Windows Active Directory Interview Questions

>What is Active Directory?

Active Directory is a Meta Data. Active Directory is a data base which store a data base like your
user information, computer information and also other network object info. It has capabilities to
manage and administer the complete Network which connect with AD.

>What is LDAP?
Lightweight Directory Access Protocol LDAP is the industry standard directory access protocol,
making Active Directory widely accessible to management and query applications. Active
Directory supports LDAPv3 and LDAPv2

>What is the SYSVOL folder?

The sysVOL folder stores the server's copy of the domain's public files. The contents such as
group policy, users etc. of the sysvol folder are replicated to all domain controllers in the
domain.

By default sysvol includes 2 folders, the scripts folder is shared with the name NETLOGON

1.Policies - (Default location - %SystemRoot%\Sysvol\Sysvol\domain_name\Policies)

2.Scripts - (Default location - %SystemRoot%\Sysvol\Sysvol\domain_name\Scripts)

> What is Garbage collection?

Garbage collection is the process of the online defragmentation of active directory. It happens
every 12 Hours.

>What is Kerberos & Kerberos Authentication?

Kerberos provides secure user authentication with an industry standard that permits
interoperability. The Active Directory domain controller maintains user account and log-in
information to support the Kerberos service.

The Kerberos version 5 authentication protocol provides a mechanism for authentication — and
mutual authentication — between a client and a server, or between one server and another server.

>What is the port no of Kerberos?

88
>What Is the Global Catalog?
The global catalog is a distributed data repository that contains a searchable, partial
representation of every object in every domain in a multidomain Active Directory Domain
Services (AD DS) forest. The global catalog is stored on domain controllers that have been
designated as global catalog servers and is distributed through multimaster replication. Searches
that are directed to the global catalog are faster because they do not involve referrals to different
domain controllers.

>Explain Active Directory Schema?

Windows 2000 and Windows Server 2003 Active Directory uses a database set of rules called
"Schema". The Schema is defines as the formal definition of all object classes, and the attributes
that make up those object classes, that can be stored in the directory. As mentioned earlier, the
Active Directory database includes a default Schema, which defines many object classes, such as
users, groups, computers, domains, organizational units, and so on.

These objects are also known as "Classes". The Active Directory Schema can be dynamically
extensible, meaning that you can modify the schema by defining new object types and their
attributes and by defining new attributes for existing objects. You can do this either with the
Schema Manager snap-in tool included with Windows 2000/2003 Server, or programmatically

>What are the FSMO roles? Who has them by default? What happens when each one
fails?
Flexible Single Master Operation (FSMO) role. Currently there are five FSMO roles:
Schema master
Domain naming master
RID master
PDC emulator
Infrastructure master

>What is domain tree?

Domain Trees: A domain tree comprises several domains that share a common schema and
configuration, forming a contiguous namespace. Domains in a tree are also linked together by
trust relationships. Active Directory is a set of one or more trees.
Trees can be viewed two ways. One view is the trust relationships between domains. The other
view is the namespace of the domain tree.

> Does a windows administrator have to be critical?

A: Yes and I can explain how. A system administrator is responsible for an entire network which
means he/she must take care of multiple things in the same time which is not an easy task. In
order to achieve this, an administrator must have high organization skills and a high technical
knowledge and he/she must prevent the problems from happening so that he/she won’t have
to be forced to fix them.

>What are the advantages or disadvantages of using DHCP?

A: The advantage is that the DHCP server configures all IP’s automatically and the disadvantage
is that when you receive a new IP address the machine name remains the same because of its
association with the IP. It’s not a real problem but when somebody tries to access the machine
by its name it become one.

>Main Difference Between Windows server 2008 and 2012

1) New Server Manager: Create, Manage Server Groups

2) Hyper-V Replication: The Hyper-V Replica feature allows you to replicate a virtual machine
from one location to another with Hyper-V and a network connection—and without any shared
storage required. This is a big deal in the Microsoft world for disaster recovery, high availability
and more. VMware does this, too, but the vendor charges new licensees extra for the
capability.
3) Expanded PowerShell Capabilities
4) IIS 8.0 and IIS 7 in 2008
5) Hyper-V 3.0
6) PowerShell 3.0

>What is Nslookup?
Nslookup.exe is a command-line administrative tool for testing and troubleshooting DNS
servers. This tool is installed along with the TCP/IP protocol through Control Panel.
MS-DOS utility that enables a user to look up an IP address of a domain or host on a network.

> Where are group policies stored?

C:\Windows\System32\GroupPolicy.
>What is the difference between local, global and universal groups?
Domain local groups assign access permissions to global domain groups for local domain
resources. Global groups provide access to resources in other trusted domains. Universal
groups grant access to resources in all trusted domains.

>What is Domain control?

A domain controller (DC) is a server that handles all the security requests from other computers
and servers within the Windows Server domain
There was a primary domain controller and a backup domain controller. The primary DC
focused on domain services only to avoid the possibility of a system slow down or crash due to
overtasking from managing other functionality and security requests. In the event of a primary
DC going down, a backup DC could be promoted and become the primary DC to keep the rest of
the server systems functioning correctly

>What is the difference between Server Roles and Features?

A server, consist of one or more programs that enable a server to perform a specific function
for users and/or computers on a network.
In contrast, features are applications that can increase the functions the server can perform.
Features can add support or add functions, to server roles. In many cases, a single role contains
a number of features.
 Backup

>Which are the backup types that are available in Netbackup? Differentiate them?
Differential Incremental Backup
Cumulative Incremental Backup
User Backup
User Archive
Full Backup

>What is a master server & media server?

>What is volume pools & volume Groups?
>What does it mean by inventoring a robot?
> What is retention period?
> What is volume expiration?
> How do you configure a client for automatic backups?
> What does a barcode rule do?
> What format does Netbackup write the tape in?
> What is flash backup?
> If your last catalog backup was two days ago and the master server crashed what would you
have to do to bring your environment back up to present time?
> What is SAN media server?
> How would you tune NetBackup to increase backup performance? In which location (path)
the temp files located in Netbackup for Windows/Unix?
> How to check tape is bad?
> There is a Tape library with 10 drives ...Can we able to create 2 Storage units.....?
 VMWare

>What is Virtualization?
>What is vCenter Server?
>What is vSphere Client?
>What is a Virtual Machine?
>What is a Host?
>What is a Resource Pool?
>What is a Cluster?
>What is VMWare Tools?
>What is FT (Fault Tolerance)?
>How Does HA Works?
>How Do DRS Works?
>