
110. Why can't you restore a DC that was backed up 4 months ago?
111. What are GPOs?
112. Explain the loop back processing feature in Group Policy
113. What is universal group membership cache in windows 2003?
114. In one particular DC, OU got accidentally deleted by admin. In another DC, the same OU was getting updated? What will happen in this scenario? How to restore the deleted OU?
115. Can we delete an object attribute in AD? How to delete?
116. 1000 computers are there in a OU. Policy needs to be applied only for 500 computers without disturbing the setup how to apply policy?
117. Explain the domain Controller location process in Windows 2003